SHARE
TWEET

Occultatsec's dox

a guest Mar 20th, 2016 841 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. ▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒
  2.  
  3. This dox has been confirmed by KINGSAT7AN and others in the hacking community.
  4.  
  5. So we desided to dox this kid who acts like a hacker but all he does is make fake accounts and websites and pretends to hack them. This skid gave us all autism at first when we joined the scene. He started "hacking" on the 21st of December 2015. The way this skid got well known was from his first tweet "If you want me to take down #phantomsquad then RT and live." but if he was a real hacker he would do it anyway. Then he got 200 RT's and 150 lives on that tweet. Then we started leaking info of the phantomsquad that had already got leaked by the real hackers in this community. Now we need to get this skid to cyber justice.
  6.  
  7. # ###############
  8. # Table of contents #
  9. ###############
  10.  
  11. 1. Occultat's info #
  12. 2. Advanced info #
  13. 3. All domain info #
  14. 4. DNS leaks #
  15. 5. Confirming and exposing #
  16.  
  17. Reason for dox: claiming your a real hacker,lying and faking all the way.
  18.  
  19. Full Name: James Parker
  20.  
  21. Age: 13
  22.  
  23. His IRL pic: https://plus.google.com/118418040454536343025/posts/5s6ExnSMPnZ?pid=6263851280782102466&oid=118418040454536343025 (It's not the best but it's a recent one.)
  24.  
  25. Friends Alias: Duckygamez,Thebritgamers,mikegamezHD and Jackro3D
  26.  
  27. Aliases: occultatsec,thexbmaestro,kailthegod,hackingoccultat,occultathacking,jameshenry0209 and 0urmine
  28.  
  29. Landline Phone: 03069 990907
  30.  
  31. Mobile phone: 07434303330
  32.  
  33. Country: United kingdom
  34.  
  35. Location: UK, Chelmsford
  36.  
  37. Address: Mashbury Road, Chignal St. James, Chelmsford, CM1
  38.  
  39. Picture of his highstreet: http://i.imgur.com/4to5Xbh.jpg
  40.  
  41. Emails:
  42. - jameshenry0209@gmail.com
  43. - occultatsec@outlook.com
  44. - hackingyourvps@outlook.com
  45. - thexbmaestro@gmail.com
  46. - occultatvape@outlook.com
  47. - occulthacking@outlook.com
  48. Accounts:
  49. https://namemc.com/S?TheXBMAESTRO
  50. https://plus.google.com/118418040454536343025 …
  51. https://plus.google.com/109229573470007694169/about …
  52. https://www.youtube.com/channel/UCrwxstigX5WeY5DqTmB1YjQ …
  53. https://twitter.com/thexbmaestro
  54. https://twitter.com/occultatsec
  55. https://twitter.com/occulthacking
  56. https://twitter.com/HackingyourVPS
  57. https://www.youtube.com/user/TheXBMAESTRO …
  58. http://www.twitch.tv/thexbmaestro
  59. https://www.youtube.com/channel/UCrwxstigX5WeY5DqTmB1YjQ/ …
  60. https://www.hackforums.net/!43968
  61. https://twitter.com/0urmine
  62. Skypes: thexbmaestro,Jam3spar & live:occultatsec
  63. ############################################################################################################################################################################################################################################
  64.  
  65. 2. Advanced infomation
  66.  
  67. IP Addresses:
  68. - 89.238.143.70 [VPN | CyberGhost]
  69. - 84.39.117.3 [VPN | CyberGhost]
  70.  
  71. Directions to his house: 10 min (0.5 mile)
  72. Head east
  73. 138 ft
  74.  
  75. Turn left toward Victoria Rd/A1099
  76. 138 ft
  77.  
  78. Turn left onto Victoria Rd/A1099
  79. 0.1 mi
  80.  
  81. Turn left onto New St
  82. 0.1 mi
  83.  
  84. Turn right onto Church St
  85. 341 ft
  86.  
  87. Turn left onto Church Ln
  88. 246 ft
  89.  
