Tag: Russia

Putin’s Hacker, Wikileaks Host Pyotr Chayanov, Hacked America’s Vote System And the DNC

Patribotics hopes to expand reporting and commission other writers. If you would like to donate, there are buttons around the site, or you could make a contribution here. 

TL/DR: Server King, Hostkey, and Mir Telemakti are one and the same – fronts for the Russian govt.

On October 7th the DHS and the Intelligence Community released a statement on Russian hacking of the election.

They stated that:

“The U.S. Intelligence Community (USIC) is confident that the Russian Government directed the recent compromises of e-mails from US persons and institutions, including from US political organizations. The recent disclosures of alleged hacked e-mails on sites like DCLeaks.com and WikiLeaks and by the Guccifer 2.0 online persona are consistent with the methods and motivations of Russian-directed efforts. These thefts and disclosures are intended to interfere with the US election process. Such activity is not new to Moscow—the Russians have used similar tactics and techniques across Europe and Eurasia, for example, to influence public opinion there. We believe, based on the scope and sensitivity of these efforts, that only Russia’s senior-most officials could have authorized these activities.”

Let us translate: the USIC confirms that Guccifer 2 hacked the DNC emails and was directed by Vladimir Putin to do so.

Next, we move on to state voter registration databases:

Some states have also recently seen scanning and probing of their election-related systems, which in most cases originated from servers operated by a Russian company. However, we are not now in a position to attribute this activity to the Russian Government.

However, happily, I believe I am in a position to do so. Because I can report that sources say that the Russian company which hacked voter registration databases was Hostkey – the host of Wikileaks. King Servers is in fact the same Russian front as Hostkey – both ultimately resolving to, and owned by, the Russian state’s Mir Telemakti.

server king 2

Regular readers of Patribotics will note that we broke two big stories featuring Hostkey, and its owner, a Russian hacker and troll called Pyotr Chayanov.

The first is that Wikileaks, one week before their release of the DNC hack emails, acquired two servers in Russia on which to store all their data. The owner of these massive servers was the hacker Pyotr (Peter) Chayanov, head of Hostkey.

Upon our publishing that epic exclusive by Laurelai Bailey, @Stuxnetsource on Twitter, Mr. Chayanov deleted his entire account, but not before I screenshot all of it.

The second story, even more grave than the first, was that Wikileaks had not merely bought or acquired Russian servers, they had given Chayanov and Hostkey their SSL keys. That in turn meant that Vladimir Putin, Chayanov’s boss, can see the IP of everybody reading anything on Wikileaks and indeed, can see the IP address of anybody who ever donated to Wikileaks.

But because Laurelai discovered that Hostkey/Chayanov had the Wikileaks servers, she inadvertently also proved that it was Russia who hacked US voter databases.

Because it is the same company and the same server.

Furthermore, our most recent exclusive story reported that intelligence sources say the Alfa Bank server was passing voter database info to and from the Russian state, and then handing this info to SCL and Cambridge Analytica (ultimately owned by Alfa Bank) for targeting by the Trump campaign with propaganda.

The DNC hack, hosted by Hostkey and Chayanov, would have had access to Vertica, the DNC’s voter registration server. This server had all the DNC’s information on all their voters and where they lived, voting records and so forth. Vertica had the DNC’s voter addresses, campaign modeling and so forth. It was the goldmine. It was everything.

“An analytics data program maintained by the DNC, and used by our campaign and a number of other entities, was accessed as part of the DNC hack,” said Clinton campaign spokesman Nick Merrill.


It is abundantly clear then that Mr. Chayanov’s Hostkey hackers are Guccifer2; that since Hostkey published the Wikileaks stuff and also hacked US voter state databases, the Alfa server was probably comparing the state rolls with the DNC information; and that this was passed back to the Trump campaign through the Trump server.

If the USIC is confident that Guccifer2 was directed by Russia and Putin, then they now know state database hacking was also directed by him, for Hostkey is the same exact company that performed both attacks and then hosted the results.

