dimanche 29 juin 2008
Par Laurent,
dimanche 29 juin 2008 à 11:12
Ajout traduction : Macedonien
Added: Macedonian translation
Controle ajout, Mise jour
%Windir%\lsass32.exe
%winsys%\nvsvc86.exe
%Common Startup%\BlueSoleiI.lnk
%winsys%\winupdatr.exe
%temp%\1.reg
%winsys%\system.exe
%temp%\IXP000.TMP\install.exe
%temp%\Steam.dll
%LocalSettings%\Tempuniversal1337.txt
%systemdrive%\start
%temp%\ixp000.tmp\install.exe
%userprofile%\LOCALS~1\Temp1337SteamLogin.exe
%temp%\steam.exe
%userprofile%\LOCALS~1\Tempinet.exe
%userprofile%\LOCALS~1\Tempmsg.exe
%userprofile%\LOCALS~1\Temppdk.exe
%userprofile%\LOCALS~1\Temphttp.exe
%winsys%\agl23.exe
%Windir%\kontor.zip
%winsys%\new.txt
%Windir%\winamp.exe
%userprofile%\lsass.exe
%systemdrive%\l3r1t1j4s1x7.exe
%Windir%\avrscan.exe
%Windir%\pchealth\helpctr\binaries\secdrive.exe
%Windir%\pchealth\helpctr\binaries\system.exe
%Windir%\SexyMama.JPG.exe
%Windir%\w32service.exe
%ProgramFiles%\Common Files\System\McAfee3.exe
%Temp%\uNkbot.exe
%windir%\wkssvrs.exe
%windir%\system\svchost.exe
%winsys%\gpupdater.exe
%ProgramFiles%\dfsdfsd\pingy.exe
%windir%\RBuilder.exe
%windir%\system\svchost.exe
%windir%\winavscan.exe
%winsys%\livesrvs.exe
%winsys%\SetPoints.exe
%windir%\wkssvrs.exe
%windir%\wkssvrs.exe
%winsys%\MSMHS.EXE
%windir%\btmsre.exe
%windir%\Girl_On_Cam.zip
%windir%\ikysvr.exe
%windir%\acersv.exe
%systemdrive%\is15*.exe
%windir%\avserv.exe
%windir%\winudpmgrs.exe
%windir%\ctfmon32.exe
%windir%\servicean.exe
%winsys%\winxj.exe
%systemdrive%\cservice.exe
%systemdrive%\Windows.exe
%windir%\msscomd.exe
%windir%\game.exe
%windir%\NewCameraPics.zip
%windir%\wksvcsc.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Service Agent"=-
"Office Monitor"=-
"LSA Shellu"=-
"Modifiet Amateur HTPB"=-
"Windowfdgfds DasdLL Verifier"=-
"Windows ARP Detectionc"=-
"Windows Service Controller Agent"=-
"Windows Anti Virus Control Center"=-
"Microsoft Anti Virus Controller"=-
"msnmgnr"=-
"Windows Services"=-
"secdrive.exe"=-
"Windows Update"=-
"ehTray.exe"=-
"System Fetch DLL Runtime"=-
"Windows MSN Live Messanger"=-
"Windows Messanger Control Center"=-
"kiss"=-
"GP Updater"=-
"Microsoft Update"=-
"Network maneger"=-
"Windows Anti Virus Control Center"=-
"Windows Update"=-
"Nod32 Runtime"=-
"Wbcmgr"=-
"Windows svchost"=-
"Windows UDP Control Center"=-
"Windows Acer Service"=-
"Windows svchost"=-
"Windows UDP Control Services"=-
"Windows Messanger Control Center"=-
"Nod32 Runtime"=-
"Windows UDP Control Services"=-
"Microsoft Update"=-
"Windows UDP Control Center"=-
"Windows Messanger Control Center"=-
"Microsoft"=-
"Windows ARP Detectionc"=-
"Windows svchost"=-
"Microsoft(R) System Manager"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
"Windows Serviece Agents"=-
"Microsoft Task Manager Daemon"=-
"windowsupdate"=-
"Nod32 Runtime"=-
"Windows Executer"=-
"Windows Service Agent"=-
"Java"=-
"Windowfdgfds DasdLL Verifier"=-
"Windows UDP Control Manager"=-
"Windows SYN Control Center"=-
"Microsoft Update"=-
"Windows Update"=-
"Microsoft Oftice"=-
"Windows MSN Live Messanger"=-
"Nod32 Runtime"=-
"Microsoft"=-
