FinFisher/70CD6D97
Inhaltsverzeichnis
70CD6D97
Licenses
| LicenseID | MachineUID | SoftwareUID | SoftwareName | VersionMajor | NotBefore | ValidityStart | NotAfter | ValidityEnd | InstallationDate | LicenseFile | LicenseContents | Status | CustomerID | ProductID | Deleted | UserID | DataEntryDate | LastUpdated |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 373 | 4D:F0:4C:27:E7:2C:FE:08 | 00:1E:00:0A | FinSpyV2 | 4 | 1337385600 | 2012-05-19 02:00:00 | 1369094400 | 2013-05-21 02:00:00 | 2012-05-21 11:31:23 | License.txt | MACHINE UID
4D:F0:4C:27:E7:2C:FE:08 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 4 TARGETS MAX NUMBER 5 NOT BEFORE 1337385600 NOT AFTER 1369094400 MOBILE NOT BEFORE 1337385600 MOBILE NOT AFTER 1369094400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 61 | 1 | 1 | 5 | 2012-05-21 11:31:23 | 2013-05-27 12:15:44 |
| 374 | 4D:F0:4C:27:E7:2C:FE:08 | 00:1E:00:0A | FinSpyV2 | 4 | 1337385600 | 2012-05-19 02:00:00 | 1369094400 | 2013-05-21 02:00:00 | 2012-05-21 11:32:03 | License.txt | MACHINE UID
4D:F0:4C:27:E7:2C:FE:08 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 4 TARGETS MAX NUMBER 5 NOT BEFORE 1337385600 NOT AFTER 1369094400 MOBILE NOT BEFORE 1337385600 MOBILE NOT AFTER 1369094400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 61 | 16 | 1 | 5 | 2012-05-21 11:32:03 | 2013-05-27 12:15:40 |
| 375 | 4D:F0:4C:27:E7:2C:FE:08 | 00:1E:00:0A | FinSpyV2 | 4 | 1337385600 | 2012-05-19 02:00:00 | 1369094400 | 2013-05-21 02:00:00 | 2012-05-21 11:32:32 | License.txt | MACHINE UID
4D:F0:4C:27:E7:2C:FE:08 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 4 TARGETS MAX NUMBER 5 NOT BEFORE 1337385600 NOT AFTER 1369094400 MOBILE NOT BEFORE 1337385600 MOBILE NOT AFTER 1369094400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 61 | 14 | 1 | 5 | 2012-05-21 11:32:32 | 2013-05-27 12:15:36 |
| 389 | 06:92:F8:FD:C5:6E:65:FF | 00:1A:00:0A | FinFly-LAN | 4 | 1338768000 | 2012-06-04 02:00:00 | 1370908800 | 2013-06-11 02:00:00 | 2012-06-06 13:59:27 | License.txt | MACHINE UID
06:92:F8:FD:C5:6E:65:FF CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1338768000 NOT AFTER 1370908800 DEMO 1 |
Activated | 61 | 2 | 1 | 5 | 2012-06-06 13:59:27 | 2013-05-27 12:15:32 |
| 390 | 21:77:88:D4:7B:DD:58:17 | 00:1D:00:0A | FinFireWire | 4 | 1338768000 | 2012-06-04 02:00:00 | 1370476800 | 2013-06-06 02:00:00 | 2012-06-14 15:11:34 | License.txt | MACHINE UID
21:77:88:D4:7B:DD:58:17 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1D:00:0A SOFTWARE NAME FinFireWire VERSION MAJOR 4 NOT BEFORE 1338768000 NOT AFTER 1370476800 DEMO 0 |
Activated | 61 | 12 | 1 | 5 | 2012-06-14 15:11:34 | 2013-05-27 12:15:27 |
| 391 | 06:80:9A:29:89:6D:94:AE | 00:1B:00:0A | FinFly-Web | 4 | 1339200000 | 2012-06-09 02:00:00 | 1370908800 | 2013-06-11 02:00:00 | 2012-06-14 15:12:13 | License.txt | MACHINE UID
06:80:9A:29:89:6D:94:AE CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1B:00:0A SOFTWARE NAME FinFly-Web VERSION MAJOR 4 NOT BEFORE 1339200000 NOT AFTER 1370908800 DEMO 0 |
Activated | 61 | 13 | 1 | 5 | 2012-06-14 15:12:13 | 2013-05-27 12:15:22 |
| 508 | 5C:42:7E:13:BB:3F:BE:B9 | 00:2A:00:0A | FinIntrusion-Kit | 4 | 1361923200 | 2013-02-27 01:00:00 | 1394150400 | 2014-03-07 01:00:00 | 2013-03-01 16:50:58 | License.txt | MACHINE UID
