MOON
Server: Apache
System: Linux smtp.modiva.org 3.10.0-862.14.4.el7.x86_64 #1 SMP Wed Sep 26 15:12:11 UTC 2018 x86_64
User: rtbrisc (1005)
PHP: 8.1.34
Disabled: NONE
Upload Files
File: //opt/microsoft/mdatp/sbin/mde_netfilter
ELF>�@�V@8	@@@@��888�A�A `K`K `K �� xKxK xK ��TTT  P�td<=<=<=��Q�tdR�td`K`K `K ��/lib64/ld-linux-x86-64.so.2GNU =�� @	=?A��|CE���qX�������}����� �`�b�zJ�Xg�� �- �Q�"�=xg�x����/k`9]���_f � t�G��/� P �P �P t
��
d2libpthread.so.0_ITM_deregisterTMCloneTable_ITM_registerTMCloneTablepthread_mutex_destroysendreadpthread_mutex_initrecv__errno_locationpthread_mutex_lockacceptpthread_createpthread_mutex_unlocklibsystemd.so.0__gmon_start__sd_is_socket_unixsd_listen_fdslibm.so.6lroundlibnfnetlink.so.0libmnl.so.0libffi.so.8libnetfilter_queue.so.1nfq_fdnfq_create_queuenfq_set_queue_maxlennfq_opennfq_get_payloadnfq_unbind_pfnfq_handle_packetnfq_get_nfmarknfq_closenfq_get_msg_packet_hdrnfq_set_modenfq_bind_pfnfq_set_verdict2nfq_get_outdevnfq_get_indevnfq_destroy_queuelibglib-2.0.so.0g_hash_table_insertg_hash_table_foreach_removeg_hash_table_removeg_hash_table_new_full_finig_direct_hashg_hash_table_destroyg_hash_table_lookup_extendedg_direct_equallibc.so.6sockettimerfd_createinet_ntop__stack_chk_failunlinklistengetpidcallocbind__syslog_chkpoll__strncpy_chktimerfd_settimeclock_gettimesleep__cxa_finalizestrerror__libc_start_mainfree_edata__bss_start_endGLIBC_2.2.5LIBSYSTEMD_209GLIBC_2.8GLIBC_2.4GLIBC_2.17GLIBC_2.3.4/opt/conan/libnfnetlink/lib:/opt/conan/libmnl/lib:/opt/conan/libffi8/lib:/opt/conan/libnetfilter_queue/lib:/opt/conan/glib2		
 ui	�� ��b ui	�ii
	ii
ui	����%ti	0`K �hK PpK pK �O �O �O �O �O �O /N N  N (N 0N 8N @N HN 	PN 
XN `N hN 
pN xN �N �N �N �N �N �N �N �N �N �N �N �N �N �N �N  �N !O "O #O $O % O &(O '0O (8O )@O *HO +PO ,XO -`O .hO 0pO 1xO 2�O 3�O 4�O 5�O 6�O 7�O 8�O 9�O :�O ;�O <H��H��: H��t�H����5�8 �%�8 @�%�8 h����%�8 h�����%�8 h����%�8 h����%�8 h����%�8 h����%�8 h����%�8 h�p����%�8 h�`����%�8 h	�P����%�8 h
�@����%�8 h�0����%z8 h� ����%r8 h
�����%j8 h�����%b8 h���%Z8 h����%R8 h�����%J8 h����%B8 h����%:8 h����%28 h����%*8 h����%"8 h�p����%8 h�`����%8 h�P����%
8 h�@����%8 h�0����%�7 h� ����%�7 h�����%�7 h�����%�7 h���%�7 h ����%�7 h!�����%�7 h"����%�7 h#����%�7 h$����%�7 h%����%�7 h&����%�7 h'�p����%�7 h(�`����%�7 h)�P����%�7 h*�@����%�7 h+�0����%z7 h,� ����%r7 h-�����%j7 h.�����%b7 h/���%Z7 h0����%R7 h1�����%J7 h2����%B7 h3����%:7 h4����%27 h5����%*7 h6����%"7 h7�p���1�I��^H��H���PTL��H�
#H�=�����fDH�=!7 H�7 H9�tH��6 H��t	�����H�=�6 H�5�6 H)�H��H��H��?H�H�tH��6 H��t��fD���=�6 u/UH�=�6 H��tH�=2 �=����h�����6 ]�����{���f.��H��t6SH��D�H��H�
�L����1����H��[����@UAWAVAUATSH���dH�%(H��$�W�)�$��$�)�$�)�$�)D$p)D$`)D$P)D$@���H�fH�
�L����A��1�����������L�=�5 I�H����H��hH��1����H�=Z5 H�5+5 H�
�1��
���I�H���H�=X���������)D$0�)D$ ���A�������_��H�T$ ��1�1��F�������{I��h`��$���$�fDŽ$�DŽ$�L�%�4 A�$����L��$�L�-�4 �\H�l�wH���k�����H��H�
qL�2I��1�����f.�A�$���F�L��������2�����y�����8��u���$�td��H�t$@H�T$�w��������ſ�H��H�
�L��A��1��D���I�?�G@�oDH�GHA�}����$��V�����$��H�t$ �P������u&��H��H�
yL��1�����A�$����A�}��1���H�$I�?H��h�W���I�H���H�5FH���^���I�?H��h�������h����I�H�|$1�H�
�j�������I�H�|$1�H��L�������A�E��$��^��������D����8���H��H�
�L����I��1�����D�
����8�v���H��H�
^L����I��1�������H������n���I��@`����H�lH�
L����1��n����	���H��H�
�L����A��1��@�������I�?�>I�H������I�?H��h����I�?H��t����I�dH�%(H;�$���1�H���[A\A]A^A_]�H��H�
L���;�������8�I���H��H�
1L����I��1�����
���H�����H�����H�;�������f�USP1�H��thH��H9�t`H�H+CH=�rQD�H�@H�
wL�d���1�����H��0 H�H�x�3�K�E1�E1������H��[]�DUAVSH��dH�%(H�D$xW�D$fD$ZD$JD$:D$*D$D$
A�����H��tTH��H��tLH�E�H���rBH��1������x��rRH�+�H��H�
�L���1��2���dH�%(H;D$x�.D��H�Ā[A^]Ã�uAA����H��E1������y�H��H�
nL��A��H��H�
L�q��1������1����A�ƅ�xUf�D$H�|$
�lH��H���/��D$uH�=����H�t$D���n������xD����[�������H�r�����U����8���H�zH�
�L����I��1��������+���ff.�SH�� dH�%(H�D$W�)$H����Hi$�W��H*D$�^��dH�%(H;L$u	H�H�� [����fff.�AVSH��HdH�%(H�D$@W�D$.)D$ )D$H����H�F�H����H��D�A��
t(A��uuH����H�sL�t$�L���H��.usH�sL�t$�
L��.����C�$H�YH�
�L�g��M��1����&H�YH�
2L�<��1���dH�%(H;D$@uH��H[A^����UAVS�H��tuH��uoH���D�H��tbD�pH���"��t�A��tFH�����t�A��t/E��H��H�

L����1������[A^]�fDUAWAVSH��dH�%(H�D$H���+I��H���I��������H���H��A����kW�)$H���S�Hi,$�W��H*D$�^��4�H�H�CI�ohH�����I���A��H���K�H���#�E�DD��[A��H��H�
L�7��1�US���H���D��L��1���H��H��yh���8�O�H�hH�
7L����I��1����1H���H��H�
L��1ۿ�1��S�dH�%(H;D$u
��H��[A^A_]��q�UAWAVAUATSH��(dH�%(H�D$ H�D$H�D$H�D$H���WI��D�wDH�v* �����M�|$hL�l$�Efff.�H����H��H�
:
L��1�U��H������Q�D��L��1��������D�L$�l$E��t����u�L����I��$��t$H�T$H�L$�U�L��A��L���7�E��I��t�H�l$D�L$D�T$I�ۋ]��H�vH�
L��1�SL��AR���H��I�|$�t$�T$�ME1�E1���L���g�I��$��t$�6�L��������H��H�
!L����1��s��;��8��H�vH�
�L�P��I��1��<��H��( D�H��H�
wL���1���dH�%(H;D$ u1�H��([A\A]A^A_]�� �UAWAVAUATSH��dH�%(H��$H�D$H��tFH��H��H�
�
L����1����C�D$�D$H�-( �E��tQH��H�
�
L�a��1��D�dH�%(H;�$�1�H��[A\A]A^A_]�L�sL�|$L�d$�D����H��
H�
�
L��I��1����ff.��E���[����L�����C���xu��ff.�����8��u��D$t��{�L��1����H��~#I��L����H�;L��D���
�L���e��y��|��8i�s�����H�VH�
�	L�01����H����S�UAVSH���3H�����H�H���OH�Ǿ�����yH�;������{H�;�
�����}H�;�
�c����H�;H��1�1���H���zI��H�{1��!�L���������jL�������y7�o��8���H�:H�
�L��1��I��1��
�L�sH�;���CH�/H�
IL����A��1�����H�MH�
XL�f��1��������������8�4�H�PH�
L�*��I��1��k������������8���H�2�r���s��8���H�P�[���\��8���H�m�D���E��8��H���-�0��8��H���`��������8��H��H�
gL�u��I��1�����[A^]�ffffff.�UAWAVAUATSH��XdH�%(H�D$PH�D$�����H���NH��# L�0M���;I�տ����H��tZI��L���8�H��tu��A���Hf��D���@�\$�$H��H�
L����1�����-H�YH�
qL�y��1�����1�H�t$L�������tt��}lH�D$����@��fA�fALJ��HA�O�HA���D�H	A����A����L�`�Hf��fA�O�@f����$H�
H�
�L��1ۿ�A���fA�
fALJ�
D�HA����A���?L�`(�H(f��fA�O�H*f�����Hf��fA�O�@f��E1�I�wfA���E��W�D$>)D$0)D$ H�l$ �H����A�G�$H��H�
jL����I��1��<�E���W�D$>)D$0)D$ A��
�pA���@L��H�ƄH�l$ �H�����H(f��fA�O�H*f��E1�fA���I�w@AG@A���@A��W�D$>)D$0)D$ H�l$ �
H��.��A�G�$H��H�
}L�
��I��1��O�E���W�D$>)D$0)D$ A����A��
uWL��H�ƈH�l$ �
H��.�$�A����$H�}H�
�L����I��1�����&H�}H�
VL�`��1���L�����H��t_�XL���z���t
���tEL������t
���t/D��H�6H�
gL�T��1��<��A��L�����Ã�M��tA�D$%�����=��A��t��L��L����Ņ����oE��H�9H�
aL�i��1���������;�$H���
�$H��H�
�L�-1ۿ�1��u���yJE��H��H�
�L��
��1��D�I�~A�����E1�E1���L����dH�%(H;D$Pu��H��X[A\A]A^A_]��9�f�H��t)SH��H�H��t�)�H�{��H�;H��[t+�r�H�?H�
JL�
��1����f.��AWA��AVI��AUI��ATL�%X UH�-X SL)�1�H��H�����H��t�L��L��D��A��H��H9�u�H��[]A\A]A^A_Ðf.���H��H���%s: %s: Cleaning up Packet: %dDEBUGpacket_destructor%s: %s: MDE Netfilter process started PID: %dINFOmain%s: %s: Failed to allocate memory for vnet sessionERROR/var/run/mde_netfilter.sock%s: %s: Failed to listen on the socket%s: %s: Failed to setup timer%s: %s: Poll interrupted: %s%s: %s: Failed to accept new connection error: %s%s: %s: Client connected: %d.
%s: %s: Error in intialising netfilter queue library handle%s: %s: Could not create netfilter_event_handler thread%s: %s: Could not create client_verdict_receiver thread%s: %s: Client is not yet connected - Either started manually or reboot sequence%s: %s: Shutting down MDE Netfilter process PID: %d%s: %s: Failed to create timer: %ssetup_timer%s: %s: Failed to setup timer: %s%s: %s: Failed to read from timerfdack_timer%s: %s: TIMEOUT! Approving outstanding packet: %dtimeout_check��.A%s: %s: Failed to read listening FD from environmentcreate_named_socket%s: %s: Too many file descriptors received!%s: %s: Failed to verify socket%s: %s: Creating socket traditionally%s: %s: Failed to create socket%s: %s: Failed to bind socket error: %s%s: %s: addr: %s, port: %u
log_ip_address%s: %s: Not supported IP address %d
%s: %s: Packet received for invalid hook %dget_event_type%s: %s: MDE Netfilter session is not yet initializedsend_to_client%s: %s: Failed to allocate memory for a packet%s: %s: Send Packet %d Mark: %u Protocol: %u to client%s: %s: Failed to provide packt to client for vetting error: %sclient_verdict_receiver%s: %s: Client orderly shutdown: %s%s: %s: Client didn't send proper verdict: %d for the packet: %d%s: %s: PacketID id: %u Verdict: %d packet mark: %u%s: %s: Exiting client recevier thread: %d%s: %s: Started netfilter event handling threadnetfilter_event_handler%s: %s: Dropping packets due to insufficient memory!
