Microsoft and Kaspersky to make known that the Kelihos botnet, which was used for sending spam, not again brought to life, in spite of media reports about this. Would a variant rigged by spammers.
Published this week in media reports that the Kelihos-spambotnet active again. This would be a blamage for Microsoft and Kaspersky, as it is offline in september last year as an important success was seen. Kaspersky itself was responsible for the accounting, because the security company in a blog post Tuesday announced that Kelihos/Hlux ‘was back’.
“Research has revealed that a new version is already immediately appeared after the announcement of the neutralization of the original Hlux/Keliohos botnet. This botnet continues to commands from spammers receive and send spam in different languages”, wrote Maria Garnaeva of Kaspersky. The developers would mainly adjustments in the field of encryption have been implemented.
However, this is a completely new botnet, and the spammers have not the control over the original botnet regained, explains Microsoft. There might be new malware that is based on the Helios code and which is used to create a new botnet to vehicles that already sends spam. Microsoft has the malware Backdoor:Win32/Kelihos.B baptized. The Malicious Software Removal Tool the malicious software removal.