String found in binary or memory: 0x03a8bd d0,0x01d61 e69 0 x03a8bdd0, 0x01d61e69 equals ww w.facebook. String found in binary or memory: equals (You tube) String found in binary or memory: equals (Twi tter) String found in binary or memory: equals (Li nkedin) String found in binary or memory: equals (Fa cebook) String found in binary or memory: "https:/ /r/vmwaretv ", equals (Yo utube) String found in binary or memory: "https:/ /mpany/vmwa re", equa ls (Linkedin) String found in binary or memory: "https:/ /ware", eq uals m (Faceboo k) String found in binary or memory: equals w ww.youtube. String found in binary or memory: equ als (Linkedin ) String found in binary or memory: e quals om (Facebo ok) 0) like Ge ckoAccept- Encoding: gzip, defl ateHost: v C onnection: Keep-Aliv eįound strings which match to known social media urls HTTP traffic detected: GET / HTTP /1.1Accept : text/htm l, applica tion/xhtml +xml, imag e/jxr, */* Accept-Lan guage: en- USUser-Age nt: Mozill a/5.0 (Win dows NT 10. HTTP traffic detected: GET /z/cjU ucD9taT05M zAxMjc1JnA 9MSZ1PTEwO TA4NDU2MzE mbGk9NzY0M DEzNzY/ind ex.html HT TP/1.1Acce pt: text/h tml, appli cation/xht ml+xml, im age/jxr, * /*Accept-L anguage: e n-USUser-A gent: Mozi lla/5.0 (W indows NT 10.0 WOW6 4 Trident /7.0 rv:1 1.0) like GeckoAccep t-Encoding : gzip, de flateConne ction: Kee p-AliveHos t: vmugsm. Standard Non-Application Layer Protocol 2 Remotely Track Device Without Authorization Report size getting too big, too many NtQueryAttributesFile calls found.Įavesdrop on Insecure Network Communication.Report size getting too big, too many NtDeviceIoControlFile calls found.Report size getting too big, too many NtCreateFile calls found.Report size exceeded maximum capacity and may have missing network information.Exclude process from analysis (whitelisted): ielowutil.exe.Number of analysed new started processes analysed:
0 kommentar(er)
