October 14th, 2006, 12:27 AM
Remote Spy Software Trojan Horse?
The website claims it can attack it self from somebodys open internet connection.
How is this possible? Would any of the net commands see if I am being monitored or could a good anti virus etc find it?
The name of the prog is "Remote Spy Software". Havent tried it and could not find any info on this software other then the website that is selling it. Remotespy.com.
How does this inflitrate said system?
Open ports or telnet?
October 14th, 2006, 12:53 AM
Most of this stuff is spread as e-mail attachments.
This is a commercial keylogger. It would probably be detected by apps like A-Squared, EWIDO or SpyBot S&D. WinSonar should block it if you set it to disallow unauthorised apps.
October 14th, 2006, 07:27 AM
As the ever so wise Nihil has suggested ...
this mostly is the a user clicking in something they shouldnt have........like an attachment in an email...a link in an email...yes they can come in through a website.......if your computer allows those things...there are many things you can do to prevent it..........such as a firewall and OS updates...
wish I was at work...I would have many links for "basic "spyware prevention
And it seems I cant find the tutorials here on AO.................
How people treat you is their karma- how you react is yours-Wayne Dyer
October 14th, 2006, 11:21 AM
Actually, this one is rather surprising as it seems very similar to the "LoverSpy" product back in 2003?
Indictment is here: http://www.cybercrime.gov/perezIndict.htm
They even seem to have a members site where you can go and collect the information it has gathered, which I think was one of the main reasons why they went after Perez?
The vector is via e-mail, greetings card or whatever(a personal communication) so you would have to be pretty dumb to open something from someone you obviously shouldn't trust?
As I mentioned, it is "theoretically" legitimate commercial software, but it sure as hell isn't marketed that way
This type of stuff is aimed at known targets. The attacks you get via the internet tend to be bots, and are relatively random. They are not looking for a particular individual, just an easy target? Up to date software, restricted accounts, firewalls and anti-malware apps are all useful against those.
I was interested to notice that my PC-Cillin security suite blocked the site, so I would expect it to spot the product as well.
October 15th, 2006, 04:22 AM