g0t Bitcoin? - Part Two

Dear blog readers,

I wanted to let you know that I've recently changed to a permanent Dark Web Onion address - for my Cybertronics - Virtual Reality Social Network for Hackers and Security Experts where I'm currently soliciting Bitcoin donations for the purpose of launching the project in January, 2020.

Got Bitcoin? Consider visiting the Dark Web Onion and making a donation today and stay tuned for the upcoming updates and actual launch of the project in January, 2020 - http://lkzihepprlhxtvbutjedoazbsqd4avmifhpjms3zuq7itceiu4qajwad.onion/

Stay tuned!

Join me on Medium!

Dear blog readers,

I wanted to let everyone know that I've recently joined Medium and that I intend to post a variety of editorial type of articles on a daily basis including the fact that I was recently featured as a Top Writer in Privacy.

Missing the editorial? Consider going through my old ZDNet Zero Day Blog content archive including the following recently published editorial type of articles on Medium:

• Assessing U.S Military Cyber Operational Capabilities to Counter Pro-ISIS Internet Infrastructure
• My Involvement in the Top Secret GCHQ “Lovely Horse” Program and the Existence of the Karma Police
• Kaspersky’s Antivirus Products the NSA and U.S National Security — An Analysis
• Assessment of U.S Intelligence Community Cyber Surveillance Programs and Tradecraft — Part One
• How the NSA utilized Iranian Cyber Proxies To Participate in the BOUNDLESS INFORMANT Program?
• Exposing GCHQ’s Top Secret “GORDIAN KNOT” Cyber Defense Sensor Program — An Analysis
• Exposing GCHQ’s URL-Shortening Service and Its Involvement in Iran’s 2009 Election Protests

Stay tuned!

Dancho Danchev's Twitter Account - 2010 - Direct Download Link - Historical OSINT

Dear blog readers,

Takes you back doesn't it? I've decided to share with you a direct download link of my old Twitter account for you to download and go through and to say big thanks to everyone who's been keeping in touch with me throughout 2008-2013 including actual research work and related research inquiries.

Consider going through the archive and catching up with some of my research circa 2010-2014 and approach me - ddanchev@cryptogroup.net with your feedback or just to say hi in case you remember some of the research which I used to publish back then.

Stay tuned!

Official World Hacker Global Domination Group (WHGDG) Dark Web Onion Launch!

Dear blog readers,

I've been spending more time on the Dark Web these days including the active launching of a second Dark Web Onion and the official launch of the World Hacker Global Domination Group (WHGDG) which is basically a Call for Papers Call for Participation and Call for Innovation request on behalf of me for the purpose of reaching out to the U.S Intelligence Community as an independent contractor for the purpose of presenting and eventually getting funding for a variety of commercial cyber security and hacking including Threat Intelligence and Offensive Cyber Warfare Projects including the active recruitment of new members.

Check out the Official Dark Web Onion:
http://nexvibpe4xszfx4cp2jldkdyhnjnah5qnckoagoiry3vpyv5eheh55id.onion/ and don't forget to visit Cybertronics - Virtual Reality Social Network for Hackers and Cyber Security Experts Bitcoin-accepting Project - http://ca7brwpxmnbssdoh4dfoijyr7zwetob74x3berlvmeekhmkt7zcjdjqd.onion/ and donate today!

How you can participate?

• Visit the Dark Web Onion and go through the Call for Participation Call for Papers and Call for Innovation and approach me at ddanchev@cryptogroup.net in case you believe that you can contribute with knowledge data and expertise including the technical "know-how" to participate in any of the Key Points mentioned in the Dark Web Onion

Stay tuned for a major Web Site update by the end of the week including the production of an extremely popular Security Podcast Security Vlog and an additional set of never-published before possibly classified and sensitive Technical Data and Cyber Security and Hacking resources.

Enjoy!

New Cybertronics - VR for Hackers and Security Experts Dark Web Onion Address

Dear blog readers,

I wanted to let everyone know that I've recently changed the official Dark Web Onion address for my Cybertronics - VR for Hackers and Security Experts Project including the actual Bitcoin donation address.

G0t Bitcoin? Consider going through the project proposal today - http://lkzihepprlhxtvbutjedoazbsqd4avmifhpjms3zuq7itceiu4qajwad.onion/ including to make a possible Bitcoin donation using the following Bitcoin Address: 3J8Jt7XCBGtCL6XRLTWhKfRQBmhhqGs4aP

I wanted to say a big thanks to everyone who approached me in terms of the project including to actually make a donation. The official schedule release is scheduled for January, 2020 and I'll make sure to keep everyone posted on current and future project updates.

Stay tuned!

New Commercial Security Research OSINT Cybercrime Research and Threat Intelligence Gathering Services Portfolio Available On Demand!

Dear blog readers,

I wanted to let everyone know of a currently active commercial portfolio of services that I'm publicly offering for the purpose of reaching out to colleagues and friends including companies vendors and organizations who might be interested in working with me for the purpose of obtaining access to never-published before Security Research analysis reports briefs podcasts and various other commercially obtainable virtual and cyber assets that you and your organization can take advantage of.

Approach me at - dancho.danchev@hush.com today to discuss!

Key Commercial Services that I'm currently offering include:

• Security Services
• OSINT Services
• Hacking Services
• Intelligence Services
• Geopolitical Services

Including the following commercial services available on Patreon Community:

• Real-Time Security Consultation
• Security Newsletter
• Cybercrime Blog Post
• Security Podcast
• Malware Analysis
• Threat Intelligence Analysis
• Security Workshop
• OSINT Analysis
• Geopolitical Analysis
• Threat Actor Profiling
• National Security Analysis
• Cyber Jihad Analysis
• Dark Web Intelligence and OSINT Analysis
• Security Presentation
• Cyber Security Business Development
• Red Team Penetration Testing Assessment
• Blue Team Penetration Testing Assessment
• Target of Opportunity Targeting
• Cybercrime Forum Monitoring
• Underground Chatter Monitoring
• Network Deception Consultation
• Military Scenario Building
• Cyber Warfare Scenario Building
• OSINT Enrichment and Data Mining
• Cyber Warfare Program Estimation
• Weapons System Analysis
• Cyber SIGINT and Cyber Assets Discovery

Stay tuned!

Announcing Law Enforcement and OSINT Intelligence Operation "Uncle George" - Join Me Today!

Dear blog readers,

Surprise, surprise! I wanted to let everyone know that I've spend a decent portion of my time crawling and actually harvesting and data mining 78 high-profile public Cybercrime Forum Communities basically consisting of 1M raw OSINT data Web site pages harvested and ready for processing and enrichment. Dare to join the campaign? Keep reading and drop me a line at dancho.danchev@hush.com to coordinate and discuss including details on how to obtain free access to the 2019 Cybercrime Forum Community Data Set which is basically 18GB comprising of 1M crawled and harvested Web sites from the most popular Public Cybercrime Forum Communities.

Timeline of the Project including What You Need to Participate with the Ultimate Goal to Track Down the Individuals Behind These Communities and Actually Take Them Down:

• Drop me a line at dancho.danchev@hush.com and let me know that you've downloaded it and that you're currently interested in participating in the project
• Please coordinate with me what you plan to do with the archive in terms of possible raw OSINT enrichment and automated Social Network Analysis including sharing it with your Law Enforcement contacts or colleagues in your organization at dancho.danchev@hush.com
• Grab a copy of Open Desktop Semantic Search - https://www.opensemanticsearch.org and process the archive
• Grab a copy of Solr-Powered Local Yacy Search Engine - https://yacy.net and process the archive
• Grab a copy of Carrot2 – Open Source Search Results Clustering Engine - https://project.carrot2.org/ and connect it with Solr-Powered Local Yacy Search Engine and start processing the results and share the results with me at dancho.danchev@hush.com
• Grab a copy of the following Statistical graphs generating tool - https://github.com/ko-ichi-h/khcoder and begin working on the archive

The Objectives List:

• Gather as much evidence for participation in fraudulent activity and shut down the community
• Collect as much personal information as possible including IoCs (Indicators of Compromises) Web site URLs including personal IM accounts and personal email addresses
• Publicly publish the results of the crowd-sourced raw OSINT enrichment project campaign and ask everyone to reach out to their contacts in U.S Intelligence Community and international Law Enforcement to share the data and actively participate in the actual prosecution of the individuals behind these Cybercrime Forum Communities and the actual take-down process
• Share the data-set with as many academic Security Industry U.S Intelligence and international Law Enforcement contacts as possible

Drop me a line at dancho.danchev@hush.com and let's get the campaign going!

The results? Check out the following enriched raw OSINT graph which I managed to create for research purposes and to motivate you to participate.

 

Related Graphs Produced To Motivate You to Participate on a Per Keyword Basis:

Sample Screenshot of the ShadowCrew Cybercrime Forum Community circa 2002-2004:

 

Sample Public Member Email addresses of ShadowCrew Cybercrime Forum Community circa 2002-2004:

