Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Skype username: xotbobs
- The skype user currently resolves to this IP: 193.109.128.190 (Source: https://www.hanzresolver.com/skype2).
- Skype Display name: Bohdan Bardachov
- Steam user: http://steamcommunity.com/id/k1llawatt
- SK-Gaming profile: http://www.sk-gaming.com/member/k1llawatt
- Twitch profile: http://www.twitch.tv/k1lawatt
- Brutalcs profile: http://stats.brutalcs.nu/playerinfo/313036
- Real Name: David Lobach (Sometimes uses false name: David Kalashnikov)
- DOB: 15.11.1995 (19 years old)
- Country: Slovenia
- City: Ljubljana
- General IP Information
- IP: 193.109.128.190
- Decimal: 3245179070
- Hostname: 193-109-128-190.ukrcom.kherson.ua
- ASN: 21151
- ISP: Ukrcom Ltd.
- Organization: Ukrcom Ltd.
- Services: None detected
- Type: Broadband
- Assignment: Static IP
- Geolocation Information
- Continent: Europe
- Country: Ukraine ua flag
- State/Region: Khersons'ka Oblast'
- City: Kherson
- Latitude: 46.6558 (46° 39′ 20.88″ N)
- Longitude: 32.6178 (32° 37′ 4.08″ E)
- ISP website: http://translate.google.no/translate?hl=no&sl=ru&u=http://ukr-com.net/&prev=search
- ISP contact: info@ukr-com.net
- nmap scan of IP:
- Starting Nmap 6.00 ( http://nmap.org ) at 2015-07-24 18:14 EEST
- NSE: Loaded 17 scripts for scanning.
- Initiating Ping Scan at 18:14
- Scanning 193.109.128.190 [4 ports]
- Completed Ping Scan at 18:14, 0.10s elapsed (1 total hosts)
- Initiating SYN Stealth Scan at 18:14
- Scanning 193-109-128-190.ukrcom.kherson.ua (193.109.128.190) [22 ports]
- Discovered open port 1723/tcp on 193.109.128.190
- Completed SYN Stealth Scan at 18:14, 1.84s elapsed (22 total ports)
- Initiating Service scan at 18:14
- Scanning 1 service on 193-109-128-190.ukrcom.kherson.ua (193.109.128.190)
- Completed Service scan at 18:15, 31.34s elapsed (1 service on 1 host)
- Initiating OS detection (try #1) against 193-109-128-190.ukrcom.kherson.ua (193.109.128.190)
- Retrying OS detection (try #2) against 193-109-128-190.ukrcom.kherson.ua (193.109.128.190)
- Initiating Traceroute at 18:15
- Completed Traceroute at 18:15, 0.07s elapsed
- NSE: Script scanning 193.109.128.190.
- Initiating NSE at 18:15
- Completed NSE at 18:15, 0.13s elapsed
- Nmap scan report for 193-109-128-190.ukrcom.kherson.ua (193.109.128.190)
- Host is up (0.067s latency).
- PORT STATE SERVICE VERSION
- 21/tcp filtered ftp
- 22/tcp filtered ssh
- 23/tcp filtered telnet
- 25/tcp filtered smtp
- 80/tcp filtered http
- 110/tcp filtered pop3
- 143/tcp filtered imap
- 179/tcp filtered bgp
- 443/tcp filtered https
- 465/tcp filtered smtps
- 993/tcp filtered imaps
- 995/tcp filtered pop3s
- 1433/tcp filtered ms-sql-s
- 1720/tcp filtered H.323/Q.931
- 1723/tcp open pptp FreeBSD MPD (Firmware: 257)
- 3306/tcp filtered mysql
- 3389/tcp filtered ms-wbt-server
- 5060/tcp filtered sip
- 5900/tcp filtered vnc
- 8000/tcp filtered http-alt
- 8080/tcp filtered http-proxy
- 8443/tcp filtered https-alt
- Device type: general purpose|PBX
- Running (JUST GUESSING): FreeBSD 7.X|8.X|9.X (90%), Vodavi embedded (85%)
- OS CPE: cpe:/o:freebsd:freebsd:7 cpe:/o:freebsd:freebsd:8 cpe:/o:freebsd:freebsd:9
- Aggressive OS guesses: FreeBSD 7.1-RELEASE - 9.0-CURRENT (90%), FreeBSD 8.1-STABLE (89%), FreeBSD 7.0-STABLE (88%), FreeBSD 8.0-RELEASE (87%), FreeBSD 7.1-PRERELEASE - 7.3-RELEASE (87%), FreeBSD 8.0-STABLE (87%), FreeBSD 8.1-RELEASE (86%), FreeBSD 7.0-BETA4 - 7.0 (86%), FreeBSD 7.0-RELEASE-p1 - 9.0-PRERELEASE (86%), FreeBSD 7.1-RELEASE (86%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 0.000 days (since Fri Jul 24 18:15:20 2015)
- Network Distance: 9 hops
- TCP Sequence Prediction: Difficulty=257 (Good luck!)