Some sources report that there was also “IP targeting”  for the “dark Facebook posts” shown on users’ feeds (they used VPNs, and saw messages relevant to those VPNs). That could have come about because anybody who read anything on Wikileaks had now handed over their IP address to Vladimir Putin, because his agent, Julian Assange, had given Chayanov the Wikileaks SSL keys.

A future post will look at just how SCL (owned ultimately by Alfa Bank) created dark posts to target to Democratic voters and how this is tied right back to Trump.

And, ladies and gentlemen, that is the story of how Russian hackers Hostkey, working for Vladimir Putin, in partnership with Donald Trump and his team of traitors, attacked a US election and helped Donald Trump cheat his way into America’s house.

Was it good for you?


Did Nunes Leak FISA Warrant Info via White House Lawyer Michael Ellis?

Following our exclusive report that Devin Nunes leaked information about transition team member, White House staffer and named subject of a failed FISA court application, Boris Epshteyn, I can exclusively report that sources with links to Congress state that staffers working on the Russia investigations believe that lawyers connected to the White House are illegally sharing information with Nunes – and illegally pressing him to leak it.

 Patribotics hopes to expand reporting and commission other writers. If you would like to donate, there are buttons around the site, or you could make a contribution here. 

While sources are not yet definite as to which lawyer or lawyers they suspect of repeatedly breaking the law on leaks and obstruction of justice, several have named Michael Ellis, of the White House General Counsel’s office for National Security, as one they suspect.

Mr. Ellis previous job was the General Counsel for the House Intelligence Committee, working for Mr. Nunes directly. Sources indicate that Nunes recommended Ellis for the White House national security post.

Yesterday it was reported that Nunes’ friend Mr. Ellis, described as his “close aide”, only started working for the White House this month, when leaks started.

If indeed Mr. Ellis did pass on information about the FISA evidence on money laundering, possibly involving Epshteyn, to Nunes, asking him to leak it to the press or allowing him to do so, it would be highly illegal conduct.

Mr. Nunes and Mr. Ellis should immediately answer to the rest of the Committee, as to whether anything of the sort occurred, and Mr. Nunes should be hauled before the FBI for the crimes he is committing in plain sight.




Planespotting: Michael Cohen’s Amazing Journey

Update: A patriot on Twitter has found another plane, not appearing in the Beauty Central fleet listed online, N789LR, serial number 5100, that made a stop in Belgium in September. She is a GV, with Mode S listed as 52531377


When the Steele dossier was published by Buzzfeed, with an entirely appropriate amount of caveats, other journalistic outlets rushed to pour cold water on it, and wrongly so.

Chief among these was CNN. Acting as if Buzzfeed had not offered caveats alongside the publication, CNN blasted the news site as though they had irresponsibly published ‘fake news’.

In fact, the credibility of Chris Steele was sky-high in the intelligence community, and the heads of all three agencies had included his dossier as an addendum to the Russian hacking report they produced for the President (Obama, at the time; but Trump was also given a version of it).

One bit of journalistic malfeasance committed by CNN was that they rubbished the dossier’s claims on Michael Cohen without doing independent journalistic research of their own.

Inanely, CNN claimed that they had it “confirmed” that Michael Cohen was not in Prague, Czech Republic, when the dossier said he was.

They based this on the fact that, as they claimed, “a different Michael Cohen” had been in Prague around that time, according to a passport stamp. This has nothing to do with the matter one way or the other, and a little thought by CNN would have borne that out. The dossier alleged that Cohen went to Prague and another EU country; that was rated as low confidence as to both location and to exact timing. August, at one point; late August or early September at another point. Furthermore, Steele did not, contrary to CNN’s implication, present location or timing as a fact. It was secondhand; he reported as fact that Kremlin insiders said this, and Steele rated the exact location and timing as low confidence.

More interesting was the substance of Steele’s allegations as to why – he reported sources said – Cohen was meeting Russians outside of the US. Firstly, it was to pay off hackers. The dossier made the claim that these were both the hackers who had attacked Clinton, and a company that ran a Twitter botnet (possibly also a Facebook one as I shall later report).