5C:42:7E:13:BB:3F:BE:B9 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:2A:00:0A SOFTWARE NAME FinIntrusion-Kit VERSION MAJOR 4 NOT BEFORE 1361923200 NOT AFTER 1394150400 DEMO 0 |
Expired | 61 | 5 | 0 | 5 | 2013-03-01 16:50:58 | 2014-03-07 00:17:01 |
| 596 | 4D:F0:4C:27:E7:2C:FE:08 | 00:1E:00:0A | FinSpyV2 | 4 | 1368921600 | 2013-05-19 02:00:00 | 1400630400 | 2014-05-21 02:00:00 | 2013-05-27 14:08:04 | License.txt | MACHINE UID
4D:F0:4C:27:E7:2C:FE:08 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 4 TARGETS MAX NUMBER 5 NOT BEFORE 1368921600 NOT AFTER 1400630400 MOBILE NOT BEFORE 1368921600 MOBILE NOT AFTER 1400630400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Expired | 61 | 1 | 0 | 5 | 2013-05-27 14:08:04 | 2014-05-21 00:17:01 |
| 597 | 4D:F0:4C:27:E7:2C:FE:08 | 00:1E:00:0A | FinSpyV2 | 4 | 1368921600 | 2013-05-19 02:00:00 | 1400630400 | 2014-05-21 02:00:00 | 2013-05-27 14:08:24 | License.txt | MACHINE UID
4D:F0:4C:27:E7:2C:FE:08 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 4 TARGETS MAX NUMBER 5 NOT BEFORE 1368921600 NOT AFTER 1400630400 MOBILE NOT BEFORE 1368921600 MOBILE NOT AFTER 1400630400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Activated | 61 | 16 | 1 | 5 | 2013-05-27 14:08:24 | 2013-05-27 12:16:10 |
| 598 | 4D:F0:4C:27:E7:2C:FE:08 | 00:1E:00:0A | FinSpyV2 | 4 | 1368921600 | 2013-05-19 02:00:00 | 1400630400 | 2014-05-21 02:00:00 | 2013-05-27 14:08:46 | License.txt | MACHINE UID
4D:F0:4C:27:E7:2C:FE:08 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1E:00:0A SOFTWARE NAME FinSpyV2 AGENTS MAX NUMBER 4 TARGETS MAX NUMBER 5 NOT BEFORE 1368921600 NOT AFTER 1400630400 MOBILE NOT BEFORE 1368921600 MOBILE NOT AFTER 1400630400 MOBILE TARGETS MAX NUMBER 5 VERSION MAJOR 4 DEMO 0 |
Expired | 61 | 14 | 0 | 5 | 2013-05-27 14:08:46 | 2014-05-21 00:17:01 |
| 599 | 06:92:F8:FD:C5:6E:65:FF | 00:1A:00:0A | FinFly-LAN | 4 | 1370736000 | 2013-06-09 02:00:00 | 1402444800 | 2014-06-11 02:00:00 | 2013-05-27 14:09:30 | License.txt | MACHINE UID
06:92:F8:FD:C5:6E:65:FF CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1A:00:0A SOFTWARE NAME FinFly-LAN VERSION MAJOR 4 NOT BEFORE 1370736000 NOT AFTER 1402444800 DEMO 0 |
Activated | 61 | 2 | 0 | 5 | 2013-05-27 14:09:30 | 2013-05-27 12:09:30 |
| 600 | 21:77:88:D4:7B:DD:58:17 | 00:1D:00:0A | FinFireWire | 4 | 1370304000 | 2013-06-04 02:00:00 | 1402012800 | 2014-06-06 02:00:00 | 2013-05-27 14:10:16 | License.txt | MACHINE UID
21:77:88:D4:7B:DD:58:17 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1D:00:0A SOFTWARE NAME FinFireWire VERSION MAJOR 4 NOT BEFORE 1370304000 NOT AFTER 1402012800 DEMO 0 |
Expired | 61 | 12 | 0 | 5 | 2013-05-27 14:10:16 | 2014-06-06 00:17:01 |
| 601 | 4E:9F:20:6A:BF:AD:FA:D5 | 00:1B:00:0A | FinFly-Web | 4 | 1339200000 | 2012-06-09 02:00:00 | 1402444800 | 2014-06-11 02:00:00 | 2013-05-27 14:12:38 | License.txt | MACHINE UID
4E:9F:20:6A:BF:AD:FA:D5 CUSTOMER UID 70CD6D97 SOFTWARE UID 00:1B:00:0A SOFTWARE NAME FinFly-Web VERSION MAJOR 4 NOT BEFORE 1339200000 NOT AFTER 1402444800 DEMO 0 |
Activated | 61 | 13 | 0 | 5 | 2013-05-27 14:12:38 | 2013-05-27 12:12:38 |
Support-Requests
242E22D4
TrackingID: "242E22D4"
Summary: "Agent looses contact with target + weird behaviour target"