"Microsoft Service 32"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"boby"=-
"Microsoft Oftice"=-
"ehTray.exe"=-
"Windows Service Agent"=-
"Office Monitor"=-
"Modifiet Amateur HTPB"=-
"Network maneger"=-
"MicrosoftUpdate"=-
"Network maneger"=-
"Windows Update"=-
"Windows MSN Updates"=-
"Nod32 Runtime"=-
"console de gerenciamento microsoft"=-
"MapEDC"=-
"WinTouch"=-
"JavaCore"=-
"MSMSGS"=-
"Windows Executer"=-
"Windows UDP Control Manager"=-
"Windows SYN Control Center"=-
"Microsoft Update"=-
"Microsoft"=-
"explorer"=-
"kava"=-
"NoDNS"=-
"PK Guard"=-
"Microsoft Update Machine"=-
"OfficeWord Monitor"=-
[HKEY_CURRENT_USER\Software\Microsoft\OLE]
"Windowfdgfds DasdLL Verifier"=-
jeudi 19 juin 2008
Par Laurent,
jeudi 19 juin 2008 à 06:15
Registre / Registry
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Microsoft Spelling Module Helper Service"=-
Fichier / Files
%winsys%\MSMHS.EXE
%windir%\btmsre.exe
%windir%\Girl_On_Cam.zip
%windir%\ikysvr.exe
%windir%\acersv.exe
%systemdrive%\is15*32.exe
mardi 17 juin 2008
Par Laurent,
mardi 17 juin 2008 à 06:47
%Windir%\winudpmgrs.exe
%Windir%\ctfmon32.exe
%Windir%\acersv.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows UDP Control Center"=-
"Windows Acer Service"=-
"Windows svchost"=-
lundi 16 juin 2008
Par Laurent,
lundi 16 juin 2008 à 06:29
Fichiers / Files
%winsys%\winxj.exe
%systemdrive%\is155932.exe
%systemdrive%\cservice.exe
%systemdrive%\Windows.exe
%windir%\msscomd.exe
%windir%\game.exe
%windir%\NewCameraPics.zip
%windir%\wksvcsc.exe
%windir%\svchosl.exe
%windir%\wksvcsc.exe
%windir%\livemessenger.com
%windir%\scvhost.exe
%windir%\winlogon.exe
%windir%\wplayer.exe
%windir%\winlogon.exe
%windir%\ups.exe
%winsys%\sysmgr.exe
%Temp%\lsass.exe
%windir%\mssvc32.exe
%windir%\winudmr.exe
%winsys%\msmsgs.exe
%windir%\livemsngs.exe
%windir%\sysregi.exe
%windir%\wplayer.exe
%windir%\mssvc32.exe
%windir%\wksvcsc.exe
%windir%\winudpmgr.exe
%Programfiles%\iexplorer2.exe
%winsys%\sysmgr.exe
%windir%\msavc.exe
%Temp%\WER4a2c.dir00\manifest.txt
%Temp%\WER4a2c.dir00\sysdata.xml
%winsys%\msvcrt2.dll
%winsys%\sysmgr.exe
%windir%\wmplayer.exe
%winsys%\efcYSkkL.dll
%windir%\msavc.exe
%windir%\msavc32.exe
%windir%\msmacro32.exe
%winsys%\NOTEPAD.EXE
%winsys%\msupdate.exe
%winsys%\msupdte.exe
%windir%\msscomd.exe
%windir%\winamp.exe
%windir%\wmplayer.exe
%windir%\winlogon.exe
%winsys%\dllcache\shvhost.exe
%windir%\msavc32.exe
%windir%\winamap.exe
%windir%\RBuilder.exe
%winsys%\kupkudmd.exe
%windir%\winamap.exe
%windir%\game.exe
%windir%\NewCameraPics.zip
%windir%\mswinudpmgr32.exe
%winsys%\msavc.exe
%windir%\msscomd.exe
%Temp%\wksvcsc.exe
%Temp%\svchosl.exe
%winsys%\cftmon.exe
%winsys%\sysregi.exe
Registre / Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Winamp Media Player"=-
"msmacro32"=-
"Microsoft Oftice"
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\efcYSkkL]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\00cd0861]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
"Winamp Media Playe"=-
"Windows Service Host"=-
"Nod32 Runtime"=-
"Microsoft"=-