I took as my starting point the idea that the Steele dossier should be believed and would be for the most part correct; and that it was more likely to be right than wrong. The reason I took this attitude is that all three heads of US intelligence agencies had included Steele’s dossier as an adjunct to their report to the President.

That is utterly extraordinary and represents a massive vote of confidence in Steele’s work. The heads of the FBI, CIA and NSA are not in the habit of including tabloid sensationalism in their official reports, whether as an adjunct or anything else. I do not wish to waste too much time on this, as the report was self-evidently believed to be credible; but contrary to lazy reporting by CNN and others, the dossier was not rubbished by the same agency heads who included it. They said they had not verified the whole of it. That is all. And, again, since parts of the work were not independently verified, its inclusion by the IC represented a colossal vote of confidence in the credibility of Chris Steele (if you are reading this sir please get in touch with me. You are a patriot, may God bless you).

Tracking Planes (for No Fun and No Profit)

flor moscow.jpg

Very well then. I posted on Twitter that ‘unverified’ and ‘unverifiable’ are not synonymous and I started looking for ways to verify the dossier. The first clue was that Cohen did not deny it. Rather, he gave fatuous and whataboutery excuses. To Rosie Gray of the Atlantic, Mr. Cohen stated that he had gone to Los Angeles from the 23rd August onwards. He then tweeted:

Feeling like a celebrity debunking the Russia connection…all thanks to my daughter’s Instagram

Radar Online is owned by Pecker, of ‘Trump loves Pecker’ fame. The piece tweeted by Cohen, who presumably handed Radar their lines, stated that there was “proof” that Cohen never left the USA in August based on metadata from his Twitter account:

Metadata from Cohen’s account confirms that he never posted from outside the United States in the entire month of August.

The piece also contains video of Cohen on the Sean Hannity show, which is instructional. Cohen says he has never been to Prague and ‘proved’ it to Mr. Trump by showing Mr. Trump his passport. Cohen also points Hannity to the ‘other Michael Cohen’ jumped on by CNN as ‘proof’ that Steele had got it wrong.

Breaking Down Cohen’s Statements and Inferring Why He Made Them

Cohen therefore wanted us to believe that:

a) his social media accounts could prove his whereabouts

b) the second Michael Cohen being in Prague meant that he himself could not also have been in Prague

c) The lack of a stamp in his passport proves he could not have left the country.

Taking as my starting point that Chris Steele is likely correct, I would treat all of the above as likely true on the face of it, but actually false in implied meaning; so that let us assume yes, a different Michael Cohen was in Prague; let us assume that Michael Cohen’s current passport has no stamp for Prague or out of the country at all in the month of August and September; and that his social media accounts do not have any nice easy ‘Sent from Prague’ or ‘sent from Moscow’ geotagging on them.

None of that would, however, disprove the allegations in the Steele dossier, which is the implication behind making those assertions.

It is disappointing that American media would treat the one as proving the other. CNN spoke with reverence of a ‘second Michael Cohen’ as if that somehow meant the first one could not have left the United States. A Twitter account I now believe to be a peddler of disinformation tried to feed out the line that Cohen had an Israeli passport with a single day’s difference, explained by the time difference, and that he used this. Now, it is certainly possible that there is only one Michael Cohen who was in Prague on an Israeli passport rather than an American one. But ‘Michael Cohen’ is a common enough name. And the dossier alleged that Cohen was meeting Russian intelligence in order to arrange payment for hackers of the election.

It is a fact, indeed, that a Russian hacker, Yvgeny Nikulin, came to Prague to be paid on October 5th and was picked up there by Cezch intelligence on a red warrant from the FBI.

