Advertisement
Guest User

Untitled

a guest
Dec 12th, 2012
1,633
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 17.19 KB | None | 0 0
  1. ___ _ _
  2. /___\_ __ /\ /\_ _ _ __ | |_ /\ /\_ _ _ __ | |_ ___ _ __
  3. // // '_ \ / /_/ / | | | '_ \| __|/ /_/ / | | | '_ \| __/ _ \ '__|
  4. / \_//| |_) / __ /| |_| | | | | |_/ __ /| |_| | | | | || __/ |
  5. \___/ | .__/\/ /_/ \__,_|_| |_|\__\/ /_/ \__,_|_| |_|\__\___|_|
  6. |_|
  7.  
  8. ____ __. .__ .__ __ _________
  9. | |/ _| ____ |__| ____ | |___/ |_/ _____/ ____ ____
  10. | < / \| |/ ___\| | \ __\_____ \_/ __ \_/ ___\
  11. | | \| | \ / /_/ > Y \ | / \ ___/\ \___
  12. |____|__ \___| /__\___ /|___| /__|/_______ /\___ >\___ >
  13. \/ \/ /_____/ \/ \/ \/ \/
  14.  
  15. Greetings citizens of the world, We are anonymous, We are KnightSecc. You have followed our resounding success with Op Hunt Hunter. Today we anounce a new target to be added to the campaign. Craig Brittain and Chance Trahan of is anybody down dot com. He also posts addresses enabling stalking, but takes it a step further and uses extortion tactics to take money from the victims.
  16.  
  17.  
  18. Is Anybody Down is a controversial website co-founded by Craig Brittain and Chance Trahan where users can anonymously upload nude photographs along with information identifying the person in the photograph including full names, addresses, phone numbers, and Facebook screenshots. The site also contains a section of nude photographs titled "Anonymous Bounty", where users are offered "free stuff" if they can provide the Facebook or Twitter information of any of the people pictured. In concept, the website recapitulates the now-defunct IsAnyoneUp?, which was shut down in April of 2012, shortly before an FBI investigation into the propriety of the site.
  19.  
  20. For anyone wishing to have their photo removed from Is Anybody Down, the website recommends they enlist the services of the "Takedown Hammer". Prior to November 2nd, this service had been referred to as the "Takedown Lawyer" and required complainants pay between $200 and $300 to the allegedly independent "Takedown Lawyer" to have the offending content removed. It was found that the Takedown Lawyer was none other than Craig Brittain trying to extort money out of the helpless victims, since then the takedown lawyer ahs then been renamed Takedown Hammer and is registered to none other than Craig Brittain.
  21.  
  22. Marc Randazza, a prominent first amendment lawyer, has compiled evidence that the two sites are part of the same operation. He is offering to take the case of anyone whose images were displayed on IsAnybodyDown without permission.
  23.  
  24. Craig Brittain, the founder of Is Anybody Down, stated that people who never gave consent to have their photos displayed are "not really upset about being seen naked" and are "not victims". Brittain claims the site is part of a larger progressive agenda to destigmatize nudity.
  25.  
  26. Anonymous will Hold Craig and those affliated accountable for their actions as we have done and are currently doing to hunter moore during the op hunt hunter campaign. Anonymous will pursue access to his site, and shut it down. Craig Brittain will not extort money from the already struggling public. He will feel the pain others have felt. Craig Brittain, We are anonymous, We are Knight Secc, We do not forgive, we do not forget, expect us.
  27.  
  28.  
  29. how to join the class action lawsuit against them and be represented for free: http://randazza.wordpress.com/2012/10/30/lets-fuck-up-david-blade-attorney-at-law-and-isanybodydown-com-whos-with-me/
  30.  
  31.  
  32. List of all W-P Logins so far: http://pastebin.com/CsDCGZxE
  33.  
  34.  
