Softpedia
 
HomepageWindowsGamesDriversMacLinuxScripts buttonMobileHandheldNews

NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
Home > News > Microsoft > Security

July 14th, 2011, 09:11 GMT · By

Free Microsoft Security Tool Goes After Malware That Hijacks Web Searches

SHARE:

Adjust text size:


Security
Enlarge picture
The latest update introduced to the Malicious Software Removal Tool (MSRT) is designed to equip the free security solution in order to tackle malicious code designed to hijack web searches that users make and redirect them to sites hosting malware or displaying advertisements.

Win32/Tracur and Win32/Dursg are the two malware families added to MSRT, which is designed to hunt down and kill a specific list of malicious code.

Impacting browsers including Internet Explorer, Firefox, Opera and Chrome, Tracur and Dursg are designed to infect Windows computers then monitor the users’ search activity.

Customers using machines compromised by Dursg or Tracur will start no longer getting to websites they’re searching for, but instead being redirected to various malformed Internet destinations.

“For instance, Win32/Tracur installs a browser helper object, or BHO, for IE to monitor web search queries. It also drops Win32/Dursg to install malicious extensions for Firefox and Opera,” revealed Rodel Finones, MMPC.

“User query results from search engines such as Google, Yahoo!, AOL, Ask and Bing will be redirected to a malicious site. To guarantee Win32/Tracur control, it modifies several registry entries.”

Dursg comes with similar functionality, but at the same time, this piece of malicious code is also being used by attackers as a vector to infect already compromised computers with even more malware.

“Win32/Dursg has been seen to be distributed with other malwares and file infectors such as Sality, Virut, Polip, Alureon, and Tracur, to name just a few, further assisting in its wide distribution,” Finones added.

Earlier this week Microsoft released four security bulletins as a part of its normal Patch Tuesday update release cycle.

As it is traditional, the software giant also provided customers with an updated version of the Malicious Software Removal Tool, starting to battle both Win32/Tracur and Win32/Dursg.

The Malicious Software Removal Tool (MSRT) is available for download here.

TELL US WHAT YOU THINK:

1,543 hits · Link to this article · Print article · Send to friend · Subscribe to news

MUST-READ RELATED ARTICLES:


Windows Intune July 2011 Beta Is Here, Don’t Call It v2.0
Patch Critical Windows 7 SP1 Bluetooth Stack Vulnerability
Microsoft JDBC Driver 4.0 for SQL Server CTP2 Released
Vista SP1 and Office XP End of Support as of July 12, 2011
SQL Server 2012 Codenamed Denali CTP3 Now Available

READER COMMENTS:



No user comments yet.
Be the first to express your opinion!
Copyright © 2001-2012 Softpedia. Contact/Tip us at

WindowsGamesDriversMacLinuxScriptsMobileHandheldNews

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   UPDATE YOUR SOFTWARE   |   ROMANIAN FORUM
© 2001 - 2012 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are
registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use