"Microsoft Service 32"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Microsoft(R) System Manager"=-
"Microsoft Anti Virus Controller"=-
"Winamp Media Player"=-
"Winamp Media Player"=-
"Microsoft Anti Virus Controller"=-
"Windows Service Host"=-
"Winamp Media Player"=-
"MicrosoftUpdate"=-
"MicrosoftOffice"=-
"Microsoft Anti Virus Controller"=-
"msmacro32"=-
"Microsoft NotePad"=-
"Microsoft NotePad"=-
"Microsoft Update"=-
"Microsoft WinUpdate"=-
"MSN"=-
"Winamp Media Player"=-
"Windows Media Player"=-
"Windows Messanger Control Center"=-
"Windows UDP Control Services"=-
"Windows UDP Control Center"=-
"Microsoft Anti Virus Controller"=-
"Windows UDP Control Services"=-
"Windows Messanger Control Center"=-
"Nod32 Runtime"=-
"Windows UDP Control Services"=-
"Microsoft Update"=-
"Windows UDP Control Center"=-
"Windows Messanger Control Center"=-
"Microsoft"=-
"Windows ARP Detectionc"=-
"Windows svchost"=-
"Microsoft(R) System Manager"=-
"Win32 SubSystem"=-
"Microsoft Service 32"=-
"Windows Controls Center"=-
"Microsoft Oftice"=-
"Windows MSN Live Messanger"=-
mardi 3 juin 2008
Par Laurent,
mardi 3 juin 2008 à 23:23
Registre / registry
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28ABC5C0-4FCB-11CF-AAX5-81CX1C635612}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Service Agent"=-
"msnmgnr"=-
"Windows MSN Live Messanger"=-
"Wbcmgr"=-
"Windows Executer"=-
"Windows UDP Control Manager"=-
"Windows SYN Control Center"=-
"Microsoft Update"=-
"Microsoft"=-
"Windows UDP Control Center"=-
"devenv"=-
"Windows WKS Services"=-
"Windows UDP Control Center"=-
"Kernel Frapper Engaugment Safty Test"=-
"Windows UDP Control Services"=-
"Windows svchost"=-
Fichier / Files
%Windir%\service.exe
%Windir%\wksvcsc.exe
%winsys%\wbcmgr.exe
%Windir%\svchostie.exe
%Windir%\winmnon32.exe
%Windir%\livemessenger.com
%systemdrive%\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini
%systemdrive%\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe
%Windir%\winampaa.exe
%Windir%\winudpmg.exe
%Windir%\system\smvss.exe
%Windir%\wkssvr1.exe
%Windir%\ehSched.exe
%winsys%\kfest.exe
%Windir%\Jump-The-Game.zip
dimanche 1 juin 2008
Par Laurent,
dimanche 1 juin 2008 à 20:30
Un article que je vous recommande , publié chez viruslist.com dont les auteurs sont :
Denis Maslenikov et
Boris Yampolsky
- Les principaux types de clients de messagerie instantanée
- Cyber-Menaces sur les messageries instantanées
- Cyber-menaces sur la messagerie instantanée ICQ
- Vol de mots de passe
- Diffusion de programmes malveillants
- Messages non sollicités dans ICQ
- Scénarios d'attaque
- Résistance face aux individus mal intentionnés dans les messageries instantanées
- Conclusion
Les programmes de messagerie instantanée sont très intéressants pour divers types d'individus malveillants. La connaissance des menaces potentielles qui peuvent être propagées via les clients de messagerie instantanée et des moyens de lutte contre celles-ci aideront les utilisateurs éviter de nombreux inconvénients lors de l’échange de messages via Internet
Lire l'article ...
Available in English langage : “Instant” threats