How likely is it that a lawyer representing Donald Trump and meeting with Russian intelligence, to pay off hackers that had attacked the US election on behalf of Russia, would have any stamps in his passport of any country? He would be trying for secrecy, and even if Mr. Cohen is a risible fool, as he is, adamantly denying he had ever been to Prague:

I have never been to Prague in my life. #fakenews

and then telling the Wall Street Journal that he had been to Prague in 2001; even if, as I say, Mr. Cohen was a bombastic fool, Russian intelligence were not fools, and they would, presumably, take good care to get Mr. Cohen into and out of the United States without any stamp in any passport he might legitimately own; and with no record of exit or entry into the United States.

Mr. Cohen’s Story Is Provably Untrue

Cohen’s story unraveled immediately, in so far as he contradicted himself to the Wall Street Journal about ‘ever’ going to Prague. But perhaps he forgot, even though Prague is a very lovely city. Being generous, Mr. Cohen is a well-traveled man, who might indeed have forgotten a trip some 15 years ago. However, he made other, stupid slip-ups. He told Rosie Gray at the Atlantic:

Cohen said that he was in Los Angeles from the 23rd through the 29th of August, and that the rest of the month he was in New York.

However, Cohen’s own timeline includes a tweet that shows that on the 24th August he was at Newark airport.


I have repeatedly asked Rosie Gray why she has not amended her story to note Cohen’s statement to her is false, but she has not yet responded.

Why would Cohen lie about this? He also makes strange statements on how it can be ‘verified’ that he was where he says he was later in the month; calling other people, etc. Frankly all Mr. Cohen would need to do would be to produce some credit card receipts or photographs of himself in the US. He has not done so, according to other journalists also working on substantiating the dossier.

All Thanks to My Daughter’s Instagram

Mr. Cohen told the world that we should examine his adult daughter’s instagram account, so I did just that. With the help of various people on Twitter, I was able to get precise dates on some of Ms. Cohen’s pictures.

One such picture she posted  showed that she boarded a flight back to the United States on January 2nd. (If it was indeed ever deleted, it is now back online). Prior to that, she had been in St. Bart’s. This was mildly interesting to me since Russians, and particularly Chelsea’s Roman Abramovitch, descend on St. Bart’s every Christmas.

insta pic J.jpg

The picture was taken from a window seat and showed a distinctive marking on the wingtip. I asked on Twitter if pilots or other aviation professionals could help me identify the plane. Immediately a number came forward to state that it was a Gulfstream, which they could tell by the positioning of the wing flaps relative to the rest of the wing. They further identified the plane as a G5, specifically. Shortly after that, somebody found the plane and found the tail number. It was N999LR.

I then researched the ownership of this plane. It was registered to ‘Beauty LLC’. Through ordinary flight trackers I could determine that she had flown from St. Maarten to HPN, a small airport in Westchester. There was quite a bit of diving into ‘Beauty LLC’. At first they appeared to be something to do with Cohen, as they were registered in the same building as some of his companies. But Beauty LLC owned several planes in its fleet. I started to wonder how Mr. Cohen, doubtless a successful lawyer, could be rich enough to own not one but several private jets.

The small airport where the jets live, HPN, is next to a ConAir facility and also, I am told, although I have not yet checked this out, one of Donald Trump’s golf courses. It appeared to be more probable that the planes were owned by ConAir and that (although common) the ‘LR’ at the end of the tail number might stand for ‘Leandro Rizutto’, the owner of ConAir.

I put this question to Mr. Cohen on Twitter and his reply was most helpful. Showing him a screengrab of his daughter’s  Instagram picture, I asked him how often he flew Mr. Rizutto’s planes out of the country. I also asked Cohen where he was between August 19th and August 22nd. He had given wrongful information to Rosie Gray that he was in LA from the 23rd August, when in fact, his TL showed him tweeting from Newark on the 24th. His timeline on Twitter also geotagged one tweet late on the 19th August and another on the 22nd August. I asked him:

You know when you told us all to look at your daughter’s instagram? We did. Where were you August 19-22?