  90. Turn right onto Duke St
  91.  
  92. ##################################################################################################################################################################################################################################################################################################################################################################
  93.  
  94. 3. All domain info
  95. All his domain's: http://occultat.comlu.com/
  96. - http://occultatsec.weebly.com/
  97. - http://booterbox.com
  98.  
  99. All whois data found:
  100.  
  101.  
  102. Registrant Org  Hostinger International Ltd. is associated with ~423 other domains
  103. Registrar   GODADDY.COM, LLC
  104. Registrar Status    clientDeleteProhibited https://www.icann.org/epp#clientDeleteProhibited, clientRenewProhibited https://www.icann.org/epp#clientRenewProhibited, clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited, clientUpdateProhibited https://www.icann.org/epp#clientUpdateProhibited
  105. Dates   Created on 2009-08-26 - Expires on 2016-08-26 - Updated on 2015-06-08   Whois History
  106. Name Server(s)  NS1.000WEBHOST.COM (has 42,353 domains)
  107. NS2.000WEBHOST.COM (has 42,353 domains)
  108.  
  109. IP Address  23.23.157.114 - 2,011 other sites hosted on this server
  110. IP Location United States - Virginia - Ashburn - Amazon.com Inc.
  111. ASN United States AS14618 AMAZON-AES - Amazon.com, Inc. (registered Nov 04, 2005)
  112. Domain Status   Registered And Active Website
  113. Whois History   712 records have been archived since 2007-12-30
  114. IP History  42 changes on 24 unique IP addresses over 11 years
  115. Registrar History   5 registrars with 3 drops
  116. Hosting History 21 changes on 12 unique name servers over 11 years
  117. Whois Server    whois.godaddy.com
  118. Website
  119. Website Title   Welcome to comlu.com - Managed by 000webhost
  120. Server Type nginx/1.6.0
  121. Response Code   200
  122. SEO Score   86%
  123. Terms   64 (Unique: 51, Linked: 8)
  124. Images  2 (Alt tags missing: 0)
  125. Links   7 (Internal: 0, Outbound: 7)
  126. Whois Record ( last updated on 2016-03-20 )
  127. Domain Name: COMLU.COM
  128. Registrar URL: http://www.godaddy.com
  129. Registrant Name: Kyriakos Kyriako
  130. Registrant Organization: Hostinger International Ltd.
  131. Name Server: NS1.000WEBHOST.COM
  132. Name Server: NS2.000WEBHOST.COM
  133. DNSSEC: unsigned
  134.  
  135. Domain Name: WEEBLY.COM
  136. Registrar WHOIS Server: whois.safenames.net
  137. Registrar URL: http://www.safenames.net
  138. Updated Date: 2015-05-25T06:04:57Z
  139. Created Date: 2006-03-29T00:25:07Z
  140. Registrar Registration Expiration Date: 2021-03-28T23:25:07Z
  141. Registrar: Safenames Ltd
  142. Registrar IANA ID: 447
  143. Registrar Abuse Contact Email:
  144. Registrar Abuse Contact Phone: +44.1908200022
  145. Registrant Name: Domain Admin
  146. Registrant Organisation: Weebly, Inc.
  147. Registrant Street: 460 Bryant St.
  148. Registrant City: San Francisco
  149. Registrant State/Province: CA
  150. Registrant Postal Code: 94107
  151. Registrant Country: US
  152. Registrant Phone: +1.4153753268
  153. Registrant Fax:
  154. Registrant Email:
  155. Admin Name: International Domain Administrator
  156. Admin Organisation: Safenames Ltd
  157. Admin Street: Safenames House, Sunrise Parkway
  158. Admin City: Milton Keynes
  159. Admin State/Province: Bucks
  160. Admin Postal Code: MK14 6LS
  161. Admin Country: UK
  162. Admin Phone: +44.1908200022
  163. Admin Fax: +44.1908325192
  164. Admin Email:
  165. Tech Name: International Domain Tech
  166. Tech Organisation: International Domain Tech
  167. Tech Street: Safenames House, Sunrise Parkway
  168. Tech City: Milton Keynes
  169. Tech State/Province: Bucks
  170. Tech Postal Code: MK14 6LS
  171. Tech Country: UK
  172. Tech Phone: +44.1908200022
  173. Tech Fax: +44.1908325192
  174. Tech Email:
  175. Name Server: dns1.idp365.net
  176. Name Server: dns2.idp365.net
  177. Name Server: dns3.idp365.net
  178. URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
  179.  
