Dear Programmers, Developers and moderators.
I am trying to go a little bit in depth into Java (very noobish still)
I Decompiled the proxy that I had, but would like to ask where should I look for the backdoors.
I am testing on ProProxy 1.3.
I captured the output from my server logs and Identified the IP addresses which are
216.93.174.65 - Conquer customer reverse IP (assumed to be safe, the conquer server I connect to)
69.59.131.156 - router.photopoint.com.au - (assumed to be safe, same conquer subnet, maybe authentication server, not sure)
75.33.76.217 - adsl-75-33-76-217.dsl.bcvloh.sbcglobal.net (server that collects user names and passwords, could be a home computer with a static IP)
What I need to know, is where exactly is the routine that sends to that IP address.
Please advice someone who is trying to teach himself.
Thanks
 |