shadow@shadowcrew.com

idline@ziplip.com
vengeance_1@ziplip.com
cracker81@ziplip.com
den5013@ziplip.com
onthefringe@ziplip.com
midhack@ziplip.com
toastypimp@yahoo.com
fakeid@ziplip.com
anonraider@hotmail.com
KsnowyInc@ziplip.com
spookycat911@ziplip.com
Necromancer01@ziplip.com
script4dumps@ukr.net
dominican@ziplip.com
rcwizard@ziplip.com
CAYMAN@Vegas.zzn.com
kahuna@mailvault.com
nhlaxus@ziplip.com
jamal@ziplip.com
cam@mailvault.com
stocksstocks@ziplip.com
Dimmesdale@ziplip.com
MiCR0_tECh@ziplip.com
vertiloto@blueyonder.co.uk
ultrateck146@aol.com
ilithiumi@ziplip.com
flashfire@ziplip.com
p4lman@s-mail.com
vikkingchick@aol.com
emo_faulds@hotmail.com
drumnhoouse@netscape.net
scottlenord@yahoo.com
rkj22@ziplip.com
tec9@mailvault.com
subuk01@hotmail.com
malpadre_@hotmail.com
kkmac2003@aol.com
phoenixoz@hotmail.com
natural_ice_59@hotmail.com
chrisp92656@yahoo.com
agent@inbox.nu
shadiestfiveten@hotmail.com
matrix_447@yahoo.com
hockeymark99@hotmail.com
circatropolis@email.com
circatrooper@hotmail.com
damned@damned.ro
Ranger@mailvault.com
poop@sex.com
crazy_gm@hotmail.com
pimpin_ken_op@hotmail.com
slickrick@ziplip.com
nons@usa.com
wulfnacht@msn.com
poofibgone@mailvault.com
firewireID@ziplip.com
BlkOps@mailvault.com
bikerbill@ziplip.com
jwelsh@welshworks.com
RichardKimble@mailvault.com
y0rks@ziplip.com
xdirc@mailvault.com
jilsi@ziplip.com
ji8si@hotmail.com
JCDyer82@hotmail.com
kill4kr@spray.se
myleena@mailvault.com
ccsupplier@ziplip.com
bad_karma@ziplip.com
cyptdog@homtail.com
cyptdog@yahoo.com
MrUntouchableSC@hotmail.com
trance_boy3000@hotmail.com
MrBill@emaildownunder.com
iceman12@mailvault.com
thegeko2002@yahoo.fr
mcmf_violent_j@hotmail.com
djdonte@schoolsucks.com
confidential@mutemail.com
hiroshi_saito85@hotmail.com
jorge28@hotmail.com
jorgescalanter@yahoo.com
mcscammer@ziplip.com
esse@ziplip.com
plasticbuyer@hotmail.com
mad_carder@ziplip.com
madcarder@aol.com
dtraxor@hotmail.com
clarolherbal@hotmail.com
eddie_123@hotmail.com
sales@perfectids.com
digitaldemon@ziplip.com
Pmal@ziplip.com
sibba@ziplip.com
slackerx@mailvault.com
Chairmanoftheboard@ziplip.com
BigTymeBallin@ziplip.com
sharlton@hotmail.com
willhemsley@hotmail.com
rcw1zard@hotmail.com
justlearning@hushmail.com
sexyred15@hotmail.com
Mental_Hopscotch@hushmail.com
e-talos@mailvault.com
derezz404@hotmail.com
nosoup4you@subdimension.com
troymclure@ziplip.com
ketamin_dream@hotmail.com
telaviv2976us@yahoo.com
verbal0g@yahoo.com
verbal0g@msn.com
saumurk@hotmail.com
princeofpassionca@yahoo.ca
gordie@ziplip.com
djchepper@hotmail.com
rudemuthafucka@imabadlittleboy.com
unrealsecurity@mailvault.com
glock911@mailvault.com
geekusdeekus@hotmail.com
tranceplastic@ziplip.com
ozymandias@ziplip.com
dutex@ziplip.com
kamikavi@hotmail.com
GLOBEMAN@ziplip.com
bluetree1955@hotmail.com
bluetree1955@yahoo.com
MiCR0_tECh@yahoo.com
frotchman@hotmail.com
Raptor@mailvault.com
homeboy@protectmymail.com
jonny_boy89@hotmail.com
masquerade71id@hotmail.com
masquerade71id@yahoo.com
space-dog@ntlworld.com
NeilPeart@ziplip.com
deraw280@mailvault.com
chingiz@gmx.net
axecharlton@breathe.com
no1betta@ziplip.com
petegr@ziplip.com
Chemical_Kidd@hotmail.com
trustfunded@hotmail.com
boomsicka@ziplip.com
c12173@hotmail.com
Top_Holos@yahoo.com
phraud@ziplip.com
counter_fit@ziplip.com
PygmyShrew@ziplip.com
gettowitch@ziplip.com
khamkham@ziplip.com
rogue_enc@hushmail.com
ink@themusclezine.com
IPg0sht@hotmail.com
Thakid22@yahoo.com
snowboardkid56@aol.com
milkee2936@ziplip.com
keith1569@mailvault.com
gucciman_2003@yahoo.com
gucciman_2003@hotmail.com
LrdPath@aol.com
jesevski@hotmail.com
alex_phukoff@hotmail.com
aftermath1024@msn.com
blaze1669@yahoo.com
mister_shaggy@hotmail.com
tandrek@mailvault.com
lawhack@ziplip.com
bluebamboo49@yahoo.com
whynot_@ziplip.com
orders@terroristsupply.com
scrub22003@yahoo.com.br
minus9@mailvault.com
thecreame@hotmail.com
jhosking77@yahoo.com.au
usaru2001@yahoo.com
blackice8636@ziplip.com
omarhayyam2002@yahoo.com
namon@mailvault.com
DM6311@ziplip.com
board_dokter2000@hotmail.com
shaubarak@ziplip.com
MR.HR@ziplip.com
theamericanpsycho@ziplip.com
ehlerssc@msu.edu
meerakker@s-mail.com
blackrob911@hotmail.com
blackrob91@aol.com
humpmike420@hotmail.com
romainschwertz@pingnet.ch
nightkrawler@ziplip.com
drudown@ziplip.com
veg@ziplip.com
degreeuniversity@ziplip.com
spun1inspunville@yahoo.com
chewis393@hotmail.com
chewis393@yahoo.com.mx
dstephania@attbi.com
locolive@ziplip.com
og6@ziplip.com
yeez@hotmail.com
EvenOner@hotmail.com
tonsoffun@ziplip.com
grupopax@yahoo.com
medellru@yahoo.com
atownave@hotmail.com
brynster1@ziplip.com
freddiez@hotmail.com
mathieu690@gosympatico.ca
sales@cooldegree.com
Slaurworks@earthdome.com
majjack@majjack.com
dan_lopez99@hotmail.com
SCjamalSC@yahoo.com
koolhandluke@ziplip.com
donnyisnaked@msn.com
blackarmor@ziplip.com
joe_quarterback@hotmail.com
al_cappone22@hotmail.com
i_luv_u_ro@yahoo.com
No_Exit@hotmail.com
back2daprimitive@hotmail.com
freshintake@msn.com
diva1@ziplip.com
Feces@Poop.org
visualise303@hotmail.com
benstone@mailvault.com
darktide@telusplanet.net
tonystarx@ziplip.com
ctroy@ziplip.com
FraMd323@mailvault.com
a_nightmare@mailvault.com
spitphire@mail.ru
jwillpromo@yahoo.com
doggfortyfive@hotmail.com
marthamoxley@mail.ru
skulebas101@hotmail.com
neuby34@hotmail.com
bigpickster@aol.com
caligirl02@ziplip.com
O0nytejade0O@aol.com
wolfram@ziplip.com
bigbuyer@counterfeitcards.com
hoots1967@hotmail.com
Ace@Hole.com
thessor@ziplip.com
adamtoth@hotmail.com
dieselino@usa.com
wakes@ziplip.com
crazyd9483@hotmail.com
triple-sinner@ziplip.com
midnyte@stormfeather.com
tron@counterfeitcards.com
jb604@hotmail.com
Ali3nS3xFi3nd@msn.com
emperordalek@zombieworld.com
Southerner@Republican.com
johnkimble@mailvault.com
dr.p@ziplip.com
deen_suleman@yahoo.com
mycounter@ziplip.com
tellatubbiesrko@aol.com
los.angeless@fbl.gov
freeman82@ziplip.com
ukbadboy@ziplip.com
flossboi@yahoo.com
modestlygreat@hotmail.com
modestlygreat@yahoo.com
abaddon@802.11ninja.net
frostedflake@yahoo.com
badnewstodd@ziplip.com
cromm@quicksilver.net.nz
badboyballads2000@yahoo.com
xstreetsk8er487x@yahoo.com
ccking@electricpenis.com
gtelia@hotmail.com
gtelia00@yahoo.com
sif@ziplip.com
musha@phreaker.net
thecatreturn@hotmail.com
neiromantik@yahoo.com
Byrd@flashmail.com
ilalexil@hotmail.com
shabazz@ziplip.com
sp00f@ziplip.com
platinumplus@ziplip.com
5u5p3ct@cyber-rights.net
polikking@mailvault.com
willieo@ziplip.com
waynewayne@ziplip.com
ranxerox69@bolt.com
linkpin34@aol.com
OerO@mailvault.com
jasonbourne@ziplip.com
xminderbinderx@ziplip.com
combattantdeliberte@ziplip.com
nonzero@hush.com
CANADIAN2001@ziplip.com
shellydvained@yahoo.com
jon@fakeiduk.co.uk
PaulieStew@hotmail.com
jeremyzamyslowski711@hotmail.com
oofzpumba@yahoo.com
oofzpumba@msn.com
crackolic@hotmail.com
carding@versa-us.com
b_digital2k@hotmail.com
alyn_peden@hotmail.com
DebbieGroeneveld192@hotmail.com
kyndo@ziplip.com
midhack@mailvault.com
robertlowery_1@lycos.com
jeffsm@ziplip.com
swastikaeyes@ziplip.com
Email@shadowcrew.com
RyDen@ziplip.com
thanxlinkpin34@aol.com
slobodan2002@mail.ru
plastic@counterfeitcards.com
down@ftp.ttdown.com
Kyr0N@zor.org
ttdown@ftp3.ttdown.com
fix@jsftp.fixdown.net
perfectids@mailvault.com
BrianD@mailvault.com
whatever@ziplip.com
login@ziplip.com
registry@forss.net
martin.andersson@utfors.se
krister.lenberg@utfors.se
buyerguide@accountant.com
intellegence@ziplip.com
script4cc@ukr.net
z-e-n@mailvault.com
irisport@ziplip.com
doink2@ziplip.com
harro@ziplip.com
plunger@mailvault.com
CardGuy_1983@ziplip.com
tazorak@yifan.net
nouvou@ziplip.com
mrsyndicate@mailvault.com
wileecoyote@ziplip.com
yes@ilovelily.net
qwert@ua.fm
jdp@usermail.com
bulkbuyer@usa.com
osharifff@yahoo.fr
fonefag@ziplip.com
asheroner@ziplip.com
eagle@eagle.org
BadnewsBrown667@aol.com
thanksalotman@hotmail.com
thalus_private@mailvault.com
skaplan110@attbi.com
shadowcrew@ziplip.com
domain@zentek-international.com
ni69az@yahoo.com
thelistguy@ziplip.com
ICE_Storm@ziplip.com
macgyver@mailvault.com
61476@xxxx.edu
rocketchimpalpha@hotmail.com
wolfram@consultant.com
daidarek@hotmail.com
admin@mypage.4all.cc
leek@europe.com
morzhov@bk.ru
Blah@aol.com
stayfly2udie@hotmail.com
info@e-fidex.com
krankmeup@mailvault.com
blankcheck@hushmail.com
s3ba@ziplip.com
ifyourinthebattle@ziplip.com
kathy@fakeidman.org
art@martinridley.com
khameleon@ziplip.com
stallionmover@scurtek.com
Excise@ziplip.com
bones_49_5@hotmail.com
leek@mail.com
saint7@Cyber-rights.net
kagney@ziplip.com
XBand2040@mailvault.com
TheBestofBC@ziplip.com
caponeseller@mail.com
smartcarder@yahoo.com
knowledgeableone@hotmail.com
knowledgeableone@quixer.com
knowledgeable1@quixer.com
poppy.crops@ziplip.com
cc4me@hotmail.com
deriva@ziplip.com
scarface05@ziplip.com
blackdog53@ziplip.com
24609@ziplip.com
midhack@verizon.net
Deck@ziplip.com
vitali@webmoney.ee
silentmaori@hotmail.com
thetussin@ziplip.com
refy@ziplip.com
Troublesome714@ziplip.com
la-al@justice.gc.ca
blueman77@ziplip.com
knobs@oceanfree.net
jburton@ziplip.com
whatever@ebay.com
miragegq@yahoo.com
exids@ziplip.com
defx@ziplip.com
URsTrULyInNYC@aol.com
shiva@computekservices.com
Paulsmithinny@yahoo.com
cjlax5@ziplip.com
user@pm-shadowcrew.com
meerakker@pm-shadowcrew.com
kickman@ziplip.com
thesoupnazi@ziplip.com
importuner@ziplip.com
v1pee@e-mail.ru
patryn@ziplip.com
aladdin275@yahoo.com
capaefex@ziplip.com
walterwolf@ziplip.com
SLiPz@ziplip.com
iisps@ziplip.com
alexei_d@mail.ru
sharon@captix.com
magog@ziplip.com
jayare@ziplip.com
webappsec@securityfocus.com
novidus@ziplip.com
ttboafact@canada.com
Ziffnavi@fitec.co.jp
perfectionist2003@ziplip.com
bigbuyer@gmx.net
mrnoface@ziplip.com
info@photoidcards.com
kidd@ziplip.com
ben@getwasted.net
CT_man@ziplip.com
idcrisis@ziplip.com
soccccerguy@hotmail.com
shadowdonations@ziplip.com
you@shadowcrew.com
mobties@ziplip.com
calitaliban@ziplip.com
admin.buu@loxinfo.ac.th
route@infonexus.com
momomania@hotmail.com
Namechange@ziplip.com
salve2001@ziplip.com
Gateway2000@ziplip.com
Slayer@Kraix.com
great.cc4me@hotmail.com
cc@scriptsjob.com
shadowmembership@ziplip.com
Sigma@DNS-CORE.com
admin@shadowcrew.com
tom333@ziplip.com
sadf@1Cust31.tnt1.minneapolis.mn.da.uu.net
mrmojorising@ziplip.com
securitymind@tut.by
teslinsupply@yahoo.com
restoration656@hotmail.com
hara@ypn.co.uk
IQ163@ziplip.com
lex@mindvox.phantom.com
lex@stormking.com
jzamyslowski711@hotmail.com
Thedude@aol.com
cl@counterfeitlibrary.com
kestra@ziplip.com
capone420@ziplip.com
hpouches@yahoo.com
gollumfun@ziplip.com
degreeuniversity@hotmail.com
akingston@ziplip.com
customitnow@ziplip.com
Eloheem@ziplip.com
blacks@mail.com
joe@innerhost.com
canuck@ziplip.com
canuck@amadeupemailaddressidonthaveaccessto.com
spit-fire@ziplip.com
sales@closedcollege.com
billing@Phantominfo.com
cham@ua.fm
Fontaine420@ziplip.com
Creep01@ziplip.com
dammit@ziplip.com
gollumfun@hushmail.com
domains@aol.net
abuse@aol.net
noc@aol.net
kaliberx@ziplip.com
info@professionaldegrees.com
info@penningtonu.com
kingofthefoothill@hotmail.com
pridget@dbzmail.com
interception@mail.com
080120@ziplip.com
werewolf@gmx.net
fgmp123@ziplip.com
Cyphon@ziplip.com
cplanet@ziplip.com
legal@shadowcrew.com
stuffx@ziplip.com
nobody@sigma.dns-core.com
E17sb1x-0000F6-00@sigma.dns-core.com
team@verizon.net
dogwood70@ziplip.com
team@adultfriendfinder.com
username@NOSPAM.domain.com
tdog@myself.com
ralph@doncaster.on.ca
realplastic@gmx.net
you@hush.com
you@elitefitness.com
DR.Smith@belizeweb.com
lighthawk4@ziplip.com
ampersona@ziplip.com
lancelotlink@ziplip.com
mhall@netcom.com
pvthc@ziplip.com
chbigben@ziplip.com
drift@ziplip.com
mac_addict1984@yahoo.com
littletommy@ziplip.com
FireWire@ziplip.com
firewire7@hotmail.com
renegadeUK@ziplip.com
zidaneiv@hotmail.com
wldnczy@ziplip.com
fakeIDusa@ziplip.com
the1andonly@ziplip.com
GiB_Uk@ziplip.com
jon101@ziplip.com
helpwanted@ziplip.com
email.III_barcode_III@ziplip.com
Tz2@ziplip.com
madrid@ziplip.com
Artyanon@mailvault.com
utax@inbox.lv
saradonne@ziplip.com
perfectids@yahoo.com
blackarmor@eurosport.com
kkimmel@terroristsupply.com
idline@mailvault.com
dr@dursec.com
rongula31@hotmail.com
ken.williams@ey.com
roesch@sourcefire.com
fygrave@scorpions.net
vision@whitehats.com
rfp@wiretrip.net
aleph1@securityfocus.com
wooc@powersurfr.com
apr.inc@powersurfr.com
conroy.badger@powersurfr.com
crystal@positioning-research.com
jason.dorie@blackboxgames.com
darryl_turner@yahoo.com
mrandles@softhome.net
vizuelle@eudoramail.com
fyodor@insecure.org
spikeman@spikeman.net
lance@spitzner.net
listuser@seifried.org
mfranz@cisco.com
phillip.ibis@blackboxgames.com
cwallace@exceedia.com
priest@sfu.ca
hdm@digitaloffense.net
rhamel@kpmg.ca
nico@securite.org
kaneda@securite.org
dsward9s@pacbell.net
andy@dragonfly.demon.co.uk
ktwo@ktwo.ca
kinkster1@shaw.ca
ajarman@metacomcorp.com
zindelak@telusplanet.net
jeff@wwti.com
smkoen@hotmail.com
cwilson2@kpmg.ca
newspixie@hotmail.com
mock@obscurity.org
j@lords.com
ksoze@obscurity.org
frank@atstake.com
fishy@powersurfr.com
cakeislove@hotmail.com
tiffany_kary@zd.com
stephenn@powersurfr.com
webmaster@pneumafables.com
bsapiro@kpmg.ca
kmx@egatobas.org
hectorh@pobox.com
emmanuel@relaygroup.com
vanja@vanja.com
dje@bht.com
dugsong@monkey.org
lyndon@orthanc.ab.ca
mts@off.off.to
paudley@blackcat.ca
robert_david_graham@yahoo.com
spambait-kyx@inetgrity.com
chris@obscurity.org
peter_wong@pmc-sierra.com
janet@lomas.ab.ca
dfreelove@yottayotta.com
dowen@intravelnet.com
randlest@oanet.com
jay@bastille-linux.org
phil@ccc-ltd.com
jed@pickel.net
gshipley@neohapsis.com
deraison@cvs.nessus.org
maxx@securite.org
mixter@newyorkoffice.com
deraadt@cvs.openbsd.org
dittrich@cac.washington.edu
bgreenbaum@securityfocus.com
neil@bortnak.com
annemarie@counterpane.com
chris.kuethe@ualberta.ca
bob.beck@ualberta.ca
tan@atstake.com
natasha@snort.org
arr@watson.org
aempirei@ucla.edu
ggolomb@enterasys.com
jfrank@b-ap.com
robert@infoserf.net
kkuehl@cisco.com
donna.andert@sun.com
bmc@snort.org
jgary@clicktosecure.com
jpavlick@sourcefire.com
talisker@networkintrusion.co.uk
jwalchuc@enterasys.com
itay@imc.nl
halvar@blackhat.com
ppY@IdealRealms.com
forrest@code-lab.com
mconley@atstake.com
jennifer@granick.com
scott@microsoft.com
ah@securityfocus.com
cruci@hwa-security.net
solar@openwall.com
ivan.arce@corest.com
rlogan@camisade.com
cmg@uab.edu
jed@grep.net
v0nelm0@best.com
snorthcutt@hawaiian.net
frank@ccc.de
dmckay@microsoft.com
jwilkins@bitland.net
kf@gnosys.biz
unlearn@ne.mediaone.net
jpr5@darkridge.com
shok@dataforce.net
thegnome@nmrc.org
ofir@sys-security.com
provos@umich.edu
silvio@big.net.au
mike@infonexus.com
crispin@wirex.com
halfdead@phear.org
niness@devilness.org
curtis.king@messagingdirect.com
rob@incident-response.org
kam@aversion.net
fuk@ghettobox.eurocompton.net
merharm@wra.net
zmagic@phear.org
inter@logos.relcom.ru
alive@blazinfyre.net
daemon@esmith.geezernet.nu
nwonknu@dsl-65-187-119-141.telocity.com
abramelon@cpn.cookchildrens.org
thegnome@nrmc.org
me@btinternet.com
Administrator@hotmail.com
redeemer@g0tr00t.net
b0iler@hotmail.com
who@radiofreesatan.com
poolemit@mailvault.com
fuckyoutxtax@hell.com
proxydialup@yahoo.com
info@megastep.com
sales@diplomaone.com
abuse@teledisnet.be
NOC@sprint.net
dvlpmntsftwr@hotmail.com
stepgas@hotmail.com
rra33@hotmail.com
cody@server.snni.com
kwparris@csuh.alunlink.com
wolfram@counterfeitcards.com
whoever@hotmail.com