%s: %s: Netfilter receiver thread exiting%s: %s: Session is not yet initializednetfilter_platform_init%s: %s: Error %s during nfq_open()%s: %s: Error %s during nfq_unbind_pf() with AF_INET%s: %s: Error %s  during nfq_bind_pf() with AF_INET%s: %s: Error %s during nfq_unbind_pf() with AF_INET6%s: %s: Error %s during nfq_bind_pf() with AF_INET6%s: %s: Error %s during nfq_create_queue()%s: %s: Error %s during nfq_set_mode%s: %s: Error %s during nfq_set_queue_maxlen()%s: %s: Initialize the netfilter queue with FD: %dnet_cleanup%s: %s: Memory allocation failed for msg datanet_queue_callback%s: %s: hw_protocol=0x%04x, hook=%u, id=%u%s: %s: Invalid packet length: %d, packet id: %u%s: %s: Non tcp/ip traffic: %d, id=%uWARN%s: %s: Non tcp/ipv6 traffic: %d, id=%u%s: %s: Invalid event type, ignoring packet: id=%u%s: %s: ALLOW - PacketID id: %d;�����t���d����� ��pt��d�������$t�P��d��4�H��tT�����$���,zRx����*zRx�$���FJw�?;*3$"DX��<F�pE�L`|��NABB B(B0A8G��������8A0B(B BBAA�(�|�{AAA ��uAA4����ABA G����� ABAA� ��dAD0�XAA0(8��	BAD`���ABA`(d���ABA ����BAD���ABB A(D@�����HAPI@�(A BBAA@\�t�PABB B(B0A8D`������fhbpI`�hBpI`�8A0B(B BBAA`L8d��ABB B(B0A8G��������8A0B(B BBAA�(���aABA ���YBAL�(��ABB B(B0A8D��������8A0B(B BBAA���UF�a�D$��eB�E�E �E(�H0�H8�M@l8A0A(B BBBl���PpK �
0<HO�
d2`K hK ���ox��
��M @���	���o���o ���o�o�
���oxK 6FVfv��������&6FVfv��������&6FVfv��������&6FVfv���GCC: (GNU) 4.8.5 20150623 (Red Hat 4.8.5-44)GCC: (GNU) 8.3.1 20190311 (Red Hat 8.3.1-3)clang version 15.0.6 (https://eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Imt6UFh2cVJPMEN1UzRqU296REc4d21EM1RmcyJ9.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.gsDndffBvIByKSoqvQXdhK36JOv46YIETpZ2vjQJgGqSsj9dQCzcJIwUdo8LOApZ11eaxwI2AQvzbTNCDtiRAdF8tURu7n7smyCSPFvX1yLYE1lt_cG0c8R1j77CkRREPJvGJ7Vy8ziGG6MGK6fvPtJcUt1fKE6nFhutKFAyjBhCqGVIJBxcdOIie8iQUr93mj1rGw6d00ke8gwb1AZasqMBquKSY5Amhxr4pvCveTzMmwEL2fhO_gvNEwvyXPNQLJpitKxHAmp3t5YEgf_K23U4RfjK0qnMWPBkCrDyAkuoeevxF46ejA4WshE8QJ3Jz5LZZzRXZq0GVmqyt07e9A@microsoft.visualstudio.com/DefaultCollection/Windows%20Defender/_git/x.github.llvm.llvm-project 088f33605d8a61ff519c580a71b1dd57d16a03f8).shstrtab.interp.note.ABI-tag.gnu.hash.dynsym.dynstr.gnu.version.gnu.version_r.rela.dyn.rela.plt.init.text.fini.rodata.eh_frame_hdr.eh_frame.init_array.fini_array.data.rel.ro.dynamic.got.data.bss.comment88TT !���oxx8+��03���;���o�
�
�H���o  �W���aB��@k��f  �q���wd2d2	}p2p2�
�<=<=���=�=��`K `K�hK hK�pK pK�xK xK���M �M�P P�P P�0P��U