  35. --------------------------------------=--Begin D0x of Craig Brittain ------------------------------------
  36. D0X OF ISANYBODYDOWN.COM FOUNDER CRAIG BRITTAIN
  37. _____ _ ______ _ _ _ _
  38. / __ \ (_) | ___ \ (_) | | | (_)
  39. | / \/_ __ __ _ _ __ _ | |_/ /_ __ _| |_| |_ __ _ _ _ __
  40. | | | '__/ _` | |/ _` | | ___ \ '__| | __| __/ _` | | '_ \
  41. | \__/\ | | (_| | | (_| | | |_/ / | | | |_| || (_| | | | | |
  42. \____/_| \__,_|_|\__, | \____/|_| |_|\__|\__\__,_|_|_| |_|
  43. __/ |
  44. |___/
  45. Photo: http://a2.ec-images.myspacecdn.com/images02/114/d42836f8276e421188c5b240a302f9b4/l.jpg
  46.  
  47. Name: Craig Brittain
  48. Address: 2732 Kittyhawk Rd
  49. Colorado Springs, CO 80920
  50. United States
  51. Emails: craig@719x.com
  52. Phone: +1 7192913997
  53.  
  54. Social Media:
  55. http://www.myspace.com/unholycraig
  56. http://www.linkedin.com/in/craigbrittain
  57.  
  58. Photo of email to a person - http://adamsteinbaugh.com/wp-content/uploads/2012/10/nocomment.jpg
  59.  
  60. Felony Record:
  61. http://www.popehat.com/wp-content/uploads/2012/10/Craig-Brittain-Felony-Record.pdf
  62.  
  63. Login portal for TakedownHammer: http://takedownhammer.com/wp-login.php?redirect_to=http%3A%2F%2Ftakedownhammer.com%2Fwp-admin%2F&reauth=1
  64.  
  65.  
  66.  
  67.  
  68.  
  69.  
  70. ---------------------------------------Begin D0x of Chance Trahan----------------------------------------
  71. D0X OF ISANYBODYOWN.COM C0-FOUNDER CHANCE TRAHAN
  72. _____ _ _____ _
  73. / __ \ | |_ _| | |
  74. | / \/ |__ __ _ _ __ ___ ___ | |_ __ __ _| |__ __ _ _ __
  75. | | | '_ \ / _` | '_ \ / __/ _ \ | | '__/ _` | '_ \ / _` | '_ \
  76. | \__/\ | | | (_| | | | | (_| __/ | | | | (_| | | | | (_| | | | |
  77. \____/_| |_|\__,_|_| |_|\___\___| \_/_| \__,_|_| |_|\__,_|_| |_|
  78.  
  79.  
  80. FULL NAME: CHANCE BRADFORD TRAHAN
  81. LOCATION: TEMPE, AZ
  82. AGE: 32
  83.  
  84. W3b51t3s:
  85. http://heygreatwebsite.com/chance-trahan/
  86. http://www.kataishin.com
  87. http://ninjatale.com/
  88.  
  89.  
  90. L0g1n p0rtalz :
  91. http://heygreatwebsite.com/wp-login.php
  92.  
  93.  
  94. B4D PR355
  95. http://satiricalcraigbrittain.wordpress.com/2/11/12/chance-trahan-has-an-itch-he-can-not-scratch/
  96. http://www.popehat.com/2012/10/30/the-takedown-lawyer-lets-help-marc-randazza-investigate-a-scammer-shall-we/#more-16564
  97.  
  98. Soc14l n3Tw3rK5:
  99. TWITTER: @KataishinNinja @TalonLives
  100. YOUTUBE: www.youtube.com/user/kataishin
  101. GOOGLE+: https://plus.google.com/117726813386437696115
  102. FACEBOOK PAGE: http://www.facebook.com/pages/Chance-Trahan/487301254621807
  103. SOUNDCLOUD: https://soundcloud.com/kataishin (warning, prepare to drill your ears with a knife)
  104. LAST.FM: http://www.last.fm/music/kataishin
  105. SONGKICK: http://www.songkick.com/artists/6006939
  106. BRANDYOURSELF: http://chancebradfordtrahan.brandyourself.com/
  107. FUNNYORDIE: http://www.funnyordie.com/theninja
  108. MYSPACE: http://www.myspace.com/newestkaraoke
  109.  
  110.  
  111.  
  112.  
  113. He is quite a rager isn't he?
  114.  
  115. http://i.imgur.com/tu8xD.png
  116. http://www.popehat.com/wp-content/uploads/2012/11/ChanceTrahan-480x562.png
  117.  
  118.  
  119. Scan of Kataishin.com reveals that trahan and isanybody down site are hosted on same server, same IP
  120. DDOS the server and both sites down.
  121. ---------------------------------------Begin Scan of http://isanybodydown.com-------------------------------
  122. Login Portal : http://isanybodydown.com:2082/
  123.  
  124. Username:
  125. Password:
  126.  
  127.  
  128. IP Address: 93.114.44.79
  129. Vulnerable Ports:
  130.  
  131.  
  132. Scan Data:
  133.  
  134. NSE: Loaded 93 scripts for scanning.
  135.  
  136. NSE: Script Pre-scanning.
  137.  
  138. Initiating Ping Scan at 17:04
  139.  
  140. Scanning 93.114.44.79 [4 ports]
  141.  
  142. Completed Ping Scan at 17:04, 0.49s elapsed (1 total hosts)
  143.  
  144. Initiating Parallel DNS resolution of 1 host. at 17:04
  145.  
  146. Completed Parallel DNS resolution of 1 host. at 17:04, 0.37s elapsed
  147.  
  148. Initiating SYN Stealth Scan at 17:04
  149.  
  150. Scanning wc19801.webcare360.com (93.114.44.79) [1000 ports]
  151.  
  152. Discovered open port 993/tcp on 93.114.44.79
  153.  
  154. Discovered open port 22/tcp on 93.114.44.79
  155.  
  156. Discovered open port 143/tcp on 93.114.44.79
  157.  
  158. Discovered open port 21/tcp on 93.114.44.79
  159.  
  160. Discovered open port 110/tcp on 93.114.44.79
  161.  
  162. Discovered open port 443/tcp on 93.114.44.79
  163.  
  164. Discovered open port 53/tcp on 93.114.44.79
  165.  
  166. Discovered open port 80/tcp on 93.114.44.79
  167.  
  168. Discovered open port 995/tcp on 93.114.44.79
  169.  
  170. Discovered open port 587/tcp on 93.114.44.79
  171.  
  172. Discovered open port 3306/tcp on 93.114.44.79
  173.  
  174. Discovered open port 16992/tcp on 93.114.44.79
  175.  
  176. Discovered open port 465/tcp on 93.114.44.79
  177.  
  178. Discovered open port 9091/tcp on 93.114.44.79
  179.  
  180. Completed SYN Stealth Scan at 17:05, 6.66s elapsed (1000 total ports)
  181.  
  182. Initiating Service scan at 17:05
  183.  
  184. Scanning 14 services on wc19801.webcare360.com (93.114.44.79)
  185.  
  186. Completed Service scan at 17:05, 25.20s elapsed (14 services on 1 host)
  187.  
  188. Initiating OS detection (try #1) against wc19801.webcare360.com (93.114.44.79)
  189.  
  190. Retrying OS detection (try #2) against wc19801.webcare360.com (93.114.44.79)
  191.  
  192. Initiating Traceroute at 17:05
  193.  
  194. Completed Traceroute at 17:05, 0.05s elapsed
  195.  
  196. Initiating Parallel DNS resolution of 2 hosts. at 17:05
  197.  
  198. Completed Parallel DNS resolution of 2 hosts. at 17:05, 0.01s elapsed
  199.  
  200. NSE: Script scanning 93.114.44.79.
  201.  
  202. Initiating NSE at 17:05
  203.  
  204. Completed NSE at 17:05, 6.65s elapsed
  205.  
  206. Nmap scan report for wc19801.webcare360.com (93.114.44.79)
  207.  
  208. Host is up (0.0075s latency).
  209.  
  210. Not shown: 985 closed ports
  211.  
  212. PORT STATE SERVICE VERSION
  213.  
  214. 21/tcp open ftp Pure-FTPd
  215.  
  216. | ssl-cert: Subject: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  217.  
  218. | Issuer: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  219.  
  220. | Public Key type: rsa
  221.  
  222. | Public Key bits: 2048
  223.  
  224. | Not valid before: 2012-08-27 15:07:54
  225.  
  226. | Not valid after: 2013-08-27 15:07:54
  227.  
  228. | MD5: ac55 5bb4 3a8c d178 ef52 0821 ab0a d377
  229.  
  230. |_SHA-1: 4e5b 573a a215 2188 d8f4 52a6 3ee0 b690 d11e 6f85
  231.  
  232. 22/tcp open ssh OpenSSH 5.3 (protocol 2.0)
  233.  
  234. | ssh-hostkey: 1024 d1:05:ea:d3:68:34:b5:c3:0f:41:1e:ad:3c:88:dd:f9 (DSA)
  235.  
  236. |_2048 80:7d:31:f7:87:86:4e:67:b4:5f:5e:03:cd:38:10:2f (RSA)
  237.  
  238. 25/tcp filtered smtp
  239.  
  240. 53/tcp open domain
  241.  
  242. | dns-nsid:
  243.  
  244. |_ bind.version: 9.8.2rc1-RedHat-9.8.2-0.10.rc1.el6_3.6
  245.  
  246. 80/tcp open http Apache httpd 2.2.22 ((Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips mod_bwlimited/1.4 mod_fcgid/2.3.6)
  247.  
  248. | http-methods: GET HEAD POST OPTIONS TRACE
  249.  
  250. | Potentially risky methods: TRACE
  251.  
  252. |_See http://nmap.org/nsedoc/scripts/http-methods.html
  253.  
  254. |_http-title: Site doesn't have a title (text/html).
  255.  
  256. 110/tcp open pop3 Dovecot pop3d
  257.  
  258. |_pop3-capabilities: USER CAPA UIDL TOP OK(K) RESP-CODES PIPELINING STLS SASL(PLAIN LOGIN)
  259.  
  260. 143/tcp open imap Dovecot imapd
  261.  
  262. |_imap-capabilities: LOGIN-REFERRALS QUOTA AUTH=PLAIN LIST-STATUS CHILDREN CONTEXT=SEARCH THREAD=REFERENCES UIDPLUS SORT IDLE MULTIAPPEND CONDSTORE ESEARCH Capability UNSELECT IMAP4rev1 AUTH=LOGIN ID WITHIN QRESYNC LIST-EXTENDED SORT=DISPLAY THREAD=REFS STARTTLSA0001 OK completed SEARCHRES ENABLE I18NLEVEL=1 LITERAL+ ESORT SASL-IR NAMESPACE
  263.  
  264. 443/tcp open http Apache httpd 2.2.22 ((Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips mod_bwlimited/1.4 mod_fcgid/2.3.6)
  265.  
  266. |_http-title: Site doesn't have a title (text/html).
  267.  
  268. | http-methods: GET HEAD POST OPTIONS TRACE
  269.  
  270. | Potentially risky methods: TRACE
  271.  
  272. |_See http://nmap.org/nsedoc/scripts/http-methods.html
  273.  
  274. 465/tcp open ssl/smtp Exim smtpd 4.80
  275.  
  276. | smtp-commands: wc19801.webcare360.com Hello adsl-184-43-24-203.bgk.bellsouth.net [184.43.24.203], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP,
  277.  
  278. |_ Commands supported:
  279.  
  280. | ssl-cert: Subject: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  281.  
  282. | Issuer: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  283.  
  284. | Public Key type: rsa
  285.  
  286. | Public Key bits: 2048
  287.  
  288. | Not valid before: 2012-08-27 15:07:54
  289.  
  290. | Not valid after: 2013-08-27 15:07:54
  291.  