Sample Public ICQ UIN Numbers of ShadowCrew Cybercrime Forum Community circa 2002-2004:

999008

9773639
974763
97254007
95211861
92754913
914506
89531566
8923240
86958674
802820
777726
74623265
7444304
690033
6666666
637321
62527577
598629
59838986
56714884
56327073
5556665
517196
48721062
47564547
4545
44203686
41781
3727374
362563
35
348140
33342322
332163
330332251
327539466
320455282
320100851
319326887
31485639
304060
29457002
288687540
288670074
266472842
26633491
264975608
2482045
236790331
230406
222567486
222409185
22063094
219747908
21386767
213201784
212719246
19457815
193200333
1881621
179251032
178954300
178832228
178420526
178210999
178101166
178020075
177541908
177507739
177394922
177016428
176824746
176531816
175688952
175596058
175521773
175350857
175308348
175157730
174902318
174760817
174537112
174511919
174445299
173846049
173838529
173767788
17359522
173387414
173299970
173254582
173019781
173002204
172674035
172476811
172290141
172252866
172021743
171975533
171805992
1715300002
171468368
171440228
170627352
170324565
170036758
169769760
169243371
169220281
169006693
168834059
168769080
168675160
168595955
168495889
168422846
168413916
167927175
167897380
167636937
167023436
166657595
166581197
166407706
165969755
165638624
165546617
164872312
164165878
164008345
162852265
1601617
158807983
15652907
154866004
152616
150860495
139736678
130915854
11402050
1111111
10966997
107021
105233239
103363810
100631
100161

 

Sample Public IM User Names of ShadowCrew Cybercrime Forum Community circa 2002-2004:

aim:goim?screenname=youngglobeman&message=Hello+Are+you+there?

aim:goim?screenname=yeezz0r&message=Hello+Are+you+there?
aim:goim?screenname=xkyroutx&message=Hello+Are+you+there?
aim:goim?screenname=wisie459&message=Hello+Are+you+there?
aim:goim?screenname=whailen&message=Hello+Are+you+there?
aim:goim?screenname=wgrumpke&message=Hello+Are+you+there?
aim:goim?screenname=verbal0g&message=Hello+Are+you+there?
aim:goim?screenname=unbreakable2009&message=Hello+Are+you+there?
aim:goim?screenname=TopHolos&message=Hello+Are+you+there?
aim:goim?screenname=thenightmaresx&message=Hello+Are+you+there?
aim:goim?screenname=thelistguysc&message=Hello+Are+you+there?
aim:goim?screenname=theblinkstud182&message=Hello+Are+you+there?
aim:goim?screenname=Tandrek&message=Hello+Are+you+there?
aim:goim?screenname=t909j&message=Hello+Are+you+there?
aim:goim?screenname=t0astypimp&message=Hello+Are+you+there?
aim:goim?screenname=SpacemanSpiff742&message=Hello+Are+you+there?
aim:goim?screenname=sp+e+ar+legolas&message=Hello+Are+you+there?
aim:goim?screenname=someguy798&message=Hello+Are+you+there?
aim:goim?screenname=SomeCallMe+Byrd&message=Hello+Are+you+there?
aim:goim?screenname=Sly+Immigrant&message=Hello+Are+you+there?
aim:goim?screenname=sirnoface&message=Hello+Are+you+there?
aim:goim?screenname=Sir+Aristrotle&message=Hello+Are+you+there?
aim:goim?screenname=shaubarak&message=Hello+Are+you+there?
aim:goim?screenname=shadylady18693&message=Hello+Are+you+there?
aim:goim?screenname=shady007&message=Hello+Are+you+there?
aim:goim?screenname=Screen+Serv&message=Hello+Are+you+there?
aim:goim?screenname=ScottScurlock&message=Hello+Are+you+there?
aim:goim?screenname=Sconoscuito&message=Hello+Are+you+there?
aim:goim?screenname=SC+Talos&message=Hello+Are+you+there?
aim:goim?screenname=savemejebus179&message=Hello+Are+you+there?
aim:goim?screenname=retarded+shit&message=Hello+Are+you+there?
aim:goim?screenname=redundantcheese&message=Hello+Are+you+there?
aim:goim?screenname=redbossaline&message=Hello+Are+you+there?
aim:goim?screenname=rawistravis&message=Hello+Are+you+there?
aim:goim?screenname=psndude1&message=Hello+Are+you+there?
aim:goim?screenname=progressiveccna&message=Hello+Are+you+there?
aim:goim?screenname=platinum54door&message=Hello+Are+you+there?
aim:goim?screenname=phs2602&message=Hello+Are+you+there?
aim:goim?screenname=pg043&message=Hello+Are+you+there?
aim:goim?screenname=perfectids&message=Hello+Are+you+there?
aim:goim?screenname=pbushe000&message=Hello+Are+you+there?
aim:goim?screenname=overviewband&message=Hello+Are+you+there?
aim:goim?screenname=ourorgasms&message=Hello+Are+you+there?
aim:goim?screenname=Original+Boski&message=Hello+Are+you+there?
aim:goim?screenname=oofzpumba&message=Hello+Are+you+there?
aim:goim?screenname=octane&message=Hello+Are+you+there?
aim:goim?screenname=novidus&message=Hello+Are+you+there?
aim:goim?screenname=NONE&message=Hello+Are+you+there?
aim:goim?screenname=none&message=Hello+Are+you+there?
aim:goim?screenname=Nobelc4t&message=Hello+Are+you+there?
aim:goim?screenname=NiggaDJackingDaHole&message=Hello+Are+you+there?
aim:goim?screenname=na&message=Hello+Are+you+there?
aim:goim?screenname=N/A&message=Hello+Are+you+there?
aim:goim?screenname=mwdropout&message=Hello+Are+you+there?
aim:goim?screenname=mustophamond&message=Hello+Are+you+there?
aim:goim?screenname=mtnhardware121&message=Hello+Are+you+there?
aim:goim?screenname=MrUntouchableSC&message=Hello+Are+you+there?
aim:goim?screenname=mrmojorising97&message=Hello+Are+you+there?
aim:goim?screenname=MonetaryAffairs&message=Hello+Are+you+there?
aim:goim?screenname=Mofia+MG&message=Hello+Are+you+there?
aim:goim?screenname=mikeyb7895&message=Hello+Are+you+there?
aim:goim?screenname=miamimac305&message=Hello+Are+you+there?
aim:goim?screenname=meyerc101&message=Hello+Are+you+there?
aim:goim?screenname=MentalHpscotch&message=Hello+Are+you+there?
aim:goim?screenname=menlochronic&message=Hello+Are+you+there?
aim:goim?screenname=madcarder@aol.com&message=Hello+Are+you+there?
aim:goim?screenname=mach844&message=Hello+Are+you+there?
aim:goim?screenname=LOSSisback&message=Hello+Are+you+there?
aim:goim?screenname=linuxgeek99&message=Hello+Are+you+there?
aim:goim?screenname=LinuxDevil&message=Hello+Are+you+there?
aim:goim?screenname=lazystatefan&message=Hello+Are+you+there?
aim:goim?screenname=lady
aim:goim?screenname=kickinhard2002&message=Hello+Are+you+there?
aim:goim?screenname=jwillvip&message=Hello+Are+you+there?
aim:goim?screenname=johnvd18&message=Hello+Are+you+there?
aim:goim?screenname=JMOExtremeS10&message=Hello+Are+you+there?
aim:goim?screenname=jeffsm31337&message=Hello+Are+you+there?
aim:goim?screenname=jedisgod&message=Hello+Are+you+there?
aim:goim?screenname=jeadien&message=Hello+Are+you+there?
aim:goim?screenname=JCDyer82&message=Hello+Are+you+there?
aim:goim?screenname=j0ke+y4+mind&message=Hello+Are+you+there?
aim:goim?screenname=IrOnMaN800&message=Hello+Are+you+there?
aim:goim?screenname=IDLineNTT&message=Hello+Are+you+there?
aim:goim?screenname=iceroot1&message=Hello+Are+you+there?
aim:goim?screenname=IamOms&message=Hello+Are+you+there?
aim:goim?screenname=iamaballer847&message=Hello+Are+you+there?
aim:goim?screenname=HRSAFTER&message=Hello+Are+you+there?
aim:goim?screenname=gosuns1965&message=Hello+Are+you+there?
aim:goim?screenname=globalflux&message=Hello+Are+you+there?
aim:goim?screenname=Frozenct&message=Hello+Are+you+there?
aim:goim?screenname=fonefag&message=Hello+Are+you+there?
aim:goim?screenname=flameboysk8er13&message=Hello+Are+you+there?
aim:goim?screenname=firewireID&message=Hello+Are+you+there?
aim:goim?screenname=FenderESP&message=Hello+Are+you+there?
aim:goim?screenname=Feces@Poop.org&message=Hello+Are+you+there?
aim:goim?screenname=fdsf&message=Hello+Are+you+there?
aim:goim?screenname=everybodyschild&message=Hello+Are+you+there?
aim:goim?screenname=esolemio&message=Hello+Are+you+there?
aim:goim?screenname=erols26&message=Hello+Are+you+there?
aim:goim?screenname=ElMariachiMoco&message=Hello+Are+you+there?
aim:goim?screenname=Edgarkrasav&message=Hello+Are+you+there?
aim:goim?screenname=EddieG2277&message=Hello+Are+you+there?
aim:goim?screenname=ed0wn&message=Hello+Are+you+there?
aim:goim?screenname=drunknsailor1&message=Hello+Are+you+there?
aim:goim?screenname=dk3&message=Hello+Are+you+there?
aim:goim?screenname=djdonte69&message=Hello+Are+you+there?
aim:goim?screenname=Degauss007&message=Hello+Are+you+there?
aim:goim?screenname=dEeliriOous&message=Hello+Are+you+there?
aim:goim?screenname=d0l3m1k3&message=Hello+Are+you+there?
aim:goim?screenname=cyptdog&message=Hello+Are+you+there?
aim:goim?screenname=crommnz&message=Hello+Are+you+there?
aim:goim?screenname=cpuaddict123&message=Hello+Are+you+there?
aim:goim?screenname=chemist+exposed&message=Hello+Are+you+there?
aim:goim?screenname=CASLUSCLAY@AOL.COM&message=Hello+Are+you+there?
aim:goim?screenname=cardseller420&message=Hello+Are+you+there?
aim:goim?screenname=Brydenn33&message=Hello+Are+you+there?
aim:goim?screenname=Boomsicka&message=Hello+Are+you+there?
aim:goim?screenname=Bo0tyM0nster&message=Hello+Are+you+there?
aim:goim?screenname=Bluedevelz&message=Hello+Are+you+there?
aim:goim?screenname=BLaZiNKeWP&message=Hello+Are+you+there?
aim:goim?screenname=blackrob91@aol.com&message=Hello+Are+you+there?
aim:goim?screenname=BlaCkiCe8636&message=Hello+Are+you+there?
aim:goim?screenname=BlackBagTricks&message=Hello+Are+you+there?
aim:goim?screenname=BigBoi1881&message=Hello+Are+you+there?
aim:goim?screenname=benjaminbahr&message=Hello+Are+you+there?
aim:goim?screenname=Belace123&message=Hello+Are+you+there?
aim:goim?screenname=badandy1318&message=Hello+Are+you+there?
aim:goim?screenname=Ash1kam&message=Hello+Are+you+there?
aim:goim?screenname=Asdf324tt&message=Hello+Are+you+there?
aim:goim?screenname=ar+naf&message=Hello+Are+you+there?
aim:goim?screenname=ApUzIlLa&message=Hello+Are+you+there?
aim:goim?screenname=anonraider&message=Hello+Are+you+there?
aim:goim?screenname=alkoholikboy&message=Hello+Are+you+there?
aim:goim?screenname=airj3r&message=Hello+Are+you+there?
aim:goim?screenname=aftermath1024&message=Hello+Are+you+there?
aim:goim?screenname=absentdreamerr&message=Hello+Are+you+there?
aim:goim?screenname=45645645&message=Hello+Are+you+there?
aim:goim?screenname=111111&message=Hello+Are+you+there?

Let's show them how it's done! Send a message at dancho.danchev@hush.com to coordinate and discuss! Stay tuned!

Historical OSINT - Dancho Danchev's Media and News Coverage - 2008-2013

Dear blog readers I wanted to take the time and effort and summarize all the currently related news media articles referencing me and my research throughout the period - 2008-2013 and wanted to express my gratitude to everyone who approached me seeking my assistance in an upcoming news article including those who participated in the search for me circa 2010 and I wanted to let everyone know that users interested in approaching me regarding potential news stories including conference presentations and possible threat intell requests can approach me at disruptive.individuals@gmail.com

Stay tuned!

Research and News Articles covering my research and referencing me throughout - 2008:

• Russian hacker 'militia' mobilizes to attack Georgia
• Fraudsters Target Facebook With Phishing Scam 
• Fake Microsoft e-mail contains Trojan virus
• Hackers expand massive IFRAME attack to prime sites
• Hackers infiltrate Google searches
• Hackers expand massive IFrame attack to prime sites
• Hackers knocked Comcast.net offline
• Adobe investigates Flash Player attacks
• High-tech bank robbers phone it in
• Attackers booby-trap searches at top Web sites
• Carpet bombing networks in cyberspace
• Storm worm e-mail says U.S. attacked Iran
• India's underground CAPTCHA-breaking economy
• Domain Name Record Altered to Hack Comcast.net
• Google searchers could end up with a new type of bug
• Ongoing IFrame attack proving difficult to kill
• Hackers expand massive IFRAME attack to prime sites
• Danchev: The small pack Web malware exploitation kit
• Danchev: Massive SQL injection the Chinese way
• CAPTCHAs are dead - new research from Dancho Danchev confirms it
• Hackers infiltrate Google searches
• Massive faux-CNN spam blitz uses legit sites to deliver fake Flash
• Faked CNN spam blitz pushes fake Flash
• Danchev: Anti-fraud site DDOS attack
• Sony PlayStation site victim of SQL-injection attack
• Fake CNN Alert Still Spreading Malware
• Look Ma, I'm on CIA.gov

Research and News Articles covering my research and referencing me throughout - 2009:

• Green Dam exploit in the wild
• “In gaz we trust”: a fake Russian energy company facilitating cybercrime
• Don’t pay your ransom via SMS
• NYT scareware scam linked to click fraud botnet
• Danchev: A crimeware developer's to-do list
• Danchev rained on my scareware campaign
• Is “aggregate-and-forget” the future of cyber-extortion?
• NYT scareware scam linked to click fraud botnet
• Microsoft declares war on 'scareware'
• Don’t pay your ransom via SMS
• Twitter warms up malware filter
• What's really the safest Web Browser?
• With Unrest in Iran, Cyber-attacks Begin
• Zeus bot found using Amazon's EC2 as C&C server

Research and News Articles covering my research and referencing me throughout - 2010:

• Firefox add-on encrypts sessions with Facebook, Twitter
• Watch out for malware with those pretty Mac screensavers
• Months-old Skype vulnerability exploited in the wild
• Danchev: Money mule recruiters
• Cybercrime's bulletproof hosting exposed
• Malware Threatens to Sue BitTorrent Downloaders
• Firefox add-on encrypts sessions with Facebook, Twitter
• Chuck Norris Botnet Karate-chops Routers Hard

Research and News Articles covering my research and referencing me throughout - 2011:

• Kaspersky disputes McAfee's Shady Rat report
• Has EV-SSL Growth Been Slow?
• Report: Vishing Attack Targets Skype Users

Research and News Articles covering my research and referencing me throughout - 2012:

• Fake UPS notices deliver malware
• ZeuS/Zbot Trojan Spread Through Rogue US Airways Email
• New Skype malware threat reported: Poison Ivy
• Five Koobface botnet suspects named by New York Times
• Virtual jihad: How real is the threat?
• Is the death knell sounding for traditional antivirus?
• Can the Nuclear exploit kit dethrone Blackhole?
• Experts split over regulation for bounty-hunting bug sniffers
• Spammers Using Fake YouTube Notifications to Peddle Drugs
• Adele Bests Adderall As Affiliate Spammers Offer Music Downloads
• Bulgarian sleuth unveils botnet operators
• Fake PayPal Emails Distributing Malware
• Web Gang Operating in the Open
• ZeuS/Zbot Trojan Spread Through Rogue US Airways Email
• Buy 500 hacked Twitter accounts for less than a pint
• NBC.com Hacked, Infected With Citadel Trojan

Research and News Articles covering my research and referencing me throughout - 2013:

• How Much Does A Botnet Cost?
• Automated YouTube account generator offered to cyber crooks
• Upgraded Modular Malware Platform Released in Black Market
• Deconstructing the Al-Qassam Cyber Fighters Assault on US Banks
• NBC hack infects visitors in 'drive by' cyberattack
• Bitcoins are being traded for hack tools
• New DIY Google Dorks Based Hacking Tool Released
• Hacking The TDoS Attack
• Mass website hacking tool alerts to dangers of Google dorks
• Cybercrime service automates creation of fake scanned IDs
• Spammers unleash DIY phone number slurping web tool
• Spam email contains malware, not Apple gift card
• APT1, that scary cyber-Cold War gang: Not even China's best
• Mass website hacking tool alerts to dangers of Google dorks
• C&C PHP script for staging DDoS attacks sold on underground forums
• Russian Malware-as-a-Service Offers Up Server Rentals for $240 a Pop
• Java exploit kit sells for $40 per day
• Buggy DIY botnet tool leaks in black market
• New DIY Google Dorks Based Hacking Tool Released
• Botnets for rent, criminal services sold in the underground market
• Spam email contains malware, not Apple gift card

Massive Portfolio of APT (Advanced Persistent Threat) and RAT (Remote Access Tools) Domains Spotted in the Wild - An Analysis

In a world dominated by thousands of currently active APT (Advanced Persistent Threat) campaigns also known as Remote Access Tools (RATs) including trojan horses it's worth pointing out that novice cybercriminals continue relying and actively utilizing a variety of commercial and publicly obtainable DIY (do-it-yourself) Remote Access Tools (RATs) for the purpose of committing cyber espionage and launching malicious and fraudulent cyber espionage themed campaigns targeting thousands of users including companies and nation-state actors.

In this post I'll provide actionable intelligence on some of the most popular RAT (Remote Access Tools) currently utilized for APT (Advanced Persistent Threat) type of nation-state sponsored and tolerated cyber espionage themed campaigns including an in-depth discussion on a massive domain portfolio of currently active C&C server IPs known to have participated in a variety of APT (Advanced Persistent Threat) type of cyber espionage campaigns throughout 2015-2019.

Among the most popular APT (Advanced Persistent Threat) and Remote Access Tools (RATs) releases based on my public and proprietary sensor network remain the following currently obtainable commercial and publicly obtainable tools:

• Casa RAT
• Bandook RAT
• Dark Comet Rat
• Cerberus
• Cybergate
• Blackshades
• Poison Ivy
• Schwarze Sonne RAT
• Syndrome RAT
• Team Viewer
• Y3k RAT
• Snoopy
• 5p00f3r.N$ RAT
• SpyNet
• P. Storrie RAT
• Turkojan Gold
• Bifrost
• Beast
• Shark
• Pain RAT
• xHacker Pro RAT
• Seed RAT
• Optix Pro RAT
• Dark Moon
• NetDevil
• Deeper RAT
• MiniMo RAT
• Alusinus RAT v0.8
• Babylon 1.6.0.0
• Bozok 1.4.3
• BX RAT v1.0
• Cloud Net RAT
• Comet RAT v0.1.4
• Coringa-RAT v0.1
• Crimson 3.0.0
• Crimson RAT 2.2.6
• ctOs 1.3.0.0
• CyberGate v1.01.12
• Dark Comet 5.3
• DarkComet Legacy
• DH Rat 0.3
• D-RAT
• Frutas RAT v0.9
• Greame RAT v1.9
• HAKOPS RAT v2
• Imminent Monitor 3.9.0.0
• Imperium RAT Cracked
• jRat
• jSpy
• jSpy RAT v0.09
• KilerRat V 10.0.0
• L6-RAT Beta
• Maus 2.0b
• Mega RAT 1.5 Beta
• MLRAT
• MQ5 RAT
• NanoCore 1.2.2.0
• NingaliNET v1.1.0.0
• NjRAT 0.7
• njRAT v0.8d By Nasser2012
• njworm
• NovaLite v3.0
• Nuclear RAT 2.1.0
• Orion RAT 0.9 Free
• Pandora RAT V1.1
• Paradox RAT
• Proton 1.1.0.6
• pupy-master
• Poison Ivy
• Quasar 1.1 + Source
• QuasarRAT v1.3.0.0
• Rabbit-Hole Autoit RAT v1.0 Beta 2
• Revenge RAT v0.1
• SkyWyder 2.2
• Spycronic 1.02.1
• Spygate 2.6
• SpyGate-RAT 3.3
• SpyNet 0.7 Public
• Spy-Net v2.6
• Turkojan 4.0 Gold
• ucuL v1.1
• Vantom RAT
• Virus Rat v8.0 Beta
• Xena Rat 2.0
• xRAT 2.0

Related domains and IPs known to have participated in various APT (Advanced Persistent Threat) and Remote Access Tools (RATs) type of malicious and fraudulent campaigns throughout 2015-2019:
hxxp://009boot.ddns.net/
hxxp://104.144.198.115/
hxxp://105.105.104.198/
hxxp://105.105.173.58/
hxxp://105.105.185.105/
hxxp://109.201.189.13/
hxxp://111.221.29.254/
hxxp://115.126.219.31/
hxxp://118.26.141.209/
hxxp://118.26.141.210/
hxxp://122.46.15.164/
hxxp://123unk123.ddns.net/
hxxp://13.124.168.74/
hxxp://130.25.242.66/
hxxp://133katelinn.hopto.org/
hxxp://138.130.206.150/
hxxp://139.162.175.167/
hxxp://141.255.159.3/
hxxp://149.129.133.195/
hxxp://149.3.143.104/
hxxp://151.101.2.110/
hxxp://160.202.163.243/
hxxp://167.108.52.154/
hxxp://167.116.22.242/
hxxp://167.116.32.152/
hxxp://167.116.48.151/
hxxp://167.99.251.51/
hxxp://177.130.49.118/
hxxp://178.54.139.105/
hxxp://179.125.62.162/
hxxp://179.221.42.45/
hxxp://18.218.228.132/
hxxp://180.68.114.205/
hxxp://181.214.55.23/
hxxp://181.46.172.191/
hxxp://181.52.105.187/
hxxp://185.125.205.81/
hxxp://185.125.205.91/
hxxp://185.148.241.58/
hxxp://185.208.211.235/
hxxp://185.209.85.74/
hxxp://185.254.183.115/
hxxp://185.31.161.186/
hxxp://185.56.90.77/
hxxp://185.81.157.24/
hxxp://185.82.216.57/
hxxp://185.84.181.89/
hxxp://186.118.110.209/
hxxp://186.118.111.142/
hxxp://188.165.224.26/
hxxp://188.2.137.168/
hxxp://188.54.182.240/
hxxp://188.54.184.36/
hxxp://188.66.7.124/
hxxp://188.72.104.64/
hxxp://188.83.129.33/
hxxp://189.47.113.180/
hxxp://189.47.114.215/
hxxp://191.101.22.196/
hxxp://192.169.69.25/
hxxp://194.182.73.173/
hxxp://194.5.98.56/
hxxp://197.207.219.206/
hxxp://2.20.242.8/
hxxp://2.21.242.237/
hxxp://201.208.105.81/
hxxp://202.195.210.218/
hxxp://204.44.78.113/
hxxp://211.108.133.241/
hxxp://211.44.166.16/
hxxp://212.129.42.206/
hxxp://212.133.210.232/
hxxp://212.47.247.76/
hxxp://212.7.208.105/
hxxp://212.83.170.126/
hxxp://213.183.58.39/
hxxp://213.208.129.200/
hxxp://217.103.124.136/
hxxp://218.204.141.228/
hxxp://220.124.23.84/
hxxp://23.105.131.162/
hxxp://25.66.198.77/
hxxp://34.211.181.161/
hxxp://35.176.10.40/
hxxp://37.104.186.158/
hxxp://37.115.47.107/
hxxp://41.101.5.34/
hxxp://41.102.235.191/
hxxp://41.58.69.217/
hxxp://41.58.96.58/
hxxp://43.254.134.157/
hxxp://45.76.87.6/
hxxp://46.164.167.42/
hxxp://46.246.5.130/
hxxp://46.246.85.131/
hxxp://5.101.170.159/
hxxp://5.187.49.231/
hxxp://5.188.231.235/
hxxp://5.34.183.64/
hxxp://52.138.216.83/
hxxp://52.87.114.116/
hxxp://56d8a1a6.hopto.org/
hxxp://60.10.0.13/
hxxp://62.235.139.42/
hxxp://63.237.57.222/
hxxp://65.184.25.147/
hxxp://66fmicro.duckdns.org/
hxxp://68.53.163.100/
hxxp://6alexander9.ddns.net/
hxxp://76.73.114.50/
hxxp://77.139.164.191/
hxxp://77.48.28.227/
hxxp://78.12.174.157/
hxxp://78.12.177.32/
hxxp://78.130.176.162/
hxxp://79.134.225.116/
hxxp://81.231.10.43/
hxxp://81.61.79.44/
hxxp://84.151.157.38/
hxxp://85.110.45.5/
hxxp://87.11.97.192/
hxxp://89.134.165.187/
hxxp://90.96.103.203/
hxxp://92.122.53.40/
hxxp://92.222.112.70/
hxxp://94.183.210.219/
hxxp://94.237.28.110/
hxxp://95.100.252.51/
hxxp://95.154.199.21/
hxxp://a5la8y1201.ddns.net/
hxxp://aa123.zapto.org/
hxxp://aaaa5.hopto.org/
hxxp://abdodz.ddns.net/
hxxp://abdou1234.hopto.org/
hxxp://abdulla244.myftp.biz/
hxxp://abidas2018.ddns.net/
hxxp://abo6na.no-ip.org/
hxxp://abrilparadon.duckdns.org/
hxxp://adidas2018.ddns.net/
hxxp://aditrix.ddns.net/
hxxp://adminirq.no-ip.biz/
hxxp://adsfca.duckdns.org/
hxxp://agbero.duckdns.org/
hxxp://ahlanc500.zapto.org/
hxxp://ahmad025.ddns.net/
hxxp://ahmed461.ddns.net/
hxxp://ahmedhero2020.zapto.org/
hxxp://ahmedmhmed4711.ddns.net/
hxxp://ahmedstar123.ddns.net/
hxxp://ahmetabis.duckdns.org/
hxxp://akramhbcl.ddns.net/
hxxp://alaa170.hopto.org/
hxxp://aldiwani.no-ip.biz/
hxxp://alemania.duckdns.org/
hxxp://alger07.ddns.net/
hxxp://ali11.sytes.net/
hxxp://ali123.ddns.net/
hxxp://alicemedrado.no-ip.org/
hxxp://alihacker2018.no-ip.biz/
hxxp://alihazm2017.no-ip.biz/
hxxp://aliking123.ddns.net/
hxxp://alisami.hopto.org/
hxxp://alkal.publicvm.com/
hxxp://almlk.ddns.net/
hxxp://alone.sytes.net/
hxxp://alsha2e.zapto.org/
hxxp://am22am.ddns.net/
hxxp://amana1.duckdns.org/
hxxp://ambush.ddns.net/
hxxp://amerkad19.ddns.net/
hxxp://aminesaflo.hopto.org/
hxxp://amjad.no-ip.org/
hxxp://amma.myftp.biz/
hxxp://ammar906klashnkof.myq-see.com/
hxxp://anahowa.duckdns.org/
hxxp://anamzh.ddns.net/
hxxp://android68.ddns.net/
hxxp://andynox2018.myddns.me/
hxxp://annonymous1921.ddns.net/
hxxp://anonyklax.duckdns.org/
hxxp://anonymato.duckdns.org/
hxxp://anonymous1999.hopto.org/
hxxp://anonymoushora032.ddns.net/
hxxp://aoa.myq-see.com/
hxxp://apatednsnet.duckdns.org/
hxxp://arabyouman.sytes.net/
hxxp://arielpica.ddns.net/
hxxp://asd10.ddns.net/
hxxp://asdaasda.ddns.net/
hxxp://assurancework.ddns.net/
hxxp://avast666.duckdns.org/
hxxp://azeezdeaf1122.ddns.net/
hxxp://azeezdeaf1996.hopto.org/
hxxp://azzaenstp.no-ip.biz/
hxxp://b3d3h3ckd.ddns.net/
hxxp://bachir12345.hopto.org/
hxxp://badnulls.hopto.org/
hxxp://barakat.servegame.com/
hxxp://basyouni4.ddns.net/
hxxp://bbus19.ddns.net/
hxxp://becharakam.ddns.net/
hxxp://bedwipro987.ddns.net/
hxxp://bellevie.duckdns.org/
hxxp://benjamin1996.ddns.net/
hxxp://benjamin1996121.ddns.net/
hxxp://betterlifecommerce.ddns.net/
hxxp://bibich.myftp.biz/
hxxp://bkjy1122334455.ddns.net/
hxxp://blakbass.linkpc.net/
hxxp://bob2030.ddns.net/
hxxp://bobyhack.duckdns.org/
hxxp://brothersjoy.nl/
hxxp://bug000.hopto.org/
hxxp://by-sabotage123.duckdns.org/
hxxp://by900.zapto.org/
hxxp://c.top4top.net/
hxxp://cabbac.ddns.net/
hxxp://caoi111.ddns.net/
hxxp://carding.hopto.org/
hxxp://carrochevere.no-ip.biz/
hxxp://casinonono.ddns.net/
hxxp://cerbere9889.ddns.net/
hxxp://cg.ddns.net/
hxxp://chazun.ddns.net/
hxxp://cheatkogama.ddns.net/
hxxp://chinzo.myftp.biz/
hxxp://chrom.webhop.info/
hxxp://chrome1.hopto.org/
hxxp://chrome2018.zapto.org/
hxxp://civita2.no-ip.biz/
hxxp://claxysme.ddns.net/
hxxp://clay157.no-ip.org/
hxxp://clivoucanada.no-ip.org/
hxxp://clmodding.ddns.net/
hxxp://cobaiadanet.duckdns.org/
hxxp://connectionsdfghhh.myftp.biz/
hxxp://connectionsxxx.ddns.net/
hxxp://cownzhackr.ddns.net/
hxxp://crazy-evil.no-ip.biz/
hxxp://creazionisa.com/
hxxp://cule.ddns.net/
hxxp://dabii.ddns.net/
hxxp://daisy101.ddns.net/
hxxp://darkfag1337.hopto.org/
hxxp://darkmonster255.ddns.net/
hxxp://darkvador.duckdns.org/
hxxp://dataday.no-ip.org/
hxxp://dd00ddee.ddns.net/
hxxp://ddlink2.ddns.net/
hxxp://ddns.catamosky.biz/
hxxp://ddnsrat.ddns.net/
hxxp://deity.ddns.net/
hxxp://delightc.myftp.biz/
hxxp://devsex.ddns.net/
hxxp://dhayan.ddns.net/
hxxp://dinamarca.duckdns.org/
hxxp://dixenweb.ddns.net/
hxxp://dl.dropbox.com/
hxxp://doc.internetdocss.com/
hxxp://doctordido.no-ip.org/
hxxp://dontexe.duckdns.org/
hxxp://dooooox.ddns.net/
hxxp://doublekits.duckdns.org/
hxxp://dr-prohak.myddns.me/
hxxp://duckdns.org/
hxxp://duconunun.ddns.net/
hxxp://dzad.ddns.net/
hxxp://ecksdi.ddns.net/
hxxp://ejiroprecious.ddns.net/
hxxp://elmagic2.ddns.net/
hxxp://emad1300.ddns.net/
hxxp://emad1987.myq-see.com/
hxxp://emilylattaa4111.serveftp.com/
hxxp://empezarll.mywire.org/
hxxp://ena.sytes.net/
hxxp://enero.duckdns.org/
hxxp://enghackernoip.ddns.net/
hxxp://essam554.hopto.org/
hxxp://essssssam.ddns.net/
hxxp://ethicalhacking.myftp.biz/
hxxp://evilgseguiyerrt.ddns.net/
hxxp://eyocbp.duckdns.org/
hxxp://ezelogs.ddns.net/
hxxp://fadiana1995.ddns.net/
hxxp://fanddes.ddns.net/
hxxp://fbscam.myftp.biz/
hxxp://fd8a8df5.ddns.net/
hxxp://felestine.hopto.org/
hxxp://fidrali.no-ip.biz/
hxxp://fileserv004.ddns.net/
hxxp://fitnesswebsite.duckdns.org/
hxxp://fo2sha1.myq-see.com/
hxxp://focariongorda.duckdns.org/
hxxp://fortoriko.ddns.net/
hxxp://freelancertupidor.myftp.org/
hxxp://freetools.hldns.ru/
hxxp://frsyescd.ddns.net/
hxxp://fsoc.ddns.net/
hxxp://fudman.duckdns.org/
hxxp://fw2.sshreach.me/
hxxp://gamezerer.ddns.net/
hxxp://gangshitxd.bounceme.net/
hxxp://ggwp123.ddns.net/
hxxp://ghanaandco.sytes.net/
hxxp://giannigianni.ddns.net/
hxxp://giustini.ddns.net/
hxxp://glendyling.ddns.net/
hxxp://gobali.hopto.org/
hxxp://gogotest-46542.portmap.io/
hxxp://goodattack.ddns.net/
hxxp://googlechromehost.ddns.net/
hxxp://googlehotspotxxxx.no-ip.biz/
hxxp://gorel1004.ze.am/
hxxp://gr44.ddns.net/
hxxp://grrrfggfgfg.ddns.net/
hxxp://gujulio.duckdns.org/
hxxp://gustavomaxwell.ddns.net/
hxxp://gvgvgv.ddns.net/
hxxp://hack2rio.hopto.org/
hxxp://hacker-soft.ddns.net/
hxxp://hackingloading157.ddns.net/
hxxp://hackrooo.ddns.net/
hxxp://hahwa0404.ddns.net/
hxxp://haider2002.ddns.net/
hxxp://haider2121.hopto.org/
hxxp://hakanonymos4.ddns.net/
hxxp://hakerbatna.ddns.net/
hxxp://hakerz123.ddns.net/
hxxp://hakoukh40.ddns.net/
hxxp://hakrbatna.hopto.org/
hxxp://hakrdz111.serveftp.com/
hxxp://haniameer.hopto.org/
hxxp://haram222.ddns.net/
hxxp://hassan360.ddns.net/
hxxp://haxorspamer.hopto.org/
hxxp://hellohello.ddns.net/
hxxp://hexycz.ddns.net/
hxxp://heyklog.duckdns.org/
hxxp://hh11hh11.ddns.net/
hxxp://hhhh1122.no-ip.biz/
hxxp://hicham9risa.duckdns.org/
hxxp://hinou.ddns.net/
hxxp://hoang2667.zapto.org/
hxxp://horizontg.ddns.net/
hxxp://host355.casacam.net/
hxxp://host775544.ddns.net/
hxxp://housam.linkpc.net/
hxxp://htlrnjrat.ddns.net/
hxxp://hxxp/
hxxp://hycotanas.ddns.net/
hxxp://hykedscams.ddns.net/
hxxp://hyoof10.ddns.net/
hxxp://iamn1.ddns.net/
hxxp://ichbinw1337.ddns.net/
hxxp://id7oomz.ddns.net/
hxxp://idontratpeople.ddns.net/
hxxp://igi789.ddns.net/
hxxp://iheuche009.hopto.org/
hxxp://infectiousvision1.ddns.net/
hxxp://inohackyouxd.hopto.org/
hxxp://ionutsef2.ddns.net/
hxxp://ippoofer.ddns.net/
hxxp://iraq112.ddns.net/
hxxp://iska123.ddns.net/
hxxp://issa19900.ddns.net/
hxxp://izan.hopto.org/
hxxp://iziiiiii.hopto.org/
hxxp://j0e3gipuv.hopto.org/
hxxp://j0s3d4rk.ddns.net/
hxxp://j1us3tan5stu8pid.ddns.net/
hxxp://jaaav.ddns.net/
hxxp://jakzaz555.ddns.net/
hxxp://jal.ze.am/
hxxp://japontarzi.duckdns.org/
hxxp://jaxboss.publicvm.com/
hxxp://jerry331990.jerrydns.pw/
hxxp://joker1.linkpc.net/
hxxp://jpaul.duckdns.org/
hxxp://junpio70.hopto.org/
hxxp://jutt9244.myftp.biz/
hxxp://k10e.ddns.net/
hxxp://kaboos99hacker.linkpc.net/
hxxp://kaka200222.ddns.net/
hxxp://kamalyousry1213.ddns.net/
hxxp://kaneki1997.ddns.net/
hxxp://karambaker.zapato.org/
hxxp://karamgamal878.ddns.net/
hxxp://karwan.ddns.net/
hxxp://kawaja.hopto.org/
hxxp://keypay033.dynu.net/
hxxp://khan2012.no-ip.biz/
hxxp://killcon.sytes.net/
hxxp://killuakiller.ddns.net/
hxxp://kingdomro.viewdns.net/
hxxp://kinglord22.ddns.net/
hxxp://kitinho.ddns.net/
hxxp://klabster82nulll.ddns.net/
hxxp://kofia1230.ddns.net/
hxxp://kok22.ddns.net/
hxxp://koko12.myftp.biz/
hxxp://kolabola.linkpc.net/
hxxp://kor1.zapto.org/
hxxp://koutafa.ddns.net/
hxxp://ksa3651.ddns.net/
hxxp://ksk7.gotdns.ch/
hxxp://ksks.gotdns.ch/
hxxp://lasourcetest.ddns.net/
hxxp://layane.ddns.net/
hxxp://ldouab.ddns.net/
hxxp://leehenry1973.ddns.net/
hxxp://lezharlezhar.no-ip.info/
hxxp://libraries.ddns.net/
hxxp://lig1.serveblog.net/
hxxp://likenetstatlol.ddns.net/
hxxp://lillliiil.ddns.net/
hxxp://lilop.ddns.net/
hxxp://logarsogar.hopto.org/
hxxp://loginsecure.mywire.org/
