Ars Technica

IIS Logs and their meaning.. Have I been hacked?

I have IIS running on my 2000 box. I was reviewing my log files today and noticed some stuff that I could not explain... I was hoping someone could help me make sense of this.<P>Strange stuff in FTP ...
Bleeping Computer

Hackers use Microsoft IIS web server logs to control malware

The Cranefly hacking group, aka UNC3524, uses a previously unseen technique of controlling malware on infected devices via Microsoft Internet Information Services (IIS) web server logs. Microsoft ...
Computing

Cranefly hackers using Microsoft IIS logs to deliver malware

The aim appears to be intelligence gathering, rather than ransomware or data theft. Symantec researchers have uncovered a new dropper (Trojan variant) that criminals are using to deploy malicious ...
Dark Reading

Cranefly Cyberspy Group Spawns Unique ISS Technique

Hacking group Cranefly is using the new technique of using Internet Information Services (IIS) commands to deliver backdoors to targets and carry out intelligence-gathering campaigns. Researchers at ...
adtmag.com

Useful Tool: Microsoft Log Parser

Every once in a while, I run across a little-known but very useful tool. Microsoft Log Parser falls squarely into this category. Originally developed to extract information from IIS logs, it has ...
Ars Technica

IIS SMTP Mail Record Logs.

Hiya all,<BR><BR>I have an issue with a Federal Governement client who are using our custom application to send out e-mail over SMTP. Since it is the government, they want to keep copies of ALL ...