  292. | MD5: 5c69 e26f 4772 d383 6ffd 6ddf 486a b28e
  293.  
  294. |_SHA-1: 3f87 6ca6 e688 111d be48 023c e94f 1fce 056a 460e
  295.  
  296. 587/tcp open smtp Exim smtpd 4.80
  297.  
  298. | smtp-commands: wc19801.webcare360.com Hello adsl-184-43-24-203.bgk.bellsouth.net [184.43.24.203], SIZE 52428800, 8BITMIME, PIPELINING, AUTH PLAIN LOGIN, HELP, STARTTLS,
  299.  
  300. |_ Commands supported: AUTH HELO EHLO MAIL RCPT DATA NOOP QUIT RSET HELP
  301.  
  302. | ssl-cert: Subject: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  303.  
  304. | Issuer: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  305.  
  306. | Public Key type: rsa
  307.  
  308. | Public Key bits: 2048
  309.  
  310. | Not valid before: 2012-08-27 15:07:54
  311.  
  312. | Not valid after: 2013-08-27 15:07:54
  313.  
  314. | MD5: 5c69 e26f 4772 d383 6ffd 6ddf 486a b28e
  315.  
  316. |_SHA-1: 3f87 6ca6 e688 111d be48 023c e94f 1fce 056a 460e
  317.  
  318. 993/tcp open ssl/imap Dovecot imapd
  319.  
  320. |_imap-capabilities: LOGIN-REFERRALS completed OK SORT=DISPLAY Capability UNSELECT AUTH=PLAIN AUTH=LOGINA0001 IMAP4rev1 QUOTA CONDSTORE LIST-STATUS ID SEARCHRES WITHIN CHILDREN LIST-EXTENDED ESORT ESEARCH QRESYNC CONTEXT=SEARCH THREAD=REFS THREAD=REFERENCES I18NLEVEL=1 UIDPLUS NAMESPACE ENABLE SORT LITERAL+ IDLE SASL-IR MULTIAPPEND
  321.  
  322. |_sslv2: server supports SSLv2 protocol, but no SSLv2 cyphers
  323.  
  324. | ssl-cert: Subject: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  325.  
  326. | Issuer: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  327.  
  328. | Public Key type: rsa
  329.  
  330. | Public Key bits: 2048
  331.  
  332. | Not valid before: 2012-08-27 15:07:55
  333.  
  334. | Not valid after: 2013-08-27 15:07:55
  335.  
  336. | MD5: eac5 2a12 98a0 00a6 6386 8273 ac91 d7bc
  337.  
  338. |_SHA-1: bfa6 fc66 17f2 7ea2 0bbe 1b68 048d 77dc 11af c28a
  339.  
  340. 995/tcp open ssl/pop3 Dovecot pop3d
  341.  
  342. |_sslv2: server supports SSLv2 protocol, but no SSLv2 cyphers
  343.  
  344. | ssl-cert: Subject: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  345.  
  346. | Issuer: commonName=wc19801.webcare360.com/organizationName=Unknown/stateOrProvinceName=Unknown/countryName=US
  347.  
  348. | Public Key type: rsa
  349.  
  350. | Public Key bits: 2048
  351.  
  352. | Not valid before: 2012-08-27 15:07:55
  353.  
  354. | Not valid after: 2013-08-27 15:07:55
  355.  
  356. | MD5: eac5 2a12 98a0 00a6 6386 8273 ac91 d7bc
  357.  
  358. |_SHA-1: bfa6 fc66 17f2 7ea2 0bbe 1b68 048d 77dc 11af c28a
  359.  
  360. |_pop3-capabilities: OK(K) CAPA RESP-CODES UIDL PIPELINING USER TOP SASL(PLAIN LOGIN)
  361.  
  362. 3306/tcp open mysql MySQL (unauthorized)
  363.  
  364. 9091/tcp open xmltec-xmlmail?
  365.  
  366. 16992/tcp open http Intel Active Management Technology User Notification Service httpd 7.1.3
  367.  
  368. | http-title: Intel&reg; Active Management Technology
  369.  
  370. |_Requested resource was http://93.114.44.79/logon.htm
  371.  
  372. OS fingerprint not ideal because: Host distance (28 network hops) is greater than five
  373.  
  374. No OS matches for host
  375.  
  376. Uptime guess: 2.687 days (since Sun Dec 09 00:37:04 2012)
  377.  
  378. Network Distance: 2 hops
  379.  
  380. TCP Sequence Prediction: Difficulty=260 (Good luck!)
  381.  
  382. IP ID Sequence Generation: All zeros
  383.  
  384.  
  385.  
  386. TRACEROUTE (using port 80/tcp)
  387.  
  388. HOP RTT ADDRESS
  389.  
  390. 1 4.00 ms home (192.168.1.254)
  391.  
  392. 2 2.00 ms wc19801.webcare360.com (93.114.44.79)
  393.  
  394.  
  395.  
  396. NSE: Script Post-scanning.
  397.  
  398. Initiating NSE at 17:05
  399.  
  400. Completed NSE at 17:05, 0.00s elapsed
  401.  
  402. Read data files from: C:\Program Files (x86)\Nmap
  403.  
  404. OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
  405.  
  406. Nmap done: 1 IP address (1 host up) scanned in 48.67 seconds
  407.  
  408. Raw packets sent: 1097 (50.520KB) | Rcvd: 1118 (47.089KB)
  409.  
  410.  
  411. --------------------------------Proof TakedownHammer is Brittains----------------------------------------
  412. WHOIS:
  413.  
  414. domain: takedownhammer.com
  415. reg_created: 2012-10-31 05:46:42
  416. expires: 2013-10-31 05:46:42
  417. created: 2012-10-31 06:46:43
  418. changed: 2012-10-31 06:53:23
  419. transfer-prohibited: yes
  420. ns0: ns1.takedownhammer.com 93.114.44.79
  421. owner-c:
  422. nic-hdl: CB9188-GANDI
  423. organisation: ~
  424. person: Craig Brittain
  425. obfuscated: Obfuscated by Gandi
  426. address: (Gandi) 63-65 boulevard Massena
  427. zipcode: (Gandi) 75013
  428. city: (Gandi) Paris
  429. country: (Gandi) France
  430. phone: (Gandi) +33.170377666
  431. fax: (Gandi) +33.143730576
  432. email:
  433. lastupdated: 2012-06-19 21:19:48
  434. admin-c:
  435. nic-hdl: CB9188-GANDI
  436. organisation: ~
  437. person: Craig Brittain
  438. obfuscated: Obfuscated by Gandi
  439. address: (Gandi) 63-65 boulevard Massena
  440. zipcode: (Gandi) 75013
  441. city: (Gandi) Paris
  442. country: (Gandi) France
  443. phone: (Gandi) +33.170377666
  444. fax: (Gandi) +33.143730576
  445. email:
  446. lastupdated: 2012-06-19 21:19:48
  447. tech-c:
  448. nic-hdl: CB9188-GANDI
  449. organisation: ~
  450. person: Craig Brittain
  451. obfuscated: Obfuscated by Gandi
  452. address: (Gandi) 63-65 boulevard Massena
  453. zipcode: (Gandi) 75013
  454. city: (Gandi) Paris
  455. country: (Gandi) France
  456. phone: (Gandi) +33.170377666
  457. fax: (Gandi) +33.143730576
  458. email:
  459. lastupdated: 2012-06-19 21:19:48
  460. bill-c:
  461. nic-hdl: CB9188-GANDI
  462. organisation: ~
  463. person: Craig Brittain
  464. obfuscated: Obfuscated by Gandi
  465. address: (Gandi) 63-65 boulevard Massena
  466. zipcode: (Gandi) 75013
  467. city: (Gandi) Paris
  468. country: (Gandi) France
  469. phone: (Gandi) +33.170377666
  470. fax: (Gandi) +33.143730576
  471. email:
  472. lastupdated: 2012-06-19 21:19:48
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement