[Seg] Falso salvapantallas anti-spam de Lycos esconde troyano

07/12/2004 - 17:23 por Windows | Informe spam
Falso salvapantallas anti-spam de Lycos esconde troyano
http://www.vsantivirus.com/07-12-04.htm

Por Angela Ruiz
angela@videosoft.net.uy

F-Secure reporta la aparición de un mensaje, que dice tener como
adjunto el famoso y polémico salvapantalla de Lycos, creado para
combatir el spam (ver "Lycos lanza polémico programa para combatir el
SPAM", http://www.vsantivirus.com/26-11-04.htm).

Sin embargo, dicho mensaje es falso, y el adjunto no es el anunciado
programa, sino un troyano con características de keylogger (captura la
salida del teclado de la víctima, y puede enviar la información
obtenida a un atacante remoto).

El mensaje puede tener estas características:

Asunto: Be the first to fight spam with Lycos screen saver
Datos adjuntos: Lycos screensaver to fight spam.zip

Por supuesto, pueden existir otras variantes. El archivo .ZIP contiene
un ejecutable comprimido con la utilidad RAR, que al ejecutarse
instala el mencionado caballo de Troya (nunca está de más recordar que
jamás debemos abrir adjuntos no solicitados, sin importar quien los
envía).

Lycos ha sido notificado del incidente. De todos modos, el
salvapantalla nunca fue distribuido oficialmente por correo
electrónico, sino que debía ser descargado del sitio oficial. Sin
embargo, dicho sitio hace varios días que no se encuentra disponible.

Aunque Lycos lo niega oficialmente, su página podría haber sido
víctima de un ataque por parte de los spammers. A pesar de ello, y
según noticias divulgadas en otros sitios de monitoreo del tráfico de
la red, el protector habría logrado su cometido de dejar fuera de
servicio al menos dos de los servidores dedicados al envío de spam.

Actualmente la página oficial en http://makelovenotspam.com/intl/,
sigue inaccesible.


Más información:

Lycos lanza polémico programa para combatir el SPAM
http://www.vsantivirus.com/26-11-04.htm




(c) Video Soft - http://www.videosoft.net.uy
(c) VSAntivirus - http://www.vsantivirus.com

Preguntas similare

Leer las respuestas

#1 JM Tella Llop [MVP Windows]
07/12/2004 - 17:20 | Informe spam
http://www.sysinternals.com/files/procexpnt.zip (freeware)

This is one of those tools no one should be living without:

The Process Explorer display consists of two sub-windows. The top window always shows a list of the currently active processes, including the names of their owning accounts, whereas the information displayed in the bottom window depends on the mode that Process Explorer is in: if it is in handle mode you'll see the handles that the process selected in the top window has opened; if Process Explorer is in DLL mode you'll see the DLLs and memory-mapped files that the process has loaded. Process Explorer also has a powerful search capability that will quickly show you which processes have particular handles opened or DLLs loaded.
What's new in Version 8.60:

a.. Multi-row tabs on process properties dialog
b.. Image signing verification on process image properties dialog
c.. Mini-CPU usage graph on toolbar
d.. Command-line option for specifying Process Explorer priority
e.. Manual refresh (F5) forces recheck of job and .NET process status
f.. Single-clicking on tray icon minimizes and restores main window

Jose Manuel Tella Llop
MVP - Windows
(quitar XXX)
http://www.multingles.net/jmt.htm

Este mensaje se proporciona "como está" sin garantías de ninguna clase, y no otorga ningún derecho.

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.
Respuesta Responder a este mensaje
#2 JM Tella Llop [MVP Windows]
07/12/2004 - 17:20 | Informe spam
http://www.sysinternals.com/files/procexpnt.zip (freeware)

This is one of those tools no one should be living without:

The Process Explorer display consists of two sub-windows. The top window always shows a list of the currently active processes, including the names of their owning accounts, whereas the information displayed in the bottom window depends on the mode that Process Explorer is in: if it is in handle mode you'll see the handles that the process selected in the top window has opened; if Process Explorer is in DLL mode you'll see the DLLs and memory-mapped files that the process has loaded. Process Explorer also has a powerful search capability that will quickly show you which processes have particular handles opened or DLLs loaded.
What's new in Version 8.60:

a.. Multi-row tabs on process properties dialog
b.. Image signing verification on process image properties dialog
c.. Mini-CPU usage graph on toolbar
d.. Command-line option for specifying Process Explorer priority
e.. Manual refresh (F5) forces recheck of job and .NET process status
f.. Single-clicking on tray icon minimizes and restores main window

Jose Manuel Tella Llop
MVP - Windows
(quitar XXX)
http://www.multingles.net/jmt.htm

Este mensaje se proporciona "como está" sin garantías de ninguna clase, y no otorga ningún derecho.

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.
Respuesta Responder a este mensaje
#3 JM Tella Llop [MVP Windows]
07/12/2004 - 17:20 | Informe spam
http://www.sysinternals.com/files/procexpnt.zip (freeware)

This is one of those tools no one should be living without:

The Process Explorer display consists of two sub-windows. The top window always shows a list of the currently active processes, including the names of their owning accounts, whereas the information displayed in the bottom window depends on the mode that Process Explorer is in: if it is in handle mode you'll see the handles that the process selected in the top window has opened; if Process Explorer is in DLL mode you'll see the DLLs and memory-mapped files that the process has loaded. Process Explorer also has a powerful search capability that will quickly show you which processes have particular handles opened or DLLs loaded.
What's new in Version 8.60:

a.. Multi-row tabs on process properties dialog
b.. Image signing verification on process image properties dialog
c.. Mini-CPU usage graph on toolbar
d.. Command-line option for specifying Process Explorer priority
e.. Manual refresh (F5) forces recheck of job and .NET process status
f.. Single-clicking on tray icon minimizes and restores main window

Jose Manuel Tella Llop
MVP - Windows
(quitar XXX)
http://www.multingles.net/jmt.htm

Este mensaje se proporciona "como está" sin garantías de ninguna clase, y no otorga ningún derecho.

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.
email Siga el debate Respuesta Responder a este mensaje
Ads by Google
Help Hacer una preguntaRespuesta Tengo una respuesta
Search Busqueda sugerida