  180.  
  181. Email   is associated with ~2,004 domains
  182. is associated with ~103,746 domains
  183. is associated with ~115,773 domains
  184. is associated with ~112,514 domains
  185.  
  186. Registrant Org  Weebly, Inc. is associated with ~401 other domains
  187. Registrar   SAFENAMES LTD
  188. Registrar Status    clientDeleteProhibited https://www.icann.org/epp#clientDeleteProhibited, clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited, clientUpdateProhibited https://www.icann.org/epp#clientUpdateProhibited
  189. Dates   Created on 2006-03-29 - Expires on 2021-03-28 - Updated on 2015-05-25
  190. Name Server(s)  NS1.P29.DYNECT.NET (has 146,731 domains)
  191. NS2.P29.DYNECT.NET (has 146,731 domains)
  192. NS3.P29.DYNECT.NET (has 146,731 domains)
  193. NS4.P29.DYNECT.NET (has 146,731 domains)
  194.  
  195. IP Address  74.115.50.109 - 682 other sites hosted on this server
  196. IP Location United States - California - San Francisco - Weebly Inc.
  197. ASN United States AS27647 WEEBLY - Weebly, Inc. (registered Feb 12, 2009)
  198. Domain Status   Registered And Active Website
  199. Whois History   3,021 records have been archived since 2007-01-20
  200. IP History  17 changes on 10 unique IP addresses over 10 years
  201. Registrar History   3 registrars with 1 drop
  202. Hosting History 7 changes on 5 unique name servers over 9 years
  203. Whois Server    whois.safenames.net
  204. Website
  205. Website Title   Weebly Website Builder: Create a Free Website, Store or Blog
  206. Server Type Apache
  207. Response Code   200
  208. SEO Score   89%
  209. Terms   473 (Unique: 254, Linked: 96)
  210. Images  12 (Alt tags missing: 12)
  211. Links   70 (Internal: 60, Outbound: 6)
  212.  
  213. Domain Name: BOOTERBOX.COM
  214. Registry Domain ID: 1947189750_DOMAIN_COM-VRSN
  215. Registrar WHOIS Server: whois.enom.com
  216. Registrar URL: www.enom.com
  217. Updated Date: 2015-07-15T19:43:20.00Z
  218. Creation Date: 2015-07-16T02:43:00.00Z
  219. Registrar Registration Expiration Date: 2016-07-16T02:43:00.00Z
  220. Registrar: ENOM, INC.
  221. Registrar IANA ID: 48
  222. Reseller: NAMECHEAP.COM
  223. Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
  224. Registry Registrant ID:
  225. Registrant Name: WHOISGUARD PROTECTED
  226. Registrant Organization: WHOISGUARD, INC.
  227. Registrant Street: P.O. BOX 0823-03411
  228. Registrant City: PANAMA
  229. Registrant State/Province: PANAMA
  230. Registrant Postal Code: 00000
  231. Registrant Country: PA
  232. Registrant Phone: +507.8365503
  233. Registrant Phone Ext:
  234. Registrant Fax: +51.17057182
  235. Registrant Fax Ext:
  236. Registrant Email: 2C916F71B6784160888F2AFE3B87C803.PROTECT@WHOISGUARD.COM
  237. Registry Admin ID:
  238. Admin Name: WHOISGUARD PROTECTED
  239. Admin Organization: WHOISGUARD, INC.
  240. Admin Street: P.O. BOX 0823-03411
  241. Admin City: PANAMA
  242. Admin State/Province: PANAMA
  243. Admin Postal Code: 00000
  244. Admin Country: PA
  245. Admin Phone: +507.8365503
  246. Admin Phone Ext:
  247. Admin Fax: +51.17057182
  248. Admin Fax Ext:
  249. Admin Email: 2C916F71B6784160888F2AFE3B87C803.PROTECT@WHOISGUARD.COM
  250. Registry Tech ID:
  251. Tech Name: WHOISGUARD PROTECTED
  252. Tech Organization: WHOISGUARD, INC.
  253. Tech Street: P.O. BOX 0823-03411
  254. Tech City: PANAMA
  255. Tech State/Province: PANAMA
  256. Tech Postal Code: 00000
  257. Tech Country: PA
  258. Tech Phone: +507.8365503
  259. Tech Phone Ext:
  260. Tech Fax: +51.17057182
  261. Tech Fax Ext:
  262. Tech Email: 2C916F71B6784160888F2AFE3B87C803.PROTECT@WHOISGUARD.COM
  263. Name Server: RUTH.NS.CLOUDFLARE.COM
  264. Name Server: TIM.NS.CLOUDFLARE.COM
  265. DNSSEC: unSigned
  266. Registrar Abuse Contact Email:
  267. Registrar Abuse Contact Phone: +1.4252982646
  268. URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
  269.  
  270. Email   is associated with ~11,248,723 domains
  271.  
  272.  
  273. Registrant Org  WHOISGUARD, INC. was found in ~3,495,572 other domains
  274. Registrar   ENOM, INC.
  275. Registrar Status    clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
  276. Dates   Created on 2015-07-16 - Expires on 2016-07-16 - Updated on 2015-12-01
  277. Name Server(s)  RUTH.NS.CLOUDFLARE.COM (has 1,346,150 domains)
  278. TIM.NS.CLOUDFLARE.COM (has 1,346,150 domains)
  279.  
  280. IP Address  104.24.96.122 - 72 other sites hosted on this server
  281. IP Location United States - Arizona - Phoenix - Cloudflare Inc.
  282. ASN United States AS13335 CLOUDFLARENET - CloudFlare, Inc. (registered Jul 14, 2010)
  283. Domain Status   Registered And Active Website
  284. Whois History   7 records have been archived since 2015-07-15
  285. IP History  3 changes on 4 unique IP addresses over 1 years
  286. Registrar History   1 registrar
  287. Hosting History 2 changes on 3 unique name servers over 1 year
  288. Whois Server    whois.enom.com
  289. Website
  290. Website Title   BooterBox - Best IP Booter
  291. Server Type cloudflare-nginx
  292. Response Code   200
  293. SEO Score   97%
  294. Terms   351 (Unique: 213, Linked: 13)
  295. Images  2 (Alt tags missing: 0)
  296. Links   9 (Internal: 3, Outbound: 0)
  297.  
  298. #################################################################################################################################################################################################################################################################################################################################################################
  299.  
  300. 4. DNS leaks
  301. IP Details
  302.  
  303. Reverse Lookup:
  304. TOR Exit Node:  No No
  305. AirVPN Exit Node:   No No
  306. Net Speed:  Unknown
  307. Type:   Hosting
  308. ISP:    M247 Ltd
  309. Organization:   M247 Ltd
  310. Domain: ohtele.com
  311. ASN:    AS9009 M247 Ltd
  312. Country:    United Kingdom United Kingdom (GB)Accuracy: 99%
  313. Region: Birmingham (A7)Accuracy: 99%
  314. City:   BirminghamAccuracy: 99%
  315. Time Zone:  Europe/London
  316. Latitude & Longitude:   52.4667 , -1.9167
  317.  
  318. WebRTC leak:
  319.  
  320. Geek Details
  321.  
