Resolved axhost.info to 46.183.217.148 Server: axhost.info Gate file: /m/admin.php?1=HAX&v=0&q=0&b= Config file: /m/config.php Hosting infos: http://whois.domaintools.com/46.183.217.148
mirror.serverhalflife.com (Pandora http bot hosted by Netherlands Haarlem Leaseweb B.v.)
Resolved mirror.serverhalflife.com to 95.211.209.178 Pandora ddos bot Server: mirror.serverhalflife.com Gate file: /pando/?u=17b6n82405v5ycal3ks4bb7i655e088m Other crap on the server Microworm panel: mirror.serverhalflife.com/micro/ The password is “root” Files are located at hxxp://mirror.serverhalflife.com/files/ blackdra.exe is blackshades Connects to own3d-private.no-ip.org:4010 Blackshades downloads more of the files x0x0.294.24.10.10.0.2.15.0.0.0.Federal-Agent.FBI-PC.1.Microsoft Windows XP .522.0.5.0.58802054.0.new.November 4, 2012.Hide My Ass Vpn FBI access panel (Welcome AgentRead more...
amazinghost.lt, yahgodz.com (Smoke and Andromeda loaders hosted by Netherlands Maasdijk Worldstream)
I happened to notice some people taking about one of mysticals old domains, indicating that it had been sold. I decided to check out the domains I had listed in the blog post to see what was on them. I found something new on 307dice.com Smoke loader Server: 307dice.com Gate file: /cp/index.php Check out 307dice.com/cp/guest.phpRead more...
Mystical Megapost (Botnets of all types) (Hosted by Ukraine Ukrainian Internet Names Center Ltd and Netherlands Maasdijk Worldstream)
As Mystical has now recently been banned from hackforums, I thought I would make an informative megapost of botnets he has or is currently using. Domains Bighecker.co 1212Mystic0801.info Sonic4us.com Sonic4me.com img196-imageshack.us rs-booter.com modtech360.info 307dice.com powerbot24.com img90-imageshack.com imageshells.com bighecks.net emails used for registration hlolgame@aim.com mikeydoc@hotmail.com #plug this into facebook to see his profile highroller098765@hotmail.com mikeshosting@yahoo.com bram.fadzulani@mail.comRead more...