Mr. Cohen replied:

. in Los Angeles…verified by the press. This picture was taken in January, 2017

That was fascinating. I had tagged my tweet #LeandroRizutto and Cohen did not dispute my identification of this plane. Furthermore, his tweet was utterly perplexing to me. He said that his whereabouts “August 19-22” had been verified by the press, but they had not been. His (false) statement to the Atlantic only claimed (wrongly) that he was in LA from the 23rd onwards. He had tweeted from Newark on the 24th. Why would Cohen say that? on August 19th, late, he was tweeting with geolocation from Manhattan, NY (and therefore could not have been in Los Angeles). On the 22nd, again, he is geolocated by a tweet from Manhattan,New York. So he was not “in Los Angeles” nor could “the press” verify something his own Twitter adamantly contradicted.

Based on my knowledge of men in general, I would venture to argue that they are creatures of habit. If Mr. Cohen, who in some way seemed to be linked to Beauty Central, had flown Rizutto’s G5 (assuming my guess was correct, and Cohen did not contradict it) back from vaycay in St. Bart’s, was it not probable he’d flown with him before?

Planes, too, loomed large in the overall story of the Trump camp’s alleged collusion with Russia. Dimity Rybolovev’s plane had landed for what quite clearly seemed to be tarmac meetings with the Trump camp in Charlotte, NC, on Nov 3; Las Vegas, Nevada; and . Rybolvev’s plane MKATE had also been parked in the Hamptons when the Cohen family appeared to be in residence there.

Asking Mr. Cohen About A Flight to the Bahamas, August 19-22

I pulled the flight history for two planes that were still active in the same fleet. N999LR – a G5, the plane that appeared in Mr. Cohen’s daughter’s instagram – showed a curious gap in its flight history in August, all the way through to late September, of which more later.

N555LR, the G4, had however flown to the Bahamas on August 19 taking the flight path HPN-FOK-Nassau. She returned August 22nd the same route. This broadly fits the gap in Mr. Cohen’s Twitter timeline, although one tweet shows as being geolocated in Manhattan after the outbound flight. I asked Mr. Cohen if he had been on that flight. He had answered me that he was in Los Angeles on 19-22nd, but his Twitter timeline shows he was not. I put this question to him whether he took either flight to or from the Bahamas in that period. He has not responded and later blocked me on Twitter.

I do not assert that Mr. Cohen was on that flight. The allegation against him made in the dossier is, however, a legitimate one for journalists to investigate. I believe that the issue of passports and ‘another Michael Cohen’ is a red herring. Mr. Cohen is accused of having met with Russian intelligence, and it is highly likely that were this to be true, the Russians could get him in and out of America without a passport being stamped at all.

My theory of how this might have happened is as follows. Mr. Cohen would have taken the flight out, possibly being picked up in West Hampton at the FOK stop. In the Bahamas, he would have disembarked on the tarmac and boarded another plane – rather as MKate arranged tarmac meetings. This plane would have flown him to the EU or to Russia, where he would either have not disembarked at all, meeting somebody on board the plane, or disembarked using fake documents provided by Russia, diplomatic cover, a bribe to a guard at a friendly private airport or any number of other ruses by which a state spying actor could disembark an asset. He would have arranged some kind of payment, as the dossier alleges, and then got back on the plane, landed in Nassau, and taken N555LR back to FOK and/or HPN.

Indeed, the limits on this analysis are only bounded by two geolocated tweets from Manhattan on the 19th and 22. Had Mr. Cohen handed his phone to somebody else to place those tweets for him, he could have boarded the plane on the 19th and spent longer in the EU or Russia, returning to Newark airport on the morning of the 24th in order to catch his flight to Los Angeles.

I strongly suspect that Mr. Cohen did really have the use of his own phone by the 24th, if only because he made that obvious error in stating that he had been in Los Angeles on the 23rd.

Later Mr. Cohen backtracked to me blustering that Newark was an airport and that he had flown Virgin to his daughter in LA – presumably verifiable. But he told Rosie Gray he was in Los Angeles on the 23rd and he asserted to me he was in Los Angeles on 19-22nd. What plane did he take there on the 19th, then? If I were the FBI I would ask that question.

Hiding the Planes, Or Planes in Plane Sight?