hxxp://lolo.no-ip.info/
hxxp://lotsh.ddns.net/
hxxp://loveayada.zapto.org/
hxxp://lovejoks.no-ip.biz/
hxxp://m4grinexploit.ddns.net/
hxxp://maharek123456.ddns.net/
hxxp://mahone11.ddns.net/
hxxp://mainjhin.duckdns.org/
hxxp://mal3on.ddns.net/
hxxp://malak9797.ddns.net/
hxxp://malakigoy.ddns.net/
hxxp://mamoon.ddns.net/
hxxp://manou.hopto.org/
hxxp://maravilhahoteis.ddns.net/
hxxp://maroxvi.ddns.net/
hxxp://maxime10.ddns.net/
hxxp://maxpayne9.ddns.net/
hxxp://mdformo.ddns.net/
hxxp://medomshakel.ddns.net/
hxxp://meemo1233m.ddns.net/
hxxp://mekawy.hopto.org/
hxxp://mercymorrgan.wm01.to/
hxxp://meso.myftp.biz/
hxxp://mgnoongmz.ddns.net/
hxxp://mhmod.ddns.net/
hxxp://micr0s0ft.duckdns.org/
hxxp://microsoft-ipv6.duckdns.org/
hxxp://microsoft171.duckdns.org/
hxxp://microsoft24515062.serveftp.com/
hxxp://microsoftddns.ddns.net/
hxxp://microsoftserver.serveftp.com/
hxxp://microsoftsession.linkpc.net/
hxxp://microsoftupdates.pw/
hxxp://midoalhashmi.ddns.net/
hxxp://midoumed.ddns.net/
hxxp://mikas.ddns.net/
hxxp://minergate.sytes.net/
hxxp://mixterix.duckdns.org/
hxxp://mjlosker.hopto.org/
hxxp://mogofockerdu94.chickenkiller.com/
hxxp://mohamed1234.no-ip.biz/
hxxp://mohamedahmed123.ddns.net/
hxxp://mohammad2010.no-ip.biz/
hxxp://mohand8080.ddns.net/
hxxp://mongtrelgo.hopto.org/
hxxp://moonwork93.hopto.org/
hxxp://moskando.ddns.net/
hxxp://mouqgsud.duckdns.org/
hxxp://mrfmr123.ddns.net/
hxxp://mtateste.duckdns.org/
hxxp://mujo.ddns.net/
hxxp://mum14.hopto.org/
hxxp://myhostoftuptup.servebeer.com/
hxxp://mylifegod.ddns.net/
hxxp://myloves.publicvm.com/
hxxp://mynamechucknorris.ddns.net/
hxxp://myno.hopto.org/
hxxp://na20022a.ddns.net/
hxxp://naralam.ddns.net/
hxxp://nass12.ddns.net/
hxxp://nestonesto.duckdns.org/
hxxp://nettcpportsharing.serveftp.com/
hxxp://newanonjoe.ddns.net/
hxxp://nfadil.myq-see.com/
hxxp://ngrok.xiaotk.tk/
hxxp://night.dynu.net/
hxxp://nippon.hopto.org/
hxxp://nixonhabbo.duckdns.org/
hxxp://njgypto.linkpc.net/
hxxp://njhost.hopto.org/
hxxp://njrat05.ddns.net/
hxxp://njratftw123.hopto.org/
hxxp://nkgclaudinei.ddns.net/
hxxp://nkgclaudinei.duckdns.org/
hxxp://nkilishinkili.hopto.org/
hxxp://nmr-syria.ddns.net/
hxxp://nonnikcmg.duckdns.org/
hxxp://notelog11.ddns.net/
hxxp://notimposible.hopto.org/
hxxp://nu.mmafan.biz/
hxxp://nuevochance1.duckdns.org/
hxxp://nuttentool.ddns.net/
hxxp://nyjora.myq-see.com/
hxxp://olfi.zapto.org/
hxxp://omotogbo.ddns.net/
hxxp://onixoino.ddns.net/
hxxp://openthetcheka.ddns.net/
hxxp://opitalia.ddns.net/
hxxp://optimus1.ddns.net/
hxxp://oriod445se.hopto.org/
hxxp://oryano.ddns.net/
hxxp://osiman.cf/
hxxp://osmanlimparatorlugu.duckdns.org/
hxxp://othmane5.ddns.net/
hxxp://ozill619.ddns.net/
hxxp://ozone.myftp.org/
hxxp://pablitoescobar.duckdns.org/
hxxp://paladins005.ddns.net/
hxxp://palestine2014.zapto.org/
hxxp://paoduenti.duckdns.org/
hxxp://patakos0010.ddns.net/
hxxp://pazparatodos.duckdns.org/
hxxp://pcctks.ddns.net/
hxxp://pikhateamspeak.duckdns.org/
hxxp://pistola404.duckdns.org/
hxxp://plo.ddns.info/
hxxp://pm2bitcoin.com/
hxxp://poderxtremo.duckdns.org/
hxxp://port5.ddns.net/
hxxp://portnj.ddns.net/
hxxp://ppooiimmnnbb00.ddns.net/
hxxp://predatorshot.ddns.net/
hxxp://prime2018.duckdns.org/
hxxp://probityjrat5.duckdns.org/
hxxp://proemepror.ze.am/
hxxp://proemperor.ze.am/
hxxp://projecttestingforedu.chickenkiller.com/
hxxp://prorms.ddns.net/
hxxp://provafood.ddns.net/
hxxp://prrrbrrrfrrr.myftp.biz/
hxxp://pwnedbydefalt.ddns.net/
hxxp://q3alkhater123.ddns.net/
hxxp://qqwweerr.ddns.net/
hxxp://queimaaivagaba.ddns.net/
hxxp://quickmessage.io/
hxxp://qwert.ddns.net/
hxxp://qwertardormad1223.ddns.net/
hxxp://qwetyu.hopto.org/
hxxp://rachid061574.hopto.org/
hxxp://racikelo.ddns.net/
hxxp://rainbow6.ddns.net/
hxxp://ramadan.mywire.org/
hxxp://ramzimbacscay.hopto.org/
hxxp://raramimi123.ddns.net/
hxxp://rat24695.ddns.net/
hxxp://rattatata.ddns.net/
hxxp://rattinguy.ddns.net/
hxxp://realhacking2018.3utilities.com/
hxxp://redereynol.ddns.net/
hxxp://redwatchlive001.ddns.net/
hxxp://renanzinho2411.ddns.net/
hxxp://resser2020.hopto.org/
hxxp://rezallta.ddns.net/
hxxp://riad123.ddns.net/
hxxp://riazi312015.ddns.net/
hxxp://rida9949.ddns.net/
hxxp://ririroro123.ddns.net/
hxxp://romania23.zapto.org/
hxxp://romany14.ddns.net/
hxxp://ruleshack.ddns.net/
hxxp://rumpa70.ddns.net/
hxxp://rzkfofo.no-ip.org/
hxxp://sa123re.no-ip.org/
hxxp://sa7er-hacker.ddns.net/
hxxp://sa7er-hackre.ddns.net/
hxxp://sadosaykodz1.ddns.net/
hxxp://sadsadsad.ddns.net/
hxxp://saidafrentesatanas.ddns.net/
hxxp://saif321.ddns.net/
hxxp://saifer2121.myftp.biz/
hxxp://sakagiller.com/
hxxp://salahjra.ddns.net/
hxxp://salehroot.linkpc.net/
hxxp://salma.ddns.net/
hxxp://samfam.pdns.cz/
hxxp://samops.ddns.net/
hxxp://sapiklar.duckdns.org/
hxxp://sare.myq-see.com/
hxxp://saso0.myftp.org/
hxxp://savaki.duckdns.org/
hxxp://sayedkastilo11.hopto.org/
hxxp://scviroos.bounceme.net/
hxxp://sdafff.no-ip.biz/
hxxp://secureutility.redirectme.net/
hxxp://securit.linkpc.net/
hxxp://secutit.linkpc.net/
hxxp://sefrou20.ddns.net/
hxxp://seifrastabia.no-ip.biz/
hxxp://semonsemon.zapto.org/
hxxp://serverclean.hopto.org/
hxxp://serveursam.hopto.org/
hxxp://serviceonline.duckdns.org/
hxxp://servicepcinfo.myddns.rocks/
hxxp://sexyas.ddns.net/
hxxp://shadowhakar41.ddns.net/
hxxp://shangri027.ddns.net/
hxxp://shemzh.ddns.net/
hxxp://shigra.sytes.net/
hxxp://shodann.ddns.net/
hxxp://shore.kozow.com/
hxxp://shytangz1.ddns.net/
hxxp://sidosido-crb.hopto.org/
hxxp://sikomoto.onthewifi.com/
hxxp://silent-kira.no-ip.info/
hxxp://sjad1995.myftp.biz/
hxxp://skullman.duckdns.org/
hxxp://slar.duckdns.org/
hxxp://smffuked.ddns.net/
hxxp://smox1111.ddns.net/
hxxp://smyle42.ddns.net/
hxxp://snipere3131.ddns.net/
hxxp://soso7.myq-see.com/
hxxp://splashnet.ddns.net/
hxxp://ssed.ddns.net/
hxxp://sskizz.ddns.net/
hxxp://ssl-virustotal.com/
hxxp://ssss22.ddns.net/
hxxp://stanley10.linkpc.net/
hxxp://stub.ignorelist.com/
hxxp://sub2.qaysarpizzajo.xyz/
hxxp://suchfamily.eu/
hxxp://sucka.duckdns.org/
hxxp://sugesu.ddns.net/
hxxp://svchost101.ddns.net/
hxxp://svhosted.zapto.org/
hxxp://sys11.ddns.net/
hxxp://systemm.ddns.net/
hxxp://systemx.hopto.org/
hxxp://takethatshit.ddns.net/
hxxp://tala1234.zapto.org/
hxxp://target81.ddns.net/
hxxp://tata508.ddns.net/
hxxp://tbmh.ddns.net/
hxxp://teleporthack.ddns.net/
hxxp://test1fg.ddns.net/
hxxp://the-don187.publicvm.com/
hxxp://thefuturisus.ddns.net/
hxxp://thiagohora.hopto.org/
hxxp://tomhilker024.ddns.net/
hxxp://top2.alqaysarpizza.xyz/
hxxp://topwiko.ddns.net/
hxxp://tossonat.ddns.net/
hxxp://total-virus.myq-see.com/
hxxp://trabalhoaaa.ddns.net/
hxxp://trasatlis.sytes.net/
hxxp://tsdn.linkpc.net/
hxxp://ttmglaz.ddns.net/
hxxp://ture-free.ddns.net/
hxxp://turlututu.zapto.org/
hxxp://tutobaixei.ddns.net/
hxxp://unificaequatorial.ddns.net/
hxxp://unknown277.ddns.net/
hxxp://updatefacebook.serveblog.net/
hxxp://vam22.ddns.net/
hxxp://vantomrat1133.ddns.net/
hxxp://vendeto.hopto.org/
hxxp://vice.hopto.org/
hxxp://videntets3.ddns.net/
hxxp://viewi.publicvm.com/
hxxp://vikvik.duckdns.org/
hxxp://warda73.no-ip.biz/
hxxp://wazy1010.ddns.net/
hxxp://webconn.ddns.net/
hxxp://wecollect.duckdns.org/
hxxp://wertyuio.ddns.net/
hxxp://westshark.ddns.net/
hxxp://wiindows.myvnc.com/
hxxp://windown7service.ddns.net/
hxxp://windowslogon.ddns.net/
hxxp://windowsuport.duckdns.org/
hxxp://winkwink.duckdns.org/
hxxp://winserver.zapto.org/
hxxp://woocum.blogsyte.com/
hxxp://wsoo.ddns.net/
hxxp://wtfwindows.myftp.biz/
hxxp://wymeserver777.ddns.net/
hxxp://xaker555.no-ip.org/
hxxp://xfxf.ddns.net/
hxxp://xnxx44.ddns.net/
hxxp://xpznrt2.ddns.net/
hxxp://xsara12.dnnq.net/
hxxp://xtrmmarzonuevo.duckdns.org/
hxxp://xtyoservices.ddns.net/
hxxp://y9.ddns.net/
hxxp://yasircf.hopto.org/
hxxp://yazhagal4246.ddns.net/
hxxp://yojen0120.myddns.me/
hxxp://youfuckednow.ddns.net/
hxxp://younessp.ddns.net/
hxxp://youssefelmi.ddns.net/
hxxp://youtubersxd.ddns.net/
hxxp://yurmaufat.ddns.net/
hxxp://z8gamescf.ddns.net/
hxxp://zayd506.ddns.net/
hxxp://zebircp.duckdns.org/
hxxp://zef.bounceme.net/
hxxp://zekorap623.ddns.net/
hxxp://zerokart.kro.kr/
hxxp://zikokoko.ddns.net/
hxxp://zkthabani.hopto.org/
hxxp://zohirsenia.ddns.net/
hxxp://zueirasemlimites.duckdns.org/
hxxp://zzxxcc2018.hopto.org/
hxxp://103.21.117.143/
hxxp://103.38.252.63/
hxxp://103.40.163.55/
hxxp://103.44.145.245/
hxxp://104.238.176.9/
hxxp://105.101.151.77/
hxxp://105.108.35.56/
hxxp://105.199.18.240/
hxxp://106.51.163.232/
hxxp://108.61.211.219/
hxxp://109.225.178.41/
hxxp://109.236.94.121/
hxxp://109.73.68.114/
hxxp://111.72.167.127/
hxxp://115.159.125.47/
hxxp://115.28.173.37/
hxxp://117.32.216.117/
hxxp://120.25.150.91/
hxxp://121.147.18.158/
hxxp://123.207.232.79/
hxxp://123456789123456789.myftp.biz/
hxxp://13.65.194.5/
hxxp://1337ace.ddns.net/
hxxp://1349874791.gnway.cc/
hxxp://137.0.0.1/
hxxp://138.122.118.154/
hxxp://139.199.187.28/
hxxp://14.222.182.50/
hxxp://141.255.144.72/
hxxp://141.255.148.161/
hxxp://141.255.150.159/
hxxp://141.255.159.49/
hxxp://144.48.242.221/
hxxp://1488.sytes.net/
hxxp://151.246.230.21/
hxxp://151.247.143.125/
hxxp://151.248.126.183/
hxxp://151.72.17.61/
hxxp://156.206.211.12/
hxxp://159asd.duckdns.org/
hxxp://176.42.111.248/
hxxp://177mu.cn/
hxxp://178.74.111.106/
hxxp://181.143.118.164/
hxxp://183.82.99.133/
hxxp://185.32.221.23/
hxxp://185.82.220.152/
hxxp://186.84.216.126/
hxxp://187.180.186.181/
hxxp://188.166.76.144/
hxxp://188.215.131.47/
hxxp://188.24.119.27/
hxxp://188.3.13.98/
hxxp://189.174.125.60/
hxxp://190.240.24.2/
hxxp://192.137.0.15/
hxxp://192.248.32.193/
hxxp://192.92.42.25/
hxxp://197.2.81.35/
hxxp://197.35.134.69/
hxxp://197.48.183.72/
hxxp://198.144.106.135/
hxxp://1987omid.ddns.net/
hxxp://1fon1.ddns.net/
hxxp://1m4962f897.iok.la/
hxxp://2.191.186.145/
hxxp://2.236.40.82/
hxxp://2.25.171.244/
hxxp://201.156.140.218/
hxxp://201.157.144.53/
hxxp://203.189.232.237/
hxxp://211.162.52.205/
hxxp://213.136.83.173/
hxxp://213.183.58.40/
hxxp://213.244.123.94/
hxxp://219.235.0.93/
hxxp://22134520.ddns.net/
hxxp://222.168.1.2/
hxxp://222.79.227.93/
hxxp://27.198.135.116/
hxxp://2715729.vicp.net/
hxxp://31.146.202.169/
hxxp://31.210.117.132/
hxxp://34.208.211.52/
hxxp://35.161.238.10/
hxxp://37.114.212.119/
hxxp://37.115.170.240/
hxxp://37.152.166.4/
hxxp://37.16.139.86/
hxxp://37.239.8.89/
hxxp://37.254.193.172/
hxxp://39.43.231.228/
hxxp://41.226.168.63/
hxxp://41.38.56.81/
hxxp://45.126.124.155/
hxxp://46.150.252.235/
hxxp://46.166.134.149/
hxxp://46.4.255.98/
hxxp://5.135.127.183/
hxxp://5.189.137.186/
hxxp://5.222.66.57/
hxxp://5.222.70.95/
hxxp://5.234.240.27/
hxxp://5.237.98.77/
hxxp://5107b712.all123.net/
hxxp://52.193.97.24/
hxxp://5701c196.123nat.com/
hxxp://58.213.154.197/
hxxp://61.153.104.113/
hxxp://66.70.198.243/
hxxp://6gh.noip.me/
hxxp://726627.duckdns.org/
hxxp://77.171.37.46/
hxxp://77.81.197.144/
hxxp://79.137.223.139/
hxxp://79.153.52.235/
hxxp://79649759.ddns.net/
hxxp://7daysky.in.3322.org/
hxxp://80.136.103.51/
hxxp://80.59.208.237/
hxxp://80.82.65.85/
hxxp://84.241.6.106/
hxxp://85.107.115.16/
hxxp://88.150.149.91/
hxxp://88.228.83.160/
hxxp://90.16.206.207/
hxxp://91.109.22.5/
hxxp://93.104.213.217/
hxxp://93.169.247.218/
hxxp://94.212.118.115/
hxxp://95.173.240.117/
hxxp://96750513.ddns.net/
hxxp://9949291099.hopto.org/
hxxp://a.tomx.xyz/
hxxp://a1b2c3.hopto.org/
hxxp://aagaro.ddns.net/
hxxp://aasxzxdsc12324.no-ip.biz/
hxxp://abarouter.ddns.net/
hxxp://abbaass313.hopto.org/
hxxp://abbaass3132.hopto.org/
hxxp://abcccabccab.ddns.net/
hxxp://abderrahmane16.hopto.org/
hxxp://abdo099.ddns.net/
hxxp://abdobacha05.ddns.net/
hxxp://abdou16.hopto.org/
hxxp://abdouoahmed.ddns.net/
hxxp://abduls0821.myddns.me/
hxxp://abinova.ddns.net/
hxxp://abosaoys881.duia.us/
hxxp://abs3nt.ddns.net/
hxxp://achrafzouina.zapto.org/
hxxp://ad15.hopto.org/
hxxp://adelxxbx.no-ip.biz/
hxxp://adesja1337.no-ip.biz/
hxxp://adlin.duckdns.org/
hxxp://adobflash.hopto.org/
hxxp://aerror.no-ip.biz/
hxxp://ahag3ld1.ddns.net/
hxxp://ahmdiand-wj3.ddns.net/
hxxp://ahmed12345.hoptp.org/
hxxp://ahmed2012.dynu.com/
hxxp://ahmed90011912.ddns.net/
hxxp://ahmedmidoegypt.hopto.org/
hxxp://ahomdalhomd42.hopto.org/
hxxp://ala6a.no-ip.biz/
hxxp://alaajb.zapto.org/
hxxp://alaauy.ddns.net/
hxxp://alabama192837.no-ip.org/
hxxp://alanbkey.no-ip.org/
hxxp://alarr2012ab.myftp.biz/
hxxp://albash2222.ddns.net/
hxxp://ali2627.ddns.net/
hxxp://ali7070.ddns.net/
hxxp://aliboxboxbox.hopto.org/
hxxp://alkingahmed555.ddns.net/
hxxp://alldebrid.duckdns.org/
hxxp://allforfree.game-host.org/
hxxp://alpheron.duckdns.org/
hxxp://alzintani.ddns.net/
hxxp://amarok58.no-ip.biz/
hxxp://amelwafaw.ddns.net/
hxxp://aminamadani16.hopto.org/
hxxp://aminbatna31.ddns.net/
hxxp://aminecity.ddns.net/
hxxp://aminrahimzadeh.no-ip.org/
hxxp://amiraliam.ddns.net/
hxxp://amirhosein0074.ddns.net/
hxxp://ammaar938.ddns.net/
hxxp://ampala.ddns.net/
hxxp://amran-pc.no-ip.biz/
hxxp://amrozamrozamroz.hopto.org/
hxxp://amrsamy222.ddns.net/
hxxp://amsdj.hopto.org/
hxxp://an.droidsuper.su/
hxxp://anawebs.ddns.net/
hxxp://andr01d.zapto.org/
hxxp://andrew999.ipnodns.ru/
hxxp://andriod91.ddns.net/
hxxp://andro0161.no-ip.info/
hxxp://andro123.duckdns.org/
hxxp://androduck.duckdns.org/
hxxp://android.no-ip.org/
hxxp://android1385.ddns.net/
hxxp://androidalbums.ddns.net/
hxxp://androidan.ddns.net/
hxxp://androidbra.duckdns.org/
hxxp://androidfdl.ddns.net/
hxxp://androidrat21.ddns.net/
hxxp://androidsafe.ddns.net/
hxxp://androidtest0.ddns.net/
hxxp://androidtool.ddns.net/
hxxp://androidupdate.ddns.net/
hxxp://androjak.myftp.org/
hxxp://androrat1226.ddns.net/
hxxp://androrat22.ddns.net/
hxxp://androratbtas.no-ip.info/
hxxp://androratvirgin.duckdns.org/
hxxp://andver18.no-ip.biz/
hxxp://anishmishra66.ddns.net/
hxxp://anito.ddns.net/
hxxp://anon008.ddns.net/
hxxp://anondz97.ddns.net/
hxxp://anonimousdre180.ddns.net/
hxxp://anonvirus.ddns.net/
hxxp://anonymo9s.ddns.net/
hxxp://apkhamza.ddns.net/
hxxp://applecenikosmos.hldns.ru/
hxxp://appsystem.ddns.net/
hxxp://aqwkdo1.no-ip.biz/
hxxp://ariaaalikazm.ddns.net/
hxxp://arondograu.ddns.net/
hxxp://asasasas22.ddns.net/
hxxp://asdbh11.ddns.net/
hxxp://askinder.hopto.org/
hxxp://astro3.hopto.org/
hxxp://atsizinoglu.duckdns.org/
hxxp://auc.dlinkddns.com/
hxxp://awir-fb.sytes.net/
hxxp://axxz2017.ddns.net/
hxxp://ayadd99.ddns.net/
hxxp://ayham11.hopto.org/
hxxp://azerboys.hopto.org/
hxxp://azert123.ddns.net/
hxxp://azerty.hopto.org/
hxxp://aziza.sytes.net/
hxxp://baby.webhop.me/
hxxp://badguy.myq-see.com/
hxxp://bahar2017.no-ip.org/
hxxp://bahoom.no-ip.biz/
hxxp://banis.hopto.org/
hxxp://bannding.ddns.net/
hxxp://bapforall.ddns.net/
hxxp://barbari.ddns.net/
hxxp://batterysaver.3utilities.com/
hxxp://behnamhack.ddns.net/
hxxp://beijg.3322.org/
hxxp://bensphonetracker.ddns.net/
hxxp://bitoandroid.no-ip.info/
hxxp://bl4ckh0t.ddns.net/
hxxp://bl4ckhatjoker.ddns.net/
hxxp://black1990.ddns.net/
hxxp://blackghostdc.duckdns.org/
hxxp://blackghostorg.ddns.net/
hxxp://blind1234.ddns.net/
hxxp://boinserver12.no-ip.info/
hxxp://bopress.ddns.net/
hxxp://boubou271.ddns.net/
hxxp://brasilteamop.ddns.net/
hxxp://brousse16.ddns.net/
hxxp://bwaleez.hopto.org/
hxxp://camper92.ddns.net/
hxxp://carapuce-2015.no-ip.biz/
hxxp://cccamd.myftp.biz/
hxxp://cerdofile.ddns.net/
hxxp://chabar.ddns.net/
hxxp://chacal00.hopto.org/
hxxp://changyu231.ddns.net/
hxxp://chrisfo.no-ip.org/
hxxp://city55.hopto.org/
hxxp://cjbks0u0.no-ip.org/
hxxp://clashdroid.no-ip.biz/
hxxp://clayhost.hopto.org/
hxxp://comet.myftp.org/
hxxp://comsurogate.noip.me/
hxxp://coxiamigo.myq-see.com/
hxxp://createmeon.zapto.org/
hxxp://cricbot.no-ip.info/
hxxp://crisprueba.ddns.net/
hxxp://cyberandro.duckdns.org/
hxxp://cyberbit.ddns.net/
hxxp://cybercrysis.ddns.net/
hxxp://dalibob12.ddns.net/
hxxp://damndamn.ddns.net/
hxxp://dangerlove.no-ip.biz/
hxxp://danialdelta.ddns.net/
hxxp://danialmostafaei.no-ip.biz/
hxxp://daniele3814.ddns.net/
hxxp://danielrats.ddns.net/
hxxp://dantehack.zapto.org/
hxxp://daroedkak.no-ip.biz/
hxxp://darweshfis.no-ip.org/
hxxp://datadownloader.ddns.net/
hxxp://dddeee.ddns.net/
hxxp://ddns.net/
hxxp://deep1234.ddns.net/
hxxp://dellearm.ddns.net/
hxxp://dendroid.hopto.org/
hxxp://denishul.hldns.ru/
hxxp://detlef-gmbh.tk/
hxxp://dexonic.duckdns.org/
hxxp://diceedicee.ddns.net/
hxxp://didi03.duckdns.org/
hxxp://dionis.ddns.net/
hxxp://djack1.zapto.org/
hxxp://dkms.ddns.net/
hxxp://dltelegram.ddns.net/
hxxp://dodotototata.publicvm.com/
hxxp://dogecoinspeed.zapto.org/
hxxp://domeer-android.ddns.net/
hxxp://domira.ddns.net/
hxxp://draagon.ddns.net/
hxxp://dragonhkr1.myftp.biz/
hxxp://drhack.hopto.org/
hxxp://driodrac.ddns.net/
hxxp://droid.fagdns.com/
hxxp://droid.freedynamicdns.org/
hxxp://droidcraftismelmao.ddns.net/
hxxp://droidge.ddns.net/
hxxp://droidhost.zapto.org/
hxxp://droidjaack.zapto.org/
hxxp://droidjack.hopto.org/
hxxp://droidjack1.sytes.net/
hxxp://droidjack121.ddns.net/
hxxp://droidjack2137.hopto.org/
hxxp://droidjack228.ddns.net/
hxxp://droidjack2333.ddns.net/
hxxp://droidjack258.bounceme.net/
hxxp://droidjackdns.duckdns.org/
hxxp://droidjackiam.ddnsking.com/
hxxp://droidjackisgodly.ddns.net/
hxxp://droidjackkk.sytes.net/
hxxp://droidjackv5.ddns.net/
hxxp://droidjock.myftp.biz/
hxxp://droidmosa.ddns.net/
hxxp://droidnigga.zapto.org/
hxxp://droidspy.zapto.org/
hxxp://droidss.noip.me/
hxxp://droy.zapto.org/
hxxp://drrazikhan.no-ip.info/
hxxp://duckem.duckdns.org/
hxxp://ducmanhhoangtran.ddns.net/
hxxp://duke5010.duckdns.org/
hxxp://duyguseliberkay.no-ip.biz/
hxxp://dzhacker16.ddns.net/
hxxp://e777kx47.ddns.net/
hxxp://egytiger.myftp.org/
hxxp://ehsanmaali.ddns.net/
hxxp://ehsanmaali3.ddns.net/
hxxp://eldiablo.no-ip.biz/
hxxp://elisou19.ddns.net/
hxxp://emme.no-ip.biz/
hxxp://engnngns.duckdns.org/
hxxp://engrid.no-ip.biz/
hxxp://equisde.ddns.net/
hxxp://erikatersptra.ddns.net/
hxxp://esharj.ddns.net/
hxxp://eslam87.hopto.org/
hxxp://essalhi2047.hopto.org/
hxxp://euquerotchu.ddns.net/
hxxp://explosif.zapto.org/
hxxp://extgta.tk/
hxxp://facebook2ww290.ddns.net/
hxxp://facrbook.redirectme.net/
hxxp://fadisesubaih.ddns.net/
hxxp://farzan.ddns.net/
hxxp://fateh2017.ddns.net/
hxxp://fati43030.no-ip.biz/
hxxp://fatiha29.ddns.net/
hxxp://fenon158.ddns.net/
hxxp://ferzo1881.duckdns.org/
hxxp://fifi147fifi.no-ip.biz/
hxxp://firenzonne.com/
hxxp://firsthost.ddns.net/
hxxp://flashplayerxx.no-ip.org/
hxxp://florian-pc.ksueyuj0mtxpt6gn.myfritz.net/
hxxp://free1.neiwangtong.com/
hxxp://freepalestine.ddns.net/
hxxp://fsocfsoc.ddns.net/
hxxp://fukeyou12.myftp.biz/
hxxp://gaabar.hopto.org/
hxxp://galau.ddns.net/
hxxp://gemini85.hopto.org/
hxxp://gentel901.no-ip.org/
hxxp://geocheats2.eu/
hxxp://gert44.duckdns.org/
hxxp://ggwasgeht.ddns.net/
hxxp://ghanim2017.ddns.net/
hxxp://ghanou1603.no-ip.info/
hxxp://gmailss11.hopto.org/
hxxp://goggle.sytes.net/
hxxp://gold5000.ddns.net/
hxxp://gooboom.no-ip.biz/
hxxp://good.myddns.me/
hxxp://goog2.no-ip.biz/
hxxp://googlead.publicvm.com/
hxxp://googles.servemp3.com/
hxxp://googleweb.ddns.net/
hxxp://gooogleplay.ddns.net/
hxxp://gorr.hopto.org/
hxxp://goshasb.ddns.net/
hxxp://grandeamore.ddns.net/
hxxp://great-support.com/
hxxp://greatkeyboard.hopto.org/
hxxp://gruposoluciomatica.com.br/
hxxp://gta5hacking12.duckdns.org/
hxxp://gusui1.ddns.net/
hxxp://haa7aah.no-ip.biz/
hxxp://habbo.no-ip.org/
hxxp://habib1376.ddns.net/
hxxp://habib556.ddns.net/
hxxp://hac123k.hopto.org/
hxxp://hachim07reg.no-ip.info/
hxxp://hack1111.noip.me/
hxxp://hack155.vicp.net/
hxxp://hacked2001.hopto.org/
hxxp://hacker-81.no-ip.biz/
hxxp://hacker2.hopto.org/
hxxp://hacker421.hopto.org/
hxxp://hackermoqtada.no-ip.biz/
hxxp://hackertn123.no-ip.biz/
hxxp://hackhack2016.no-ip.info/
hxxp://hackhamer.zapto.org/
hxxp://hackinroll.ddns.net/
hxxp://hackme.no-ip.org/
hxxp://hacksd20.ddns.net/
hxxp://hacksyria2.myftp.biz/
hxxp://hadsurvey.ddns.net/
hxxp://hahalol.ddns.net/
hxxp://hahalol.no-ip.biz/
hxxp://haiderhacer12.no-ip.biz/
hxxp://hajeeeee.hopto.org/
hxxp://hakedpc0000.myftp.biz/
hxxp://hakeerali2.ddns.net/
hxxp://haker-2119.ddns.net/
hxxp://haker10.ddns.net/
hxxp://hakosiken.duckdns.org/
hxxp://hakunamatata007.ddns.net/
hxxp://hala222.hopto.org/
hxxp://halo12.duckdns.org/
hxxp://hamidos1342.ddns.net/
hxxp://hamker.ddns.net/
hxxp://hamo55.hopto.org/
hxxp://hamza19991.hopto.org/
hxxp://hamzaelcb.ddns.net/
hxxp://hananox.ddns.net/
hxxp://hardstyleraver.no-ip.org/
hxxp://haroune12.myddns.me/
hxxp://hasha.hopto.org/
hxxp://hasn9999.ddns.net/
hxxp://hassan100.ddns.net/
hxxp://hassanabd1233.ddns.net/
hxxp://hatam.no-ip.org/
hxxp://havij.ddns.net/
hxxp://haxor.hopto.org/
hxxp://haxorjib.no-ip.org/
hxxp://hazem123.no-ip.biz/
hxxp://hazhar77.no-ip.biz/
hxxp://hedr78.ddns.net/
hxxp://heemoana.hopto.org/
hxxp://hegazy5753.ddns.net/
hxxp://hehe.duckdns.org/
hxxp://heikechenmo.3322.org/
hxxp://heilbronn.duckdns.org/
hxxp://hell2066.zapto.org/
hxxp://helloandroid.no-ip.org/
hxxp://hero400.ddns.net/
hxxp://hhhhhfhf.ddns.net/
hxxp://hmt1985.ddns.net/
hxxp://hobi.3utilities.com/
hxxp://hoho121292.ddns.net/
hxxp://hoho39.ddnc.net/
hxxp://hohoangpmy.ddns.net/
hxxp://hooman8219.servecounterstrike.com/
hxxp://hopto.org/
hxxp://hoseenoori2277kh.ddns.net/
hxxp://hossam3030.ddns.net/
hxxp://hossar.ddns.net/
hxxp://hosteng123.hopto.org/
hxxp://hosthack25.ddns.net/
hxxp://houaribey4.ddns.net/
hxxp://houaribey4.no-ip.org/
hxxp://houssmes.zapto.org/
hxxp://hqn.ddns.net/
hxxp://htmp.sytes.net/
hxxp://huhuhuya.ddns.net/
hxxp://hussein1889.no-ip.biz/
hxxp://husshacka.hopto.org/
hxxp://i1993.ddns.net/
hxxp://imad2001bo.hopto.org/
hxxp://indusv00.duckdns.org/
hxxp://info.bounceme.net/
hxxp://injectman.ddns.net/
hxxp://insegnando.net/
hxxp://inteljet.ddns.net/
hxxp://intelresol.ddns.net/
hxxp://ipv445.hopto.org/
hxxp://iqram85spy.ddns.net/
hxxp://iran0513.ddns.net/
hxxp://ircvenezia.it/
hxxp://isamdonita.no-ip.org/
hxxp://islam2020libya.no-ip.biz/
hxxp://izmirsatranckursu.net/
hxxp://jackdroid.systes.net/
hxxp://jackdroid1337.ddns.net/
hxxp://jafarman.ddns.net/
hxxp://jalal123.hopto.org/
hxxp://jas7ser.hopto.org/
hxxp://jassair.hopto.org/
hxxp://jbrianwashman.com/
hxxp://jirawat01.ddns.net/
hxxp://jkgytgasjg12.serveftp.com/
hxxp://jnkey.ddns.net/
hxxp://jockerhackerxnxx.ddns.net/
hxxp://johnharim004.ddns.net/
hxxp://jojomo.ddns.net/
hxxp://jomo.zapto.org/
hxxp://josewaldo.ddns.net/
hxxp://juanblackhak.ddns.net/
hxxp://juliocoelhodesa.hopto.org/
hxxp://jun.dynu.com/
hxxp://justarat.noip.me/
hxxp://k0k0wawa.hopto.org/
hxxp://kaedalsh.ddns.net/
hxxp://kaizen00.ddns.net/
hxxp://kakashi.ddns.net/
hxxp://kaliheh.no-ip.biz/
hxxp://kalinus.ddns.net/
hxxp://kalljo.dvrdns.org/
hxxp://kararkarar0780.ddns.net/
hxxp://karenchik19.hopto.org/
hxxp://karrarhuseein82.ddns.net/
hxxp://kaskw.myftp.biz/
hxxp://kaskw.zapto.org/
hxxp://kasofe123123aa.no-ip.biz/
hxxp://kasper.ddns.net/
hxxp://keskes02122002.ddns.net/
hxxp://kevte26.zapto.org/
hxxp://khaleel0.zapto.org/
hxxp://khalid-2016.noip.me/
hxxp://khantac.ddns.net/
hxxp://kheridla.hopto.org/
hxxp://kingdom.no-ip.biz/
hxxp://kinggg.ddns.net/
hxxp://kjgjgkhffh.sytes.net/
hxxp://kka163.ddns.net/
hxxp://kkarox90.no-ip.org/
hxxp://kmessi.myddns.me/
hxxp://korelev.no-ip.org/
hxxp://krem111.ddns.net/
hxxp://krlol.ddns.net/
hxxp://ksbozo.ddns.net/
hxxp://kskdt.ddns.net/
hxxp://kuraist.zapto.org/
hxxp://kusleratnt.duckdns.org/
hxxp://lahyarhmo.hopto.org/
hxxp://lamorash.ddns.net/
hxxp://laze22.hopto.org/
hxxp://learnxea.duckdns.org/
hxxp://led5526.ddns.net/
hxxp://likerrdd.myftp.biz/
hxxp://linonymousami.no-ip.org/
hxxp://lizdlezozifpo.ddns.net/
hxxp://local1232.ddns.net/
hxxp://locolocoloco.ddns.net/
hxxp://lolman.ddns.net/
hxxp://lordxxx.myq-see.com/
hxxp://love2014.ddns.net/
hxxp://loveubaby.3utilities.com/
hxxp://lputyr.myq-see.com/
hxxp://luxuriaecu.ddns.net/
hxxp://madblack0.sytes.net/
hxxp://madov-matrix25.no-ip.org/
hxxp://magemankoktelam.ddns.net/
hxxp://mahdi1379.ddns.net/
hxxp://mahdi3141.ddns.net/
hxxp://mahdibaba123.ddns.net/
hxxp://majed111111.myq-see.com/
hxxp://majod98m.ddns.net/
hxxp://makarand.no-ip.org/
hxxp://malakatef09.ddns.net/
hxxp://mamal9921.ddns.net/
hxxp://mami5255.duckdns.org/
hxxp://mar020one.hopto.org/
hxxp://marcsil.ddns.net/
hxxp://marknetz.hopto.org/
hxxp://marocmaroc.hopto.org/
hxxp://martin123456.no-ip.org/
hxxp://masafat.ddns.net/
hxxp://maskaralama.ddns.net/
hxxp://masterat.myftp.org/
hxxp://matgio.duckdns.org/
hxxp://matrix-teste.ddns.net/
hxxp://mayyaha.no-ip.info/
hxxp://mazenttr2.hopto.org/
hxxp://me512.zapto.org/
hxxp://medoahmed3.ddns.net/
hxxp://medx321.ddns.net/
hxxp://mee2008.zapto.org/
hxxp://mehost.ddns.net/
hxxp://mehtab123.ddns.net/
hxxp://memeaimen10.hopto.org/
hxxp://memexmama.ddns.net/
hxxp://mhoammedtty.hopto.org/
hxxp://mht3.ddns.net/
hxxp://microsoft-office.ddns.net/
hxxp://mido28.hopto.org/
hxxp://migo2018.zapto.org/
hxxp://mikaniki.ddns.net/
hxxp://mikestar.no-ip.biz/
hxxp://miltin2.no-ip.org/
hxxp://minou555.hopto.org/
hxxp://misterx94.ddns.net/
hxxp://misty255.no-ip.org/
hxxp://mixtape2016.ddns.net/
hxxp://mmdjj212.myftp.biz/
hxxp://mobdro.hopto.org/
hxxp://mobiles0ft.no-ip.org/
hxxp://mogahed.ddns.net/
hxxp://mohamed11.ddns.net/
hxxp://mohamed4dz.ddns.net/
hxxp://mohamedamine.ddns.net/
hxxp://mohamedhg.no-ip.org/
hxxp://mohamednjrat111.no-ip.biz/
hxxp://mohammad2002.no-ip.biz/
hxxp://mohammadhk.ddns.net/
hxxp://mohammed22468.no-ip.biz/
hxxp://mohammed93mahdi.ddns.net/
hxxp://mohfort.ddns.net/
hxxp://mohmad.myftp.biz/
hxxp://mohmdnor.ddns.net/
hxxp://mohsanali79355.ddns.net/
hxxp://mohsenfaz.ddns.net/
hxxp://moji1936.ddns.net/
hxxp://mokhter222029.ddns.net/
hxxp://moktarpicaasrinabil.zapto.org/
hxxp://momen-swesi.no-ip.biz/
hxxp://momo2015.duckdns.org/
hxxp://monitoring007.zapto.org/
hxxp://moonmar10.no-ip.biz/
hxxp://moosio.no-ip.biz/
hxxp://moseybook.com/
hxxp://moslim.ddns.net/
hxxp://mostafaafroto0.ddns.net/
hxxp://motoshi.zapto.org/
hxxp://mphp.hopto.org/
hxxp://mrblacklife.ddns.net/
hxxp://mrclone97.ddns.net/
hxxp://mrgnet.ddns.net/
hxxp://mrkriper3331.zapto.org/
hxxp://mrm2.ddns.net/
hxxp://mrreda98.ddns.net/
hxxp://msficecream.ddns.net/
hxxp://msn-web.ddnsking.com/
hxxp://msn79.ddns.net/
hxxp://mstar.ddns.net/
hxxp://mstfa10.ddns.net/
hxxp://murryapplicazione.no-ip.org/
hxxp://muxamilu.hopto.org/
hxxp://mwanika.no-ip.biz/
hxxp://myaw.no-ip.biz/
hxxp://myfreerat.ddns.net/
hxxp://myfrenid2x.zapto.org/
hxxp://myhost123.myftp.biz/
hxxp://myillusion02.hopto.org/
hxxp://myonline.no-ip.biz/
hxxp://mypy23.ddns.net/
hxxp://nadineemma.servegame.com/
hxxp://namandroidk63.zapto.org/
hxxp://napaixonado.ddns.net/
hxxp://nassahsliman.ddns.net/
hxxp://nemesis2017.zapto.org/
hxxp://netflix-ip.hopto.org/
hxxp://new777.ddns.net/
hxxp://newword.serveblog.net/
hxxp://newxor2.no-ip.org/
hxxp://ninjabird29.myvnc.com/
hxxp://nirajpawar1997.ddns.net/
hxxp://njesra.ddns.net/
hxxp://nododg.ddns.net/
hxxp://nohacker.ddns.net/
hxxp://noiphackk.ddns.net/
hxxp://noipjajaja.ddns.net/
hxxp://nowgirlas.ddns.net/
hxxp://noxrr.ddns.net/
hxxp://nulldoesnotexist.duckdns.org/
hxxp://oday1995.zapto.org/
hxxp://oko.gotdns.ch/
hxxp://omar.no-ip.biz/
hxxp://oneriakosa.ddns.net/
hxxp://opt91.ddns.net/
hxxp://orihacker.ddns.net/
hxxp://osamarizk.ddns.net/
hxxp://osmsalem.ddns.net/
hxxp://ospr.publicvm.com/
hxxp://oussama1997.ddns.net/
hxxp://oussamadj1997.ddns.net/
hxxp://ovirus.ddns.net/
hxxp://owsen.ddns.net/
hxxp://paaradowx.hopto.org/
hxxp://parrot01.hopto.org/
hxxp://pars.ddns.net/
hxxp://persir.no-ip.biz/
hxxp://phantom94.ddns.net/
hxxp://photofix.hopto.org/
hxxp://pianotiles2.ddns.net/
hxxp://pimpdaddy.myq-see.com/
hxxp://pippo86.no-ip.biz/
hxxp://portmeim.ddns.net/
hxxp://pplweb.pplmotorhomes.com/
hxxp://premium007.zapto.org/
hxxp://priyakumari.ddns.net/
hxxp://profmilf.zapto.org/
hxxp://prohacker.freedynamicdns.org/
hxxp://projectp.ddns.net/
hxxp://pruebasernesto.ddns.net/
hxxp://qwerty1212.ddns.net/
hxxp://r00t.myftp.biz/
hxxp://r3cxw.ddns.net/
hxxp://r90.no-ip.biz/
hxxp://radouan123.hopto.org/
hxxp://rahimtrx.hopto.org/
hxxp://raliphesus.ddns.net/
hxxp://rameezmaster.ddns.net/
hxxp://randsnaira.dnsdynamic.com/
hxxp://rarwindow.no-ip.biz/
hxxp://ratforandroid.ddns.net/
hxxp://rds11.ddns.net/
hxxp://redcode.ddns.net/
hxxp://reddemon.ddns.net/
hxxp://refsa.duckdns.org/
hxxp://reich666.ddns.net/
hxxp://reich777.ddns.net/
hxxp://remoteip999.ddns.net/
hxxp://rinalditeam.ddns.net/
hxxp://rmk133.hopto.org/
hxxp://rmx2121.ddns.net/
hxxp://rockrock.ddns.net/
hxxp://rok13198666.no-ip.biz/
hxxp://ron1372.ddns.net/
hxxp://royalhacker.zapto.org/
hxxp://rpshowpick.ddns.net/
hxxp://rpswlrkgkarp.p-e.kr/
hxxp://rzra51126.ddns.net/
hxxp://s.leas.im/
hxxp://s3b4s.noip.me/
hxxp://sabbah.duckdns.org/
hxxp://sadaq.ddns.net/
hxxp://saiber-far68.ddns.net/
hxxp://saighinissou.ddns.net/
hxxp://sajadianh.ddns.net/
hxxp://sajjadnassar3.no-ip.biz/
hxxp://salah067.hopto.org/
hxxp://salarkalat.ddns.net/
hxxp://salemaziz.hopto.org/
hxxp://samira.no-ip.biz/
hxxp://samoomalik.no-ip.biz/
hxxp://samuseucu.ddns.net/
hxxp://santamariagorettimestre.it/
hxxp://sara19918.ddns.net/
hxxp://sarahwygan.no-ip.biz/
hxxp://saraia.ddns.net/
hxxp://sarasisi.no-ip.org/
hxxp://sasi546454.hopto.org/
hxxp://sazan765.ddns.net/
hxxp://secureline2244.ddns.net/
hxxp://securepurpose.no-ip.info/
hxxp://securitytests.ddns.net/
hxxp://securitytestt.ddns.net/
hxxp://sedalbi.com/
hxxp://server4update.serveftp.com/
hxxp://servidor23.ddns.net/
hxxp://servr.hopto.org/
hxxp://sesizkal32.no-ip.biz/
hxxp://seven1.ddns.net/
hxxp://seyf2017.linkpc.net/
hxxp://shahabhacker.ddns.net/
hxxp://shahidsajan.no-ip.biz/
hxxp://sharawy74.hopto.org/
hxxp://sharmayash.no-ip.biz/
hxxp://sherlockholmes.duckdns.org/
hxxp://shgt.tk/
hxxp://shoo2018.no-ip.org/
hxxp://shosh.ddns.net/
hxxp://showj.f3322.net/
hxxp://skinchanger.hopto.org/
hxxp://skylex123.hopto.org/
hxxp://slavikkalinovskiy.ddns.net/
hxxp://slayslay.duckdns.org/
hxxp://smiix2012.ddns.net/
hxxp://smk22.jkt.net/
hxxp://snaider.hopto.org/
hxxp://sniperviruse3.hopto.org/
hxxp://sniperyakub.ddns.net/
hxxp://socialplus.ddns.net/
hxxp://somenormalguy.duckdns.org/
hxxp://sondres1.ddns.net/
hxxp://sonkar412.duckdns.org/
hxxp://sorry.duckdns.org/
hxxp://soso.noip.us/
hxxp://specre.com/
hxxp://spicymemes.duckdns.org/
hxxp://spiel007.ddns.org/
hxxp://spofy.ddns.net/
hxxp://spynote-web.dynu.com/
hxxp://sramic.ddns.net/
hxxp://ssjf.myftp.biz/
hxxp://standby1537.duckdns.org/
hxxp://storing.hopto.org/
hxxp://strateg.ddns.net/
hxxp://superlegitratvirus.ddns.net/
hxxp://svn-01.ddns.net/
hxxp://sweetman2020.no-ip.biz/
hxxp://system32.com/
hxxp://taha100iq.hopto.org/
hxxp://taherhacker.hopto.org/
hxxp://tak.no-ip.info/
hxxp://takpar67.no-ip.biz/
hxxp://taras1928.ddns.net/
hxxp://targi01.hopto.org/
hxxp://tatacall.servebeer.com/
hxxp://tataline.hopto.org/
hxxp://tedy1993.ddns.net/
hxxp://test.pagez.kr/
hxxp://test145.ddns.net/
hxxp://test29.ddns.net/
hxxp://testan.ddns.net/
hxxp://testandro.ddns.net/
hxxp://testapkk.hopto.org/
hxxp://testkps.ddns.net/
hxxp://testsr.ddns.net/
hxxp://testsss.ddns.net/
hxxp://testxy.ddns.net/
hxxp://theblack16.ddns.net/
hxxp://thedroidjack.ddns.net/
hxxp://thegangsterrap.noip.me/
hxxp://thegod2.ddns.net/
hxxp://thekillers.ddns.net/
hxxp://themayhen23.no-ip.org/
hxxp://tnaxin.msns.cn/
hxxp://tomyyk.ddns.net/
hxxp://tonyjony.ddns.net/
hxxp://topmax.myq-see.com/
hxxp://toyman6699.no-ip.info/
hxxp://trythelast.no-ip.org/
hxxp://tunisvista.3utilities.com/
hxxp://udown.ddns.net/
hxxp://ufologlyly.ddns.net/
hxxp://umar14344.ddns.net/
hxxp://unknownuser.no-ip.biz/
hxxp://updater.myftp.org/
hxxp://updatesystem.dynu.com/
hxxp://updatexxx.hopto.org/
hxxp://usa.myftp.biz/
hxxp://usa2222.ddns.net/
hxxp://userframer.sytes.net/
hxxp://usernamegopro1.ddns.net/
hxxp://usmh.myq-see.com/
hxxp://uzzal619.viewdns.net/
hxxp://vajausing.dynu.com/
hxxp://vego.ddns.net/
hxxp://vetalamator1.ddns.net/
hxxp://viagra.jumpingcrab.com/
hxxp://victim.no-ip.org/
hxxp://vigo.hopto.org/
hxxp://vikas.no-ip.biz/
hxxp://villevalo.chickenkiller.com/
hxxp://vipcoon.com/
hxxp://vipmustafa.no-ip.info/
hxxp://vpn0.ddns.net/
hxxp://vwelxv.ddns.net/
hxxp://w0rm32.ddns.net/
hxxp://warl10ck.ddns.net/
hxxp://warrirrs.no-ip.org/
hxxp://wasawalid.hopto.org/
hxxp://wassam100.ddns.net/
hxxp://wasxmrtdub.ddns.net/
hxxp://wcvwcv.picp.net/
hxxp://webhack2017.ddns.net/
hxxp://webi7.ddns.info/
hxxp://weedforlifehacker.ddns.net/
hxxp://welcomeheretomept.ddns.net/
hxxp://williettinger.cc/
hxxp://win32.ddns.net/
hxxp://windows12345.ddns.net/
hxxp://windows7trojan.ddns.net/
hxxp://winserver.dlinkddns.com/
hxxp://woaisue.3322.org/
hxxp://wogusnb.no-ip.info/
hxxp://wombocombo.mooo.com/
hxxp://wtfwtf.duckdns.org/
hxxp://xa1newold.hopto.org/
hxxp://xilto.duckdns.org/
hxxp://xingyuekeji.f3322.net/
hxxp://xmppegy.com/
hxxp://xnxx123.publicvm.com/
hxxp://xos1982.ddns.net/
hxxp://xtiger007.ddns.net/
hxxp://xzoro2016.no-ip.info/
hxxp://yangweb.f3322.net/
hxxp://yassinescaleo.ddns.net/
hxxp://younix.ddns.net/
hxxp://yousefehab11.ddns.net/
hxxp://youseffathii.ddns.net/
hxxp://youssef-1234.hopto.org/
hxxp://yuosaf1993.ddns.net/
hxxp://yurimacedo1.ddns.net/
hxxp://za3blawy.ddns.net/
hxxp://zaboza2020.ddns.net/
hxxp://zaheerkhan786.ddns.net/
hxxp://zakifr.no-ip.biz/
hxxp://zal75zk.ddns.net/
hxxp://zaliminxx.duckdns.org/
hxxp://zaqatala.dynu.com/
hxxp://zennone.ddns.net/
hxxp://zero228.ddns.net/
hxxp://zoheirdroidjack.zapto.org/
hxxp://zokor-zokor.ddns.net/
hxxp://zongkahani.no-ip.biz/
hxxp://zouhr9.hopto.org/
hxxp://zxczxczxc.ddns.net/