Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Kaspersky Knocks Down Kelihos Botnet Again, But Expects Return

29 Mar 2012   #1
A Guy

Microsoft Community Contributor Award Recipient

Windows 7 Home Premium x64 SP1
Kaspersky Knocks Down Kelihos Botnet Again, But Expects Return

For the second time in six months, researchers from the Russian antivirus company, Kaspersky Lab, carried out an operation to take down the newest iteration of the Kelihos botnet, also known as "Hlux."

Microsoft and Kaspersky worked together in September, 2011, on the first Kelihos take-down. The bot then resurfaced in January only to be shut-down again this month by a combination of private firms including Kaspersky, Dell Secure Works and Crowd Strike Inc.

Kelihos is used to send spam, carry out DDoS attacks, and steal online currency such as bitcoin wallets. It operates as a so-called "peer-to-peer" bot network, which are more difficult to take down than those with a centralized command and control servers (C&C), according to Tillmann Werner, a senior researcher at CrowdStrike. Peer-to-peer botnets are distributed, self-organizing, and may have multiple command and control servers that disguise themselves as peers. In Kelihos’s case, there were three C&C servers and each had two unique IP addresses, he said.

A Guy

My System SpecsSystem Spec


 Kaspersky Knocks Down Kelihos Botnet Again, But Expects Return

Thread Tools

Similar help and support threads
Thread Forum
Operation b79 (Kelihos) and Additional MSRT September Release
Source A Guy
Security News
Kaspersky warns of “indestructible” TDL-4 botnet
Read about it here:- Kaspersky warns of “indestructible” TDL-4 botnet | IT PRO "A vicious new botnet dubbed TDL-4, made up of more than 4.5 million infected computers is running wild, according to security firm Kaspersky."
Security News
Kelihos and Waledac- Separated at Birth?
Kelihos and Waledac- Separated at Birth? - Microsoft Malware Protection Center - Site Home - TechNet Blogs
Security News
Windows 7 64 bit knocks out internet after updates.
I don't know which specific updated but I managed to isolate the problem to my updates. 1st let me say that I went from Windows 32 bit to Windows 64 bit using custom install and keeping Windows.old. Afterwords I went to install all updates and after everything was finished I noticed that my...
Network & Sharing
program expects a certain drive letter.....
I installed a drum loop program and it installed just fine. I insert the cd to use the program and it gives me a dialog box about insert cd into drive d:/ , the problem is my cd rom is actually e:/ it gives me no option to tell it that. Is there a way around this? my main system drive is C:, then...
General Discussion
any php, js , PEAR expects here that can help me?
ok im makin a gmap website for a uni subject its in PEAR templates problem i can seem to access the php variable in my js script in test.php i got $address= $_POST; which gets it from input in prev page connected to dat php page is a test.tpl file where all html and js is there i tried...
Chillout Room

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 19:20.

Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App