  322. Detected informations
  323. Your User Agent:    Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.87 Safari/537.36
  324. Referer (where you came from):  https://ipleak.net/
  325. What document you can accept:   text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  326. What language you can accept:   en-US,en;q=0.8
  327. What encoding you can accept:   gzip, deflate, sdch
  328. System information
  329. (your browser, your language, your operating system, etc)
  330. Platform:   Win32
  331. Cookie enabled: true
  332. Java enabled:   false
  333. Online: true
  334. Screen information
  335. (your display hardware)
  336. Your screen:    1920 x 1080
  337. Available screen:   1920 x 1040
  338. Color depth:    24
  339. Pixel depth:    24
  340. Plugins information
  341. (your browser plugins)
  342. Name:   Widevine Content Decryption Module
  343. File name:  widevinecdmadapter.dll
  344. Description:    Enables Widevine licenses for playback of HTML audio/video content. (version: 1.4.8.866)
  345. Name:   Shockwave Flash
  346. File name:  pepflashplayer.dll
  347. Description:    Shockwave Flash 21.0 r0
  348. Name:   Chrome PDF Viewer
  349. File name:  mhjfbmdgcfjbbpaeojofohoefgiehjai
  350. Name:   Native Client
  351. File name:  internal-nacl-plugin
  352. Name:   Chrome PDF Viewer
  353. File name:  internal-pdf-viewer
  354. Description:    Portable Document Format
  355. Mime-Types information
  356. (what document you can read)
  357. Mime Type:  application/x-ppapi-widevine-cdm
  358. Extensions: *
  359. Description:    Widevine Content Decryption Module
  360. Plugin: Widevine Content Decryption Module
  361. Mime Type:  application/x-shockwave-flash
  362. Extensions: swf
  363. Description:    Shockwave Flash
  364. Plugin: Shockwave Flash
  365. Mime Type:  application/futuresplash
  366. Extensions: spl
  367. Description:    Shockwave Flash
  368. Plugin: Shockwave Flash
  369. Mime Type:  application/pdf
  370. Extensions: pdf
  371. Plugin: Chrome PDF Viewer
  372. Mime Type:  application/x-nacl
  373. Extensions: *
  374. Description:    Native Client Executable
  375. Plugin: Native Client
  376. Mime Type:  application/x-pnacl
  377. Extensions: *
  378. Description:    Portable Native Client Executable
  379. Plugin: Native Client
  380. Mime Type:  application/x-google-chrome-pdf
  381. Extensions: pdf
  382. Description:    Portable Document Format
  383. Plugin: Chrome PDF Viewer
  384. HTTP Request Headers
  385. Host:   ipleak.net
  386. Connection: keep-alive
  387. Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
  388. Upgrade-Insecure-Requests:  1
  389. User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.87 Safari/537.36
  390. Referer:    https://ipleak.net/
  391. Accept-Encoding:    gzip, deflate, sdch
  392. Accept-Language:    en-US,en;q=0.8
  393. Cookie: _gat=1; _pk_ref.3.624b=%5B%22%22%2C%22%22%2C1458485526%2C%22https%3A%2F%2Fwww.google.com%2F%22%5D; _ga=GA1.2.1285396044.1458485525; _pk_id.3.624b=8b059f6cbb15776e.1458485526.1.1458485550.1458485526.; _pk_ses.3.624b=*
  394.  
  395. There is no WebRTC leaking on VPN server 89.238.143.70 or other on cyberghost servers ;(
  396. I don't see any other way of getting his real ip address since he's always on secure VPN and proxies servers.
  397.  
  398. ############################################################################################################################################################################################################################################
  399.  
  400.  
  401. If you feel like adding anymore info to this then do so. This skid occultatsec claims to be undoxable but the next day we said that a guy called "vapehope" somehow found all his personal accounts n'd leaked his photo's.
  402.  
  403. Proof it's him: http://i.imgur.com/N31Oi8u.jpg HAHA xD
  404.  
  405. Well that was the dox.
  406.  
  407. This dox wouldn't be made if it wasn't for the hacking community.
  408.  
  409. Credz to @NetworkNulling,@RIPSacredShadow and most of the other bwa's
  410.  
  411. #bwa ~The House Always Wins~
  412. - See more at: https://skidpaste.org/Mh4V4uJC#sthash.N7siHAc4.dpuf
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top