So, the company I work at uses Trend Micro software to monitor the computers for viruses right? Well they must use it to monitor/proxy the internet use as well because I found some strange things going on in the server logs on one of my servers.

I login to various password protected parts of one of my webservers using the work internet. Then some what I assume to be script kiddies started trying to find where I kept various admin tools by going to obvious and not so obvious addresses this webserver. So I got all paranoid and started going through the logs. It didn’t appear as though the script kiddies were getting in or had even found the correct address to the password protected parts of the server.

However I did find some IPs that did and I didn’t recognize them. They USA and Japan assigned IP addresses too. The script kiddies had been using proxies from the USA, France and Japan. However when I did an IP lookup these addresses came back as registered to Trend Micro.

All of the requests to my server gave those IPs 401 Unauthorized errors. So I did a test by navigating to a non existant page on my site with an address that I would notice in the server logs from the work internet. I found an IP from each IP range went to that page as well.

After some googling of the IP addresses I found other people had seen these IP ranges accessing pages that the public couldn’t and shouldn’t know about.

The IP ranges concerned where:

• 216.104.15.0/24
• 150.70.0.0/16

Most of these addresses don’t resolve to a hostname however I did find one that did: 150.70.66.183 resolved to sjdc-wtp-gs-maya6.sdi.trendnet.org but is registered to the Asia Pacific Network Information Centre. It also says that 150.0.0.0/8 is registered to APNIC too, however I’m not sure if it says that even though they have assigned/sold that address to Trend Micro.

As for why this happens I am not sure. Maybe it is a bot to find what customers employees are looking at, keyword grabber or something. I am pretty sure it wouldn’t my employer tracking my net usage as they surely would record that as my HTTP request went out the proxy in my building. However I haven’t checked if the work proxy is actually in the building…..

A mate of mine needed a link extractor for his hotfile.com account so that he could drop a bunch of download page links in and get the premium links to the actual file back, all in a single page, or file. From that page or file he can load them into his download program. These are all legit links btw, no illegal shit.

Anyways I made a bot that has a form to start with where you dump your download urls. Then it goes to the hotfile site, logs in with the given user credentials, runs through each link that the bot was given, and extracts the premium download URL to the file. Then it either prints the links to the page OR it saves the links into a files.txt in the web folder and forces a download in the browser.

The manual way to do that is go to every hotfile.com download link, click on the download file button to start the download, and repeat for every download url you have. This you can throw 50 hotfile.com download links in the form, hit go and it will give you all the premium download links at once. It probably breaks the hotfile terms and services so you could put your account in jeopardy (not my fault) but I don’t use the script, I just solved a problem.

Here’s the code for it if anyone wants to use it. Would be cool if you let me know if it was useful as well
Read more »

Reading about the stink the MPAA and RIAA are kicking up about the whole P2P bittorrent thing got me thinking. I wonder if what they are saying is actually true. Are movie makers actually being ripped off by bittorrent?

I found this website called The Numbers which has a whole lot of box office data on it.

However no API. And I wanted an API that would tell me whether to feel guilty about downloading a particular movie.

So I made this: Box Office Data API

You just have to enter the movie name and year (in the url bar – no form yet) and it will tell you (if the data is available) the production costs, the gross revenue, and the net profit the movie makers made.

Here’s an example for the movie District 9 also if you look at Titanic they made over 1.5 billion bucks profit on that piece of shit movie!

The search code isn’t very smart though so it may return some dodgey results. Still beta but still useful.