I have come across a fake AV warning and browser redirect when going to Google.com and searhing for images using the following search query "Southern region US maps with states & capitals"
The first results shown from the following domains below all cause the browser to redirect to multiple fake AV sites. Scanning with malwarebytes shows nothing so it looks like it is just a fake AV website trying to trick you into clicking yes and downloading something however how do I find out where the browser direct is coming from ?
If I go to the domains directly they do not redirect to the malicious sites
If I view the source for the page that comes up just before it reditects I see nothing in the source code identifying how it is forwarding. Can someone help me find how by clicking on these domains image results in google I am getting a fake AV webpage redirect ?
here are the domains that appear in the image search results
thegreatwillow.com
americantallship.org
acelcoservices.com
robertomerlo.com
The first results shown from the following domains below all cause the browser to redirect to multiple fake AV sites. Scanning with malwarebytes shows nothing so it looks like it is just a fake AV website trying to trick you into clicking yes and downloading something however how do I find out where the browser direct is coming from ?
If I go to the domains directly they do not redirect to the malicious sites
If I view the source for the page that comes up just before it reditects I see nothing in the source code identifying how it is forwarding. Can someone help me find how by clicking on these domains image results in google I am getting a fake AV webpage redirect ?
here are the domains that appear in the image search results
thegreatwillow.com
americantallship.org
acelcoservices.com
robertomerlo.com
