Detected 362 occurrence(s) of ‘[\s\|,;']+[a-z0-9\-\._]+@[a-z0-9\-\.]+\.[a-z]{2,4}[\s\|,;:']+’:

>   | editor     | <blank>      |
| 3  | <blank>       | ordereditor    | ordereditor    | 1        | <blank>   | <blank>    | <blank>      |
| 4  | <blank>       | orderconfirmer | orderconfirmer | 1        | <blank>   | <blank>    | <blank>      |
| 1  | info@tizio.eu | admin          | admin          | 1        | <blank>   | admin      | <blank>      |
+----+---------------+----------------+----------------+----------+-----------+------------+--------------+


Database: membership  [20 tables]
+---------------------

Detected 1 occurrence(s) of ‘(h[a4]ck[e3]d|[p0]wn[e3]d|d[e3]f[a4]c[e3]d) by’:

             International Pharmaceutical Federation (FIP) Hacked By Xception Code

Message To International Commission for the Conservation of Atlantic Tunas  :  You Had Never Got Hacked Before By Anyone Right ?... Oh.. So , You Think That You Are So Much Secure. Lulz , yes. You Were Secure.. But , You Were Unable To St

Detected 4 occurrence(s) of ‘\| (user|username|login|password|email|uid) \|’:

------------------------+--------------------------------+----------+----------+-------------------+--------------+------------------------------------------------------------------+
| id  | email                          | username                       | password | isactive | last_name         | first_name   | organization                                                     |
+-----+--------------------------------+--------------------------------+----------+----------+-------------------+--------------+-----------

Detected 5 occurrence(s) of ‘\|\s+Pass(word)*\s+\|’:

         |
+---------------------------------+

Database: lisbon2010 Table: fip_website_user [4 entries]
+----+---------------+----------------+----------------+----------+-----------+------------+--------------+
| id | email         | username       | password       | isactive | last_name | first_name | organization |
+----+---------------+----------------+----------------+----------+-----------+------------+--------------+
| 2  | info@tizio.eu | editor         | editor         | 1        | <blank>   | editor     | <

Detected 9 occurrence(s) of ‘(\| [a-z0-9\-\._]+@\S+\.[a-z]{2,4} \| \S+)’:

  | editor     | <blank>      |
| 3  | <blank>       | ordereditor    | ordereditor    | 1        | <blank>   | <blank>    | <blank>      |
| 4  | <blank>       | orderconfirmer | orderconfirmer | 1        | <blank>   | <blank>    | <blank>      |
| 1  | info@tizio.eu | admin          | admin          | 1        | <blank>   | admin      | <blank>      |
+----+---------------+----------------+----------------+----------+-----------+------------+--------------+


Database: membership  [20 tables]
+-----------------------+

Detected 10 occurrence(s) of ‘IN[\t ]+(AAAA|MX|SOA|CNAME|NS)[\t ]+’:

r.arpa	IN	NSEC	
next domain name:	88.206.213.in-addr.arpa
record types:	NS RRSIG NSEC
7199s	(01:59:59)
87.206.213.in-addr.arpa	IN	NS	ns3.widexs.nl	3600s	(01:00:00)
87.206.213.in-addr.arpa	IN	NS	ns2.widexs.net	3600s	(01:00:00)
87.206.213.in-addr.arpa	IN	NS	ns1.widexs.nl	3600s	(01:00:00)




POC To Hack  International Pharmaceutical Federation (FIP)

Web-Server : Apache

Application : PHP , Plesk Hosting Panel

Back-End DBMS : Mysql 5.0

Total Databases : 9
[*] amsterdam2012
[*] amsterdam_2012

Source: http://pastebin.com/raw.php?i=z2PX6JZU

Detected 4 occurrence(s) of ‘IN[\t ]+(AAAA|MX|SOA|CNAME|NS)[\t ]+’:

type	data	time to live
gov	IN	NS	b.gov-servers.net	117201s	(1.08:33:21)
gov	IN	NS	a.gov-servers.net	117201s	(1.08:33:21)

Additional records

name	class	type	data	time to live
a.gov-servers.net	IN	A	69.36.157.30	65586s	(18:13:06)
a.gov-servers.net	IN	AAAA	2001:500:4431::2:30	23283s	(06:28:03)
b.gov-servers.net	IN	A	209.112.123.30	72193s	(20:03:13)





Web-Server Operating System : Windows Vista

Web - Application Technology : Microsoft IIS 7.0

Back-End Database : Mysql 5.0.11

Total Databases

Detected 44 occurrence(s) of ‘[\s\|:;'"]+[0-9a-f]{32}(?:[0-9a-f]{8})?[\s\|:;'"]+’:

C3-SHA1 (7)
digest type:	SHA-256 (2)
digest:
(256 bits)	
B61313C4D8412864F8A284F20FB78781
5D1B198ED53FDF7560CB884340EC5C18
75828s	(21:03:48)
nea.gov	IN	DS	
key tag:	943
algorithm:	RSASHA1-NSEC3-SHA1 (7)
digest type:	SHA-1 (1)
digest:
(160 bits)	
7A7A9B33FCDDD274C9A5B90CAE50F031
9F1CEDA3
75828s	(21:03:48)



Authority records

name	class	type	data	time to live
gov	IN	NS	b.gov-servers.net	117201s	(1.08:33:21)
gov	IN	NS	a.gov-servers.net	117201s	(1.08:33:21)

Additional records

name	class	type	data	time to live
a.gov-

Detected 76 occurrence(s) of ‘[\s\|,;']+[a-z0-9\-\._]+@[a-z0-9\-\.]+\.[a-z]{2,4}[\s\|,;:']+’:

74.7244       | NULL       | NULL       | Mollie            | South Arts                                            | NULL                 | NULL        |
| 62 | <blank>     | 303.629.9717     | 303.607.9019                                        | Denver                   | adrianne.devereux@westaf.org         | <blank>      | CO    | NULL                   | http://www.westaf.org/                                   | Operations Manager/Accessibility Coordinator                                                | NULL                                              | <bl

Detected 1 occurrence(s) of ‘(h[a4]ck[e3]d|[p0]wn[e3]d|d[e3]f[a4]c[e3]d) by’:

               National Endowment For The Art Website Hacked By Xception Code

Target : National Endowment For The Art
Website : http://www.nea.gov

Message To National Endowment For The Art Administrators : Xception Code Owned Your Box.Lulz , What You Are Wandering ??? You May Be Wandering That How / Why This Ha

Detected 8 occurrence(s) of ‘(\| [a-z0-9\-\._]+@\S+\.[a-z]{2,4} \| \S+)’:

L       | NULL       | Michele           | Vermont Arts Council                                  | NULL                 | NULL        |
| 51 | J.          | 804.225.4327     | 804.225.3132                                        | Richmond                 | foster.billingsley@arts.virginia.gov | <blank>      | VA    | NULL                   | http://www.arts.state.va.us/                             | Deputy Director/Accessibility Coordinator                                                   | Accessibility Coordinator                         | <blank>   

Source: http://pastebin.com/raw.php?i=Brc7FA0Y

Detected 29 occurrence(s) of ‘IN[\t ]+(AAAA|MX|SOA|CNAME|NS)[\t ]+’:

from 198.41.0.4#53(a.root-servers.net) in 19 ms

typemedia2012.com.	172800	IN	NS	ray.ns.cloudflare.com.
typemedia2012.com.	172800	IN	NS	iris.ns.cloudflare.com.
;; Received 118 bytes from 192.31.80.30#53(d.gtld-servers.net) in 32 ms

typemedia2012.com.	300	IN	CNAME	d1v1wel70zoowi.cloudfront.net.
;; Received 78 bytes from 173.245.58.118#53(iris.ns.cloudflare.com) in 15 ms

Source: http://pastebin.com/raw.php?i=iQkNBT5Y

Detected 5 occurrence(s) of ‘IN[\t ]+(AAAA|MX|SOA|CNAME|NS)[\t ]+’:

 43200)            ; Minimum

@                      600      IN NS    ns1.softlayer.com.
@                      600      IN NS    ns2.softlayer.com.

@                      600      IN MX 10 mail.mbsolucionesweb.com.
@                      600      IN MX 20 smtp01.mbsolucionesweb.com.

default._domainkey     86400    IN TXT   "g=*; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAVugXv1BVmpb6UPjIuy3rlFhYo1/Mz5yJBcudWufgWaNlF1wUyZ jS0In6PglSIJgHt7emHqSledTy3QWYb1kQB5QjZ+bBeoDapEXkUfpFKxZhb/vxcB39GPGputfyy

Source: http://pastebin.com/raw.php?i=56P2LVYU

Detected 3 occurrence(s) of ‘IN[\t ]+(AAAA|MX|SOA|CNAME|NS)[\t ]+’:

                               1W              ; expire
                                1H              ; ncache
                        )
        IN      NS      ars-arch.xtreem.ru.
        
ars-arch 	IN    	A	81.24.82.71
ars-arch1	IN 	A	81.24.82.72
ns 		IN 	CNAME 	ars-arch

Source: http://pastebin.com/raw.php?i=KgxXPvRB