Beware mistyping Google. Or gurgle
Mispronunciation of the magic word leads to possession
By Nick Farrell: Friday 29 April 2005, 07:26
MISSPELLING Google´s domain name could lead to your computer being possessed by trojan nags and poxy viruses.
According to Finnish anti-virus vendor F-Secure, someone has bought the googkle.com name and built a site packed with web nastiness in the hope you might mistype it. INQ journalsits are particularly good at this sort of thing.
This website, as well as a few related websites are owned by people with Russian names. Also several malicious files that are downloaded from these websites have Russian texts. When F-Secure visited, two pop-up "windows|", or "pains" as we call them, launched with redirects to third-party sites loaded with scripts. One of the sites, ntsearch.com, downloads and runs a "pop.chm" file, and the other, toolbarpartner.com, downloads and runs a "ddfs.chm" file.
"Both files are downloaded using exploits and they contain exploits themselves to run embedded executable files. One of the Web pages of the ´toolbarpartner.com´ website downloads a file named ´pic10.jpg´ using an exploit. This JPG file is actually an executable that replaces [the] Windows Media Player application," the warning reads.
FULL ARTICLE:
[
link to www.theinquirer.net]