Description: "When I open in Live view the File access module, I leave it open and then I open the forensic module, the agent looses connection with target. So at this stage Im in the situation again like Ticket Nr 96DCBD43. Also the same solution can be used. What worries me really here is that I have opened task manager and firefox on the target and these 2 began switching between each other and Task manager came partially into the firefox window -see attachment.\r\nThis only happens apparently when task manager is opened. If I open wordpad and firefox for example and I reproduce the bug then the latter doesnt happen. Also, sometimes a window looses its titlebar -see attachment."
ProductID: 1
TypeID: 1
FileName: "242E22D4.rtf"
StatusNotification: 1
SupportComments: "Referring to your mail, the ticket will be closed."
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-06 13:52:17"
LastUpdated: "2012-07-05 08:31:17"
2C84DEE7
TrackingID: "2C84DEE7"
Summary: "Buttons show-export-delete are invisible"
Description: "In the agent, when the descriptions in the field are too long, then the buttons beside the metadata are too far away and we always need to scroll for each record to the end of the screen, while theres a lot of whitespace between these metadata and the action buttons. Is it possible to put these buttons directly behind the metadata or to be able to order the fields ourselves by dragging and dropping the field that contains the buttons to the front of the list?\r\n\r\nThanks\r\n\r\nWim"
ProductID: 1
TypeID: 3
FileName: "2C84DEE7"
StatusNotification: 1
SupportComments: "Dear Customer,
please be informed, that the Action buttons location has been adjusted accordingly.
Best regards,
FinFisher Support"
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-06 11:13:43"
LastUpdated: "2012-10-12 11:13:00"
75D192EC
TrackingID: "75D192EC"
Summary: "timestamp screenshots"
Description: "we came to the conclusion that screenshots taken from the target are not individually timestamped. This will be a problem for the acceptance, because if not each screenshot is timetamped, the evidence - the screenshots in this case - cant be used in court, because it wont get accepted."
ProductID: 1
TypeID: 4
FileName: "75D192EC"
StatusNotification: 1
SupportComments: "Dear Customer,
please be informed, that the required feature has been implemented.
Best regards,
FinFisher Support"
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-05 08:46:46"
LastUpdated: "2012-10-12 11:10:55"
797C3424
TrackingID: "797C3424"
Summary: "Mac Version 10.7"
Description: "Having the possibilty to use FFWire on MacBookPro version 10.7 and higehr"
ProductID: 12
TypeID: 5
FileName: "797C3424"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 61
Language: "en"
CreationDate: "2012-10-24 11:03:29"
LastUpdated: "2012-10-25 08:30:15"
7D5843D0
TrackingID: "7D5843D0"
Summary: "Add flag to put rootkit asleep and to waken the rootkit"
Description: "We may only intercept data when we have a warrant from the judge. sometimes a waarant is valid from one date to another. The last valid day, we normally should get a new warrant. But sometimes this comes 1 week later. So what we would like to do is putting the rootkit asleep at the last day of the warrant, and waken the rootkit again on the first day of the new warrant.\r\n\r\nThis functionality has been asked during the meeting on the 14th of january 2014. Thanks very much!"
ProductID: 1
TypeID: 5
FileName: "7D5843D0"
StatusNotification: 0
SupportComments: "
\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>\r\n<pre>An corresponding email has been sent.
