Hey guys, new member to this site and looking for some help. I am working in a large scale enterprise environment and am coming across some Taplika class traffic that I am unable to identify. In the URI I am getting the typical Taplika class signature but with a bundle ID that I cannot find anything on.
I have pulled the SSL logs and the DNS logs and don't see anything out of the ordinary or anything that looks malicious. Has anyone encountered this traffic within their network and were they able to determine what type of Taplika infection they had?
Edited by michaelmeis, 13 October 2015 - 11:51 PM.