Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos network security services platform







Security Basics: Re: FakeAlert virus removal

Re: FakeAlert virus removal

From: Michael Kennedy <mike_at_metrocomp.net>
Date: Tue, 2 Dec 2008 15:08:34 -0600

I don't think your website is infected, but the machine you're
googling from sure sounds like it is. I've seen that happen before.
Does that redirect happen from EVERY machine you search from? Odd are
it doesn't, but if it does then you'll have some IIS/apache settings
causing the problem.

-----
Michael Kennedy
Metro Computer Solutions

On Tue, Dec 2, 2008 at 2:07 PM, John Williams <john.b.williams_at_gmail.com> wrote:
>
> Dear LIst,
>
> I am working with a small local police department to resolve a malware
> issue on their police web site. When the web site is access directly
> from a browser address bar, the web site displays properly. But when
> the web site is accessed via a google search, the "FakeAlert" virus
> for AntiVirus 2009 takes over the browser. I am interested in a)
> understanding how this virus operates, and b) advice for removing the
> virus from the web site.
>
> Thank you in advance for your expert advice.
Received on Dec 02 2008

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]