golgot27
Messages postés4Date d'inscriptionjeudi 1 mars 2007StatutMembreDernière intervention 3 décembre 2007
-
3 déc. 2007 à 14:03
golgot27
Messages postés4Date d'inscriptionjeudi 1 mars 2007StatutMembreDernière intervention 3 décembre 2007
-
3 déc. 2007 à 17:59
Bonjour,
j'ai installé le logiciel KL detector afin de m'assurer qu'aucun Keylogger n'est installé sur ma machine après que mon site ait été Hacké à deux reprises. Voici le rapport de ce logiciel qui m'indique que je suis peut être infecté et de vérifier les fichiers suivants :
windows/fs/mapping.ver et objects.data
Below are some file operations that were done during the monitoring process.
Review them carefully and check for suspicious files.
CWINDOWSPrefetchKL-DETECTOR.EXE-09FD946A.pf
was modified.
CWINDOWSPrefetchKL-DETECTOR.EXE-09FD946A.pf
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.BTR
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.MAP
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.BTR
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.BTR
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.MAP
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32configsoftware.LOG
was modified.
CWINDOWSsystem32configsoftware.LOG
was modified.
CWINDOWSsystem32configsoftware.LOG
was modified.
CDocuments and SettingsAll UsersApplication DataMcAfeeMCLOGSMISPmcmscsvcmcmscsvc001.log
was modified.
CDocuments and SettingsAll UsersApplication DataMcAfeeMCLOGSMISPmcmscsvcmcmscsvc001.log
was modified.
CWINDOWSTempver6.tmp
was created.
CWINDOWSTempver6.tmp
was modified.
CWINDOWSTemp
was modified.
CWINDOWSTempver7.tmp
was created.
CWINDOWSTemp
was modified.
CWINDOWSTempver8.tmp
was created.
CWINDOWSTempver8.tmp
was modified.
CWINDOWSTempver8.tmp
was modified.
CWINDOWSTempver8.tmp
was removed.
CWINDOWSTempver9.tmp
was modified.
CWINDOWSTemp
was modified.
CDocuments and SettingsAll UsersApplication DataMcAfeeMCLOGSMISPmcmscsvcmcmscsvc001.log
was modified.
CDocuments and SettingsAll UsersApplication DataMcAfeeMCLOGSMISPmcmscsvcmcmscsvc001.log
was modified.
CWINDOWSTempverA.tmp
was modified.
CWINDOWSTempverA.tmp
was removed.
CWINDOWSTempverB.tmp
was created.
CWINDOWSTemp
was modified.
CWINDOWSTempverC.tmp
was created.
CWINDOWSTempverC.tmp
was modified.
CWINDOWSTemp
was modified.
CWINDOWSTempverD.tmp
was modified.
CWINDOWSTemp
was modified.
CWINDOWSTempverE.tmp
was created.
CWINDOWSTempverE.tmp
was modified.
CWINDOWSTempverE.tmp
was modified.
CWINDOWSTempverE.tmp
was removed.
CWINDOWSTempverF.tmp
was created.
CWINDOWSTempverF.tmp
was modified.
CWINDOWSTemp
was modified.
CDocuments and SettingsAll UsersApplication DataMcAfeeMCLOGSMISPmcnasvcmcnasvc002.log
was modified.
CWINDOWSsystem32configsoftware.LOG
was modified.
CWINDOWSPrefetchMCUIMGR.EXE-232A5ACA.pf
was modified.
CWINDOWSPrefetchMCUIMGR.EXE-232A5ACA.pf
was modified.
CWINDOWSsystem32configsoftware.LOG
was modified.
CWINDOWSsystem32configsoftware.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configdefault.LOG
was modified.
CWINDOWSsystem32configdefault.LOG
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.BTR
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32configdefault.LOG
was modified.
CWINDOWSsystem32configdefault.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.BTR
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32configsystem.LOG
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSOBJECTS.DATA
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
CWINDOWSsystem32wbemRepositoryFSINDEX.MAP
was modified.
CWINDOWSsystem32wbemRepositoryFSMAPPING.VER
was modified.
