Christian - changing the client default value in the config.xml file from
"InternetExplorer" to "iexplore" like you said to do, solve the issue. Thanks a
bunches!!!!
Mark
Date: Mon, 6 Oct 2008 09:35:51 -0700From: [EMAIL PROTECTED]:
[email protected]; [EMAIL PROTECTED]: Re: [Capture-HPC] Visitor
Client application is not starting
I think I know whats going on. You need to specify "iexplore" in your
config.xml instead of "InternetExplorer".Let me know whether this solves your
problem.Christian
On Mon, Oct 6, 2008 at 9:27 AM, Mark Jacobs <[EMAIL PROTECTED]> wrote:
When I view the guest OS in the VMware console, I see the DOS window running
the capture client bat file, which start automatically. The window is just
sitting there with the initial command used to start the capture client
displayed, but nothing else is happening. I have included the contents of my
capture.log file below. Thank you. >
################capture.log#######################> PROJECT: Capture-HPC>
VERSION: 2.5> DATE: August 6, 2008> COPYRIGHT HOLDER: Victoria University of
Wellington, NZ> AUTHORS:> Christian Seifert (christian.seifert at gmail.com)>
Ramon Steenson(ramon.steenson at gmail.com)> Capture-HPC is free software; you
can redistribute it and/or modify> it under the terms of the GNU General Public
License, V2 as published by> the Free Software Foundation.> Capture-HPC is
distributed in the hope that it will be useful,> but WITHOUT ANY WARRANTY;
without even the implied warranty of> MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE. See the> GNU General Public License for more details.> You
should have received a copy of the GNU General Public License> along with
Capture-HPC; if not, write to the Free Software> Foundation, Inc., 51 Franklin
St, Fifth Floor, Boston, MA 02110-1301,USA > Option: Connect to server ip:
192.168.15.50> Option: Connect to server port: 7070> Starting Capture Client
2.5> hereLoaded plugin: Application_ClientConfigManager.dll> inserted: added
application: acrobatreader> inserted: added application: firefox> inserted:
added application: opera> inserted: added application: word> inserted: added
application: oowriter> Loaded plugin: Application_InternetExplorer.dll>
inserted: added application: iexplore> Loaded plugin:
Application_InternetExplorerBulk.dll> inserted: added application:
iexplorebulk> Loaded plugin: Application_Safari.dll> inserted: added
application: safari> Driver already loaded: CaptureProcessMonitor> Driver
already loaded: CaptureRegistryMonitor> Loaded filter driver:
CaptureFileMonitor> Connected to server at 192.168.15.50> Got connect status
changed> --------------------------------------------------------->
ServerReceive. Bytes received: 25> Got: <connect server="2.5" />> Got connect
event> ServerReceive. Bytes received: 64> Got: <option
name="capture-network-packets-malicious" value="true"/>> Creating network
dumper> Loading network packet dumper> network adapter found: 192.168.15.52>
ServerReceive. Bytes received: 245> Got: <option
name="capture-network-packets-benign" value="true"/>> Got: <option
name="collect-modified-files" value="false"/>> Got: <visit-event
identifier="1945612958" program="InternetExplorer"> time="20"><item
url="http%3a%2f%2fwww.google.com"/></visit-event>> ServerReceive. Bytes
received: 9> Got: <ping/>> ServerReceive. Bytes received: 9> Got: <ping/>>
ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive. Bytes received:
9> Got: <ping/>> ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive.
Bytes received: 9> Got: <ping/>> ServerReceive. Bytes received: 9> Got:
<ping/>> ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive. Bytes
received: 9> Got: <ping/>> ServerReceive. Bytes received: 9> Got: <ping/>>
ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive. Bytes received:
9> Got: <ping/>> ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive.
Bytes received: 9> Got: <ping/>> ServerReceive. Bytes received: 9> Got:
<ping/>> ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive. Bytes
received: 9> Got: <ping/>> ServerReceive. Bytes received: 9> Got: <ping/>>
ServerReceive. Bytes received: 9> Got: <ping/>> ServerReceive. Bytes received:
9> Got: <ping/>> ServerReceive. Bytes received2: -1> ServerReceive. Recv
failed: 10054> Got connect status changed> Could not connect to server> Socket
error: 10061> Retrying...> Could not connect to server> Socket error: 10061>
Retrying...> Could not connect to server> Socket error: 10061> Retrying...>
Could not connect to server> Socket error: 10061> Retrying...> Could not
connect to server> Socket error: 10061> Retrying...> Could not connect to
server> Socket error: 10061> Retrying...> Could not connect to server> Socket
error: 10061> Retrying...> Could not connect to server> Socket error: 10061>
Retrying...> Could not connect to server> Socket error: 10061> Retrying...>
Could not connect to server> Socket error: 10061> Retrying...> Got connect
status changed> ServerReceive. Bytes received2: -1> ServerReceive. Recv failed:
10057> Got connect status changed> Could not connect to server> Socket error:
10061> Retrying...> Could not
Want to do more with Windows Live? Learn "10 hidden secrets" from Jamie. Learn
Now_______________________________________________Capture-HPC mailing [EMAIL
PROTECTED]://public.honeynet.org/mailman/listinfo/capture-hpc-- ----Web:
http://www.mcs.vuw.ac.nz/~cseifertPGP
keyhttp://www.mcs.vuw.ac.nz/~cseifert/pgpkey.txtPrimary key fingerprint: E979
0D9A 9187 D821 F86F B712 C8DB 0583 B046 BAEF
_________________________________________________________________
Stay up to date on your PC, the Web, and your mobile phone with Windows Live.
http://clk.atdmt.com/MRT/go/msnnkwxp1020093185mrt/direct/01/
_______________________________________________
Capture-HPC mailing list
[email protected]
https://public.honeynet.org/mailman/listinfo/capture-hpc