- IP ID Sequence Generation: Incremental
- Service Info: Host: sat3.stronglan.net
- TRACEROUTE (using port 1723/tcp)
- HOP RTT ADDRESS
- 1 0.53 ms router2-lon.linode.com (212.111.33.230)
- 2 1.32 ms 212.111.33.237
- 3 0.94 ms xe-1-3-0.lon21.ip4.gtt.net (141.136.96.245)
- 4 14.92 ms xe-3-0-0.fra61.ip4.gtt.net (89.149.182.74)
- 5 46.57 ms az-international-gw.ip4.gtt.net (77.67.66.34)
- 6 42.78 ms 194.44.212.253
- 7 59.74 ms 194.44.100.254
- 8 60.71 ms 193.109.128.78
- 9 62.69 ms 193-109-128-190.ukrcom.kherson.ua (193.109.128.190)
- OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
- Nmap done: 1 IP address (1 host up) scanned in 39.85 seconds
- Raw packets sent: 132 (9.396KB) | Rcvd: 37 (2.506KB)
- Domain: cleanvoice.net
- Whois of cleanvoice.net:
- Domain Name: CLEANVOICE.NET
- Registrar: REGISTRAR OF DOMAIN NAMES REG.RU LLC
- Sponsoring Registrar IANA ID: 1606
- Whois Server: whois.reg.ru
- Referral URL: http://www.reg.ru
- Name Server: NS1.REG.RU
- Name Server: NS2.REG.RU
- Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
- Updated Date: 02-jul-2015
- Creation Date: 02-jul-2015
- Expiration Date: 02-jul-2016
- Domain name: cleanvoice.net
- Domain idn name: cleanvoice.net
- Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
- Registry Domain ID:
- Registrar WHOIS Server: whois.reg.ru
- Registrar URL: https://www.reg.com/
- Registrar URL: https://www.reg.ru/
- Registrar URL: https://www.reg.ua/
- Updated Date: 2015-07-02
- Creation Date: 2015-07-02T18:27:38Z
- Registrar Registration Expiration Date: 2016-07-02
- Registrar: Domain names registrar REG.RU LLC
- Registrar IANA ID: 1606
- Registrar Abuse Contact Email: email@reg.ru
- Registrar Abuse Contact Phone: +7.4955801111
- Registry Registrant ID:
- Registrant Name: Domain Admin
- Registrant Organization: Privacy Protection Service INC d/b/a PrivacyProtect.org
- Registrant Street: C/O ID#10760, PO Box 16 Note - Visit PrivacyProtect.org to contact the domain owner/operator Note - Visit PrivacyProtect.org to contact the domain owner/operator
- Registrant City: Nobby Beach
- Registrant State/Province: Queensland
- Registrant Postal Code: QLD 4218
- Registrant Country: AU
- Registrant Phone: +45.36946676
- Registrant Phone Ext:
- Registrant Fax:
- Registrant Fax Ext:
- Registrant Email: email@privacyprotect.org
- Registry Admin ID:
- Admin Name: Domain Admin
- Admin Organization: Privacy Protection Service INC d/b/a PrivacyProtect.org
- Admin Street: C/O ID#10760, PO Box 16 Note - Visit PrivacyProtect.org to contact the domain owner/operator Note - Visit PrivacyProtect.org to contact the domain owner/operator
- Admin City: Nobby Beach
- Admin State/Province: Queensland
- Admin Postal Code: QLD 4218
- Admin Country: AU
- Admin Phone: +45.36946676
- Admin Phone Ext:
- Admin Fax:/
- Admin Fax Ext:
- Admin Email: email@privacyprotect.org
- Registry Tech ID:
- Tech Name: Domain Admin
- Tech Organization: Privacy Protection Service INC d/b/a PrivacyProtect.org
- Tech Street: C/O ID#10760, PO Box 16 Note - Visit PrivacyProtect.org to contact the domain owner/operator Note - Visit PrivacyProtect.org to contact the domain owner/operator
- Tech City: Nobby Beach
- Tech State/Province: Queensland
- Tech Postal Code: QLD 4218
- Tech Country: AU
- Tech Phone: +45.36946676
- Tech Phone Ext:
- Tech Fax:
- Tech Fax Ext:
- Tech Email: email@privacyprotect.org
- Name Server: ns1.reg.ru
- Name Server: ns2.reg.ru
- DNSSEC: Unsigned
- URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
- >>> Last update of WHOIS database: 2015-07-24T17:34:42Z <<<
- For more information on Whois status codes, please visit
- https://www.icann.org/resources/pages/epp-status-codes-2014-06-16-en.
- % By submitting a query to REG.RU Whois Service
- % you agree to abide by the following terms of use:
- % http://www.reg.ru/whois/servpol (in Russian)
- % http://www.reg.com/whois/servpol (in English)
- *** DO NOT EXECUTE ***
- Binary: Cleanvoice v 0.5.2b.exe (renamed from Day3.exe)
- Binary downloaded from cleanvoice.net or from https://drive.google.com/uc?export=download&id=0B6hJLzgFkxuYQURTVENQT1hPN3c
- *** DO NOT EXECUTE ***
- Binary MD5: 613b2761dc4f0cfa1b1cace7faf3e42c
- Binary SHA1: 5793ea3cf814722a8050c6a54079d5f78315e84a
- Binary SHA256: 4124061962f103f8332fcf571fb3c42066b85e5a6177b65ae7d2ad526772d50f
- Binary size: 2.4 MB (2543616 bytes)
- Virustotal.com reports 9/56 detection rate.
- Virustotal.com scan: https://www.virustotal.com/en/file/4124061962f103f8332fcf571fb3c42066b85e5a6177b65ae7d2ad526772d50f/analysis/
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement