Beware of search engines helpers

May 13th, 2008

You may come across some sites that offer online searches in cool formats. For example, we found this Italian website that does a search in both Google and Yahoo!.

It works well and presents the results in two diffent window panes:

However, digging into the source code for that page, we found an infamous drive-by download (loader.exe) that happens to be nothing less than a Trojan Downloader.

That Trojan will download additional malware (dialer, password stealer) onto your computer.

As a general rule, it is safer to use your search engine directly from the main site (i.e. google.com). Many sites offer a search from their own page that claims to search the major search engines. However, it is often biased results that are returned, or even worse, malicious programs.

JSegura

This entry was posted on Tuesday, May 13th, 2008 at 2:46 pm and is filed under Exploits. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Beware of search engines helpers

Comments: