All Leaked Details Of FBI ... by LazArU$ All Leaked Details Of FBI …. ! The NightBlade007 … The %20 LazaRus FEDERAL BUREAU OF INVESTIGATION DOXED !! FBI GOT doXed .. HACKED BY NIGHTBLADE007 : THE %20 LAZARUS : Dox_ei MEMBERS OF THE TEAM : ./NoName512 ./x ExcaliBer-Excal x ./shr0b@ Doll ./pr0-g33k ./Gh0st%Thund3r ./Cyber@NoName512 A LOT OF DETAILS : ———- A_RECORD ———- Server: 8.8.8.8 Address: 8.8.8.8#53 (node – 53) Canonical name = http://www.fbi.gov.c.footprint.net. Name:www.fbi.gov.c.footprint.net Address: 209.84.4.105 __________ MX_record ———- Server: 4.2.2.5 Address: 4.2.2.5#53 Authoritative answers can be found from: c.footprint.net origin = admin.nsatc.org serial = 1319057938 refresh = 10800 retry = 2700 expire = 3600000 minimum = 900 _________ NS_RECORD ——— a.gov-servers.net -> ns1.fbi.gov Server:4.2.2.5 Address:4.2.2.5#53 canonical name=www.fbi.gov.c.footprint.net. mailbox host =dl-cdn_infrastructure.level3.com serial = 1319057938(Serial Key Registered to Allen Fuller) ________________________________________________________________________ Last System Update – Mon, 05 Jan 2015 11:05:15 UTC (from – 4.69.153.191) ———————————————————————— _________________________________________________________________________________ Login Panel – ae-91-91.csw4.SanJose1.Level3.net (4.69.153.14) Intercom Manager Login Cookie – user1_1:1NDVHdDfNxvaswzOjQWNLkMRfVrGiJw:xvQHg3EoEowRkxOv ——————————————————————————— _______________________________________________________________________________ Vulnerable Open Ports in FBI InterCommunication Intranet - [REALLY GUYS, WHERE’S UR SECURITY] 69.58.186.114 responding on port 118 (sqlserv) 69.58.186.114 responding on port 3209 (asipx-webadmin) – Plaintext Passwords 69.58.186.114 responding on port 4415 (mxxrlogin) 69.58.186.114 responding on port 5613 (directplay6) – Remote Vulnerability 69.58.186.114 responding on port 7429 (openmail-mod) 69.58.186.114 responding on port 7440 (mppolicy-mgr) – Denial of Service 69.58.186.114 responding on port 7495 (x11-ssh-offset) ——————————————————————————————————– USERS EMAILS AND PASSWORDS : SENSITIVE DATA charlesjohnston@fbi.gov ———-+++www.teamcyberpoison.org+++————– 1971.charles06 joseph.mcqueen@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– passwords123 Nevine.Aziz@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– aziz.nev14 Joline.Caron@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– qwertylol@me Sobonya@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– fullternHows Unger@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 12nipster21 mueller.cv@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– letmein16011990 John.whalen@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– lovenancy18 Yolanda.Loya@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– becool$motorcor daniel.clegg@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– clegg.passwd James.turgal@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– barcelona2012 tammy.peter@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 0128787284882 cheryll.leppert@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– clfbiintercomnode2 jeffrey.mckinney@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– kin82896yugcqkj amy.dasaro@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– kiniGq7geduac michael.leverock@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– iohjwhia812 brian.chrostowski@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– n8Y2hkljzh88 Tamara.Meheux@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– i*(whdkjlasjd901 chrostowski@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– o9jaqh8hjGuws david.beyer@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– mo9U92hjka6h marybeth.king@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– NUi2gaksjdn g.jones@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– ioN2hhjkjba reed@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– opmabsyd761 Sims@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 12080898hskl James.Wynne@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 08847891829 Vukin@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– jhOIobwup1uas Egan@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– uiwkjao29gUKd gary.loeffert@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– klju189Gbvksasd= vicki.anderson@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– GUDFx67jsklds john.cotter@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– lKUGx9o1mnlsho paul.daymond@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 09172jksdf9812 gary.bumgardner@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– ponny.and.go Daniel.Roberts@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– oiu2o9*&tgjks Cook@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– kJipownkkjOIy1qh Jeanne.White@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– J^18gcvuq929G px_cashback@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– iubjkbd1982uk Krall@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 6+Hiu489GYU Mary.Dolan@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– Iugiu2ebkahdgw2is crystal.komara@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– bhiuoGFhj(612gj margaret.einspahr@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– HkjpLqyvs heather.stewart@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– KhyFhgodohGYs sandra.breault@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– &100288719%6172 william.mcneill@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– OInwiiubqiwsjd carolyn.woodbury@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– Igwkkao2gtj lisa.jackson@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– ncuwn271gtvdj rhonda.williams@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– JFadah2jbdkii antoine@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– passwords121212121 Rogers@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– KgwkdkuT&1auikb lisa.moore@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– moore.lisa thomas.gancarz@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– thomas.gancario mark.mahon@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– jh2i(921bhuid deborah.broderick@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– Iuk2g787athsd2 melissa.mcrae@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– JUY2hja9shdn Johnson@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– HJuaih^&*jsdk Raul.roldan@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– Buyr8^%^2jkas Tini.Leon@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– Hy72g&&92nj sharon.gray@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– B72829hgvjs Megan.mikes@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– H2981726ya Beth.McConn@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– N8ig1gvud8u127 loeffert@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– N89290hysdi McConn@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– B001hidas gary.loelTert@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– garyloel19287 Alicia.Sensibaugh@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– sensimarklover douglas.hares@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– hares$mich brett.johnson@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– BIu29uhausy982 r.mark.wood@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– mark.r.wood@ almeta.austin@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– ausitn.almeta steven.martinez@ic.fbi.gov ———-+++www.teamcyberpoison.org+++————– 8877steveymillard ——————————————————————————————————- DETAILS OF FBI DIRECTOR : FBI’s Director : Name: James Brien Comey Jr DOB: 12/14/1960 POB: Yonkers, NY Height: 6′ 8″ Wife: Patrice L Comey DOM: 1987 Address: 6 Westway Rd Westport, CT 06880-5637 Latitude (Deg-Min-Sec): 41° 7′ 56.1169″ Longitude (Deg-Min-Sec): -73° 18′ 7.5575″ Educational History : Northern Highlands Regional High School Address: 298 Hillside Ave, Allendale, NJ 07401 Phone: (201)-327-8700 Latitude (Deg-Min-Sec): 41° 2′ 6.2952″ Longitude (Deg-Min-Sec): -74° 8′ 38.7996″ College of William and Mary Address: 200 Stadium Dr, Williamsburg, VA 23185 Phone:(757)-221-4000 Latitude (Deg-Min-Sec): 37° 16′ 21.738″ Longitude (Deg-Min-Sec): -76° 42′ 48.6612″ University of Chicago Law School Juris Doctor Address: 1111 E 60th St, Chicago, Il 60637 Phone: (773)-702-9494 Latitude (Deg-Min-Sec): 41° 47′ 9.2245″ Longitude (Deg-Min-Sec): -87° 35′ 56.17″ ——————————————————————————————————- EMAILS AND PASSWORDS BY CITY : SENSITIVE DATA bill.nicholson@fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> billnoyr@:@ paul.thomasson@langley.af .mil <<<—+++www.teamcyberpoison.org+++—->>> 987we.paul jerome.traughber@us.af.mil <<<—+++www.teamcyberpoison.org+++—->>> Xktanh%67 ben.torreon@osd.mil <<<—+++www.teamcyberpoison.org+++—->>> neb9182rrot charlesjohnstonffbi.gov <<<—+++www.teamcyberpoison.org+++—->>> 1971.charles02 cyberinvestigation@fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> Xgt%Sffalk1e# fbiwashingtondc@fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> 7284%Hags&4827 washington@fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> ShThasYTfgvasgandS washington.field@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> MThadtgo5a91Sag% Baltimore@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> kasd1#a871g1a Chicago@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> 12h%asj19Skanht% Richmond@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> wpfHt1865@g@d foiparequest@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> skfh27gda1Sdawgk portland@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> portland97644124$ SaltLakeCity@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> hko28g7c%jagqSjf@ Seattle.fbi@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> fhGiASyl%kag12 Boston@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> %ad,H6198,12a cv@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> Oahvughf651S kansas.city@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> jhdjAf918&23S Memphis@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> kk22herog1209 fbi.dallas@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> hiqyg1%11sf Indianapolis@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> opajeufg17afsd tampa.divisioneic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> jakvn12u2184 Miami@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> Xvka1128%. minneapolis@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> ajkdo213## san.francisc.ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> aj187v@lld% Sanfrancisco@ic.fbi.gov <<<—+++www.teamcyberpoison.org+++—->>> frnssangusa1001 ——————————————————————————————————- MORE DETAILS ON IP : HOSTED IN NETWORK NetRange: 69.58.176.0 – 69.58.191.255 CIDR: 69.58.176.0/20 NetName: VRSNNETBLK-3 NetHandle: NET-69-58-176-0-1 Parent: NET69 (NET-69-0-0-0-0) NetType: Direct Allocation Organization Verisign, Inc. (VERIS-26) RegDate: 2008-01-29 Updated: 2011-11-17 OrgName: Verisign, Inc. OrgId: VERIS-26 Address: 12061 Bluemont Way City: Reston StateProv: VA PostalCode: 20190 Country: US RegDate: 2011-10-18 Updated: 2012-02-03 ——————————————————————————————————- FINALLY THERE CREDIT CARD DETAILS ALSO : UNEVEN DOX : DATA : # Agents Involved in bringing down LuLzSec! # ————————————————– # # 1).Lawrence C. Taylor # Mother’s Name – Mullins # DOB – December 9, 1974 (37 years old) # Visa – 4916 4730 6468 52XX # CVV2 – 069 # UPS – 1Z A42 F76 40 1188 307 4 # Address – 1410 V St SE # Washington, DC 20020 # Phone – (202) 678-1418 # Email ID – lctaylor@leo.gov # password – Ce&1ej4eiz2law # # 2).Vincent Weimer # Mother’s name – Faris # DOB – January 11, 1973 (39 years old) # MasterCard – 5232 6741 8205 51XX # CVC2 – 716 # UPS – 1Z 6Y1 W53 96 7787 574 5 # Address – 4201 Massachusetts Ave NW # Washington, DC 20016 # Phone – 362-1013 # email –vincweimer@ic.fbi.gov # password – O#hthieRai4#1 # # 3).Joseph Robinson # Mother’s Name – Pearson # DOB – December 23, 1981 (30 years old) # Visa – 4716 9911 8191 40XX # CVV2 – 177 # UPS – 1Z 457 658 95 6988 011 0 # Address – 343 Raleigh St SE # Washington, DC 20032 # Phone – 561-4259 # email – JosephSRobinson92@fbi.gov # password – EivahPha4Ch$192$ # # 4).Donald T. Slay # Mother’s Name – Noriega # DOB – October 26, 1971 (40 years old) # MasterCard – 5185 0508 3253 34XX # CVC2 – 386 # UPS – 1Z 070 561 74 6062 245 8 # Address – 3100 Central Ave NE # Washington, DC 20018 # Phone – 506-1721 # email – donald2671@fbi.gov# password – 267CaTh9vaequ # # 5).Lester G. Bryan # Mother’s Name – Matamoros # DOB – May 21, 1977 (34 years old) # MasterCard – 5401 5179 4076 70XX # CVC2 – 443 # UPs – 1Z 816 802 30 7818 334 9 # Address – Washington, DC # Phone – 269-6349 # email – bryanlesterb6@fbi.gov# password – O5hx3op5ae3Oo # # 6).Frank Hall # Mother’s Name – Mary # DOB – March 15, 1974 (38 years old) # MasterCard – 5507 8062 4967 27XX # CVC2 – 524 # UPS – 1Z V33 299 74 5817 523 0 # Address – 3220 17th St NW # Washington, DC 20010 # phone – 373-0454 # email –frandhall@fbi.gov # password – icieP478h3Be5m # # 7).Paul Seaver Jr # Mother’s Name – Reed # DOB – January 9, 1981 (31 years old) # MasterCard – 5199 1434 1035 80XX # CVC2 – 424 # UPS – 1Z 032 542 69 5382 615 9 # Address – 5530 Chillum Pl NE # Washington, DC 20011 # phone – 635-0266 # email – seaver901@fbi.gov # password – nuoch697fieCai!# # —————————————————————————————————— DNS Report for fbi.gov ============== Parent Nameserver Tests Status Test Case Information INFO NS records listed at parent servers Nameserver records returned by the parent servers are:a1.fbi.gov. [209.112.113.33] [TTL=86400] a2.fbi.gov. [209.112.114.33] [TTL=86400] a3.fbi.gov. [69.36.145.33] [TTL=86400]This information was kindly provided by a.gov-servers.net. PASSED Domain listed at parent servers Good! The parent servers have information on your domain. Some other domains (like .co.us) do not have a DNS zone at the parent servers. PASSED NS records listed at parent servers Good! The parent servers have your NS records listed. If they didn’t, people wouldn’t be able to find your domain! PASSED Parent servers return glue Good! The TLD of your domain (gov) matches the TLD of your nameservers (gov) and hence the parent servers MUST return the IP (glue) for your NS records… AND THEY DO! PASSED A record for each NS at parent Good! The parent servers have A records for each of your nameservers. Local Nameserver Tests Status Test Case Information INFO NS records at your local servers NS records retrieved from your local nameservers were:a1.fbi.gov. [209.112.113.33] [TTL=1800] a2.fbi.gov. [209.112.114.33] [TTL=1800] a3.fbi.gov. [69.36.145.33] [TTL=1800] PASSED Glue at local nameservers Good! Your local nameservers send the IP address (glue) along with your NS records. PASSED Same glue at local and parent servers Good! Both the parent servers and your local servers report the same IP addresses (GLUE) for your nameservers! PASSED Same NS records at each local nameserver Good! All your local nameservers have identical NS records for your domain. PASSED Check that all nameservers respond Good! All of your nameservers listed at the parent servers responded. PASSED Check all nameservers are valid Good! All of your nameservers appear to be valid (e.g. are not IP addresses or partial domain names) PASSED Number of nameservers Good! You have at least 2 nameservers. Whilst RFC218 section 2.5 specifies a minimum of 3, as long as you have 2 or more, you should be ok! PASSED Local nameservers answer authoritively Good! All your nameservers answer authoritatively for your domain. PASSED Missing NS records at parent servers Good! The parent servers have all the nameservers listed for your domain as your local nameservers! PASSED Missing NS records at local servers Good! Your local servers have all the nameservers listed for your domain that are listed at the parent servers! PASSED No CNAME records for domain Good! No CNAME records are present for ‘fbi.gov’. RFC1912 section 2.4 and RFC2181 section 10.3 state that there should be no CNAME records if any other records are present for a given domain. PASSED No CNAME records for nameservers Good! No CNAME records are present for your nameservers. RFC1912 section 2.4 and RFC2181 section 10.3 state that there should be no CNAME records if any other records (e.g. an A record) are present for a nameserver. PASSED Nameservers are on different IP subnets Good! All your nameservers are in separate class C (/24) subnets. PASSED Nameservers have public IP’s Good! All your NS records have public IP addresses. PASSED Nameservers allow TCP connections Good! We can establish a TCP connection with each of your nameservers on port 53. Whilst UDP is most commonly used for the DNS protocol, TCP connections are occasionally used. Start of Authority (SOA) Tests Status Test Case Information INFO SOA Record Your Start of Authority (SOA) record is:Primary nameserver: a1.fbi.gov. Hostmaster E-mail address: mdnshelp.verisign.com. Serial number: 1415239419 Refresh: 600 Retry: 1800 Expire: 1209600 Minimum TTL: 1800 PASSED All nameservers have same SOA serial number Good! All your nameservers agree that your SOA serial number is 1415239419 PASSED SOA primary nameserver listed at parent Good! The primary nameserver listed in your SOA record (a1.fbi.gov.) is listed at the parent servers! WARNING SOA serial number format Oops! Your SOA serial number (1415239419) doesn’t seem to be in the recommended format (YYYYMMDDnn – where nn is the revision number). This is still OK, however as long as you are keeping track of your SOA version details. WARNING SOA Refresh value Oops! Your SOA Refresh value (600) is outside of the recommended range of 1 hour (3600) to 1 day (86400). This value basically means ‘how long can the secondary nameserver have out of date information after updating the primary nameserver?’ and should be within the recommended range. PASSED SOA Retry value Good! Your SOA Retry value (1800) is within the recommended range of 5 minutes (300) to 4 hours (14400). PASSED SOA Expire value Good! Your SOA Expire value (1209600) is within the recommended range of 1 week (604800) to 4 weeks (2419200). PASSED SOA Minimum TTL value Good! Your SOA Minimum TTL value (1800) is within the recommended range of less than 3 days (259200). Mail eXchanger (MX) Tests Status Test Case Information INFO MX Records Your Mail eXchanger (MX) records are:10 smtpc.fbi.gov. [TTL=86400] PASSED All nameservers have same MX records Good! All of your nameservers have the same MX records. PASSED All MX records contain valid hostnames Good! All of your MX entries have valid hostnames (e.g. are not IP’s or invalid domain names). PASSED All MX records use public IP addresses Good! All of your MX entries have public IP addresses. PASSED MX record is not a CNAME/alias Good! When querying for your MX records we did not receive a CNAME record as a result. PASSED MX A records are not CNAME’s Good! No CNAME records are present for your MX A records. WARNING Number of MX records Oops! You only have one MX record! In the event that this mail server is down, you could potentially lose mail! It is recommended to have two or more MX records (and hence mail servers) if you want uninterrupted mail functionality. PASSED Duplicate MX A records Good! No two MX records resolve to the same IP address. PASSED Differing MX A records Good! You have no different IP’s for your MX A records than the DNS server that is authoritive for that hostname. PASSED MX records have reverse DNS entries Good! All your MX IP addresses have reverse DNS entries. The reverse entries returned were:5.160.31.153.in-addr.arpa <–> mobile.leo.gov. WWW Record Tests Status Test Case Information INFO WWW record http://www.fbi.gov A records are:http://www.fbi.gov. CNAMEhttp://www.fbi.gov.c.footprint6.net. [TTL=600] PASSED WWW A record has public IP Good! The IP address(es) of the A records returned for your WWW record have public IP addresses. WARNING WWW CNAME lookup Oops! You have a CNAME entry for your WWW record but the A record associated is not returned with it! This means an extra lookup needs to be performed, unecessarily increasing loading times for your site. ——————————————————————————————————————– http://www.teamcyberpoison.org . @teamcyberpoison . @leadertcp http://www.facebook.com/tcp.net