“Your PC may be infected” says Google, which has taken the unusual step of warning users that a couple of million or so of them have most likely been taken in by a fake AV scam. According to a post on the official Google blog by security engineer Damian Menscher, Google has noticed an unusual pattern of user activity. “We found some unusual search traffic while performing routine maintenance on one of our data centers” Menscher explains, adding that they then collaborated with other security engineers at various companies which were sending the modified traffic in question to determine that the machines responsible were infected with a particular strain of malware.

Google decided to warn anyone matching the traffic pattern it has identified (involving the sending of traffic through particular proxies) when making a search by displaying a notification atop of their search results that says “Your computer appears to be infected” and offers advice on how to fix the problem.

The malware in question would appear to be installed when users are taken in by one of up to a hundred different fake antivirus warning scams that have been circulating for the longest time, although Google has so far been unable to actually name the miscreant malware.

Attachments googlewarning.jpg 21.97 KB

As Editorial Director and Managing Analyst with IT Security Thing I am putting more than two decades of consulting experience into providing opinionated insight regarding the security threat landscape for IT security professionals. As an Editorial Fellow with Dennis Publishing, I bring more than two decades of writing experience across the technology industry into publications such as Alphr, IT Pro and (in good old fashioned print) PC Pro. I also write for SC Magazine UK and Infosecurity, as well as The Times and Sunday Times newspapers. Along the way I have been honoured with a Technology Journalist of the Year award, and three Information Security Journalist of the Year awards. Most humbling, though, was the Enigma Award for 'lifetime contribution to IT security journalism' bestowed on me in 2011.

7 Years
Discussion Span
Last Post by zabalex

Google, the world's go to site for finding information, can't find the name of the malware? hmm... my already shaken faith in the giant is further shaken.


How do they think they're going to help removing the malware if they don't know its name? What does the 'Learn how to fix this' page say?


To protect web surfers, Google is continually working to identify and blacklist dangerous pages. Google has been giving information about the malware warnings that they will be issuing at the top of their search engine.

Edited by Ezzaral: Snipped 'fake sig' link. Please restrict such links to your site-wide user signature, which can be edited from the user control panel.


Identifying the root of the malware distributing machine requires time. We need not to worry as google must be doing the things to fix the problem. After all google is google

Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.