\r\n\r\n\r\n\r\n\r\n\r\n"
StatusID: 2
CustomerID: 61
Language: "en"
CreationDate: "2014-04-01 14:50:45"
LastUpdated: "2014-04-17 11:04:49"
7D8AA359
TrackingID: "7D8AA359"
Summary: "change email address supoort "
Description: "Hello, I saw that the e-mail for the contact person is my private e-mail address - wim.bordeyne@telenet.be\r\n\r\nCan you please use the following email address as primary contact address: h.isrd@skynet.be\r\nAnd my private mail address as secondary contact?\r\nThanks\r\n\r\nsincerely,\r\n\r\nWim"
ProductID: 1
TypeID: 3
FileName: "7D8AA359"
StatusNotification: 1
SupportComments: "A suitable mail has been written."
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-05 09:08:53"
LastUpdated: "2012-06-06 08:58:57"
8DB12C5E
TrackingID: "8DB12C5E"
Summary: "Laptops delivered with the agent licenses stop working"
Description: "2 Laptops delivered with the agent licenses stop working. It concerns the Lenovo E520. Without any reason, they stop working. Apparently this is a common known problem since a lot of customers of Lenovo are having the same issues as we could see on the Internet.\r\n\r\nKindly request to replace the 4 laptops by other models or to have another workaround.\r\n\r\nThanks"
ProductID: 1
TypeID: 3
FileName: "8DB12C5E"
StatusNotification: 1
SupportComments: ""
StatusID: 2
CustomerID: 61
Language: "en"
CreationDate: "2012-10-24 10:52:48"
LastUpdated: "2012-10-25 08:30:32"
96DCBD43
TrackingID: "96DCBD43"
Summary: "Live view failure and online configuration failure"
Description: "When target was online I tried to change the configuration. So I got the available modules and went to the module changed files. There I checked the checkbox all drives, unchecked it immediately and then clicked on the button save configuration while in fact nothing has been changed - just a check and uncheck of the same checkbox. At that moment there is no confirmation that the configuration on the target was saved and from that moment on, it isnt possible anymore to do a live view or a reconfiguration. In fact, because the target is still online, when you click configuartion, the agent connects but then hangs when obtaining available modules. I managed to solve the issue by bringing the target off line. So when I click configuration, I can configurate in the same way and save the configuartion and also get the confirmation that configuration was saved. Then when I bring back the target online, I can do a live view again or an online configuration. Of course, in a real situation, I have no control of the target and hence this could be a problem since some targets never come off line."
ProductID: 1
TypeID: 1
FileName: "96DCBD43"
StatusNotification: 1
SupportComments: "Referring to your mail, the ticket will be closed."
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-06 11:06:27"
LastUpdated: "2012-07-05 08:30:39"
A2263BF0
TrackingID: "A2263BF0"
Summary: "keylogger mixup"
Description: "When visualizing data, the keylogger module does not show the correct information. please see attachment"
ProductID: 1
TypeID: 2
FileName: "A2263BF0.doc"
StatusNotification: 1
SupportComments: "Regarding to your mail, the ticket will be closed."
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-05 09:05:24"
LastUpdated: "2012-07-05 08:28:26"
A28D0ECD
TrackingID: "A28D0ECD"
Summary: "rootkit doesnt report back anymore"
Description: "We installed our first real targetsystem - MacBookPro 10.6.8. In the beginning rootkit reported back, but since 11th of October the rootkit doesnt report back anymore to the master. We did some tests with Pierre and Lucian: relayserver works fine for other test-rootkits - data comes to Master server for other test-rootkits. Please can you look with Pierre and Lucian how we can get data out of infected target pc, because target is online on regular basis and data reaches the relayserver."
ProductID: 1
TypeID: 1
FileName: "A28D0ECD"
StatusNotification: 1
SupportComments: "All data have been sent to the master. The ticket will be closed."
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-10-24 10:50:06"
LastUpdated: "2013-01-07 16:15:42"
CE9FD14B
TrackingID: "CE9FD14B"
Summary: "Rootkit doesnt come online"
Description: "When we install a rootkit to the target that contains no modules, the rootkit never comes online. This means that we are not able to work gradually and on the other hand that if we should make a mistake in remote configuration, that we will never be able agin to contact the rootkit."
ProductID: 1
TypeID: 1
FileName: "CE9FD14B"
StatusNotification: 1
SupportComments: "Referring to your mail, the ticket will be closed."
StatusID: 4
CustomerID: 61
Language: "en"
CreationDate: "2012-06-05 13:47:59"
LastUpdated: "2012-07-05 08:29:39"