Separately to the issue of Mr. Cohen’s whereabouts as asserted vs his Twitter timeline, August 19 – 24th inclusive, I had become interested in the planes of Beauty LLC.

Again, I make no assertion that Mr. Cohen did indeed fly to the Bahamas on August 19-22nd on N555LR. But as a journalist, I am interested in exploring the theory of how it might have happened, and if so, what that implied.

In the entirely theoretical situation in which this fleet of planes carried Cohen to the first leg of a clandestine meeting with Russian intelligence they would repay looking at.

So I looked.

What follows owes a great deal to a number of patriotic aviation professionals current and former who assisted me on Twitter and whom I will credit in an update to this article if I receive their permissions.

The first thing noted by almost everybody was that there was an improbably large gap in the flight history of the GV, N999LR. This gap covered August and September 2016. Those are, of course, the dates that the Steele dossier alleges there were meetings with the Trump camp and Russia.

I make no allegation here of malfeasance on the part of Beauty LLC, its owners, or anybody else. I plan simply to report the unusual facts that I found in public records and to allow intelligence professionals and mainstream media journalists with more resources than I have to investigate whether or not what I report here has a simple and innocuous explanation, which it may well do, or not.

The flight histories of all planes in the fleet were made private soon after I started asking public questions about them. That could easily be, of course, simply because private jet owners and charter users prefer privacy. Nonetheless I continued to look.

Aircraft are identified by a number of markers. The N-number, which can be changed; the serial number of the aircraft; and the S-code number or number of the transponder.

Looking at the current and former fleet of Beauty Central LLC I discovered the three following odd things, which I will the evidence of in a postscript in order to get to the meat of my possibly relevant (and possibly not relevant) discovery:

  1. The N-Number N450GA, a G1V, was shown as registered to Beauty Central and then to two other registrants. All of those planes had different serial numbers listed in the database. All, however, shared the identical S-Code transponder number.
  2. The N-number N33LR was used in Beauty Central for two entirely separate planes; a GV with serial number 5031, and a GIV with serial number 1495. However, these two entirely separate planes were listed in the database as sharing one S-Code transponder number.
  3. A GV with the serial number 5031 was listed as registered to Beauty Central LLC on August 3, 2016. Its N-number was N795BA. However, this GV 5031 had a **different transponder S-Code number ** than when GV 5031 was named N33LR, see above.
  4. N795BA’s last trackable flight was on August 12, after which, she goes dark.
  5. When one of my volunteer patriot researchers, who had first seen N450GA listed in Beauty Central LLC’s fleet as a former plane of their with status ‘inactive’ looked again, she found that it no longer appeared for her in the list:

fleet reg.jpg

  1. N795BA –  the number no longer appears in the FAA’s database for 5031. A pilot described it to me as ‘weird as hell’ that this deregistered number was not the FAA database. They are meant to stay here.

5031 database.jpg

795BA not assigned J.jpg

This was sufficient to start tracking every plane in the fleet, current or former. To be clear, as I have said, there may well be an innocent explanation. But it is at the least unusual to have two different aircraft sharing the same transponder S-Code – and for one of those aircraft, the GV, serial number 5031, that became N795BA after being N33LR, to switch transponder numbers between incarnations.

Since  I had a gap in August from August 12th on in the G5(s) N999LR, N795BA and N33LR, I chose to look – and was alerted to – the flights of N450GA.

Readers who are not already dead from boredom will recall that what was odd about N450GA is that although the N-Number appeared to leave Beauty Central’s fleet, and be assigned to two other companies’ planes with different serial numbers, the S-Code transponder number was always the same. Furthermore, N450GA showed flights in the same period that the GV/s of Beauty Central – N999LR and N795BA – showed no flights.

Therefore I will report what trackers showed N450GA did in that period. I make no allegation that Mr. Cohen or Beauty Central had anything to do with these flights, but they are worth investigation based on my reporting about what appears to be unusual data on the registrations of the fleet.

On August 12, she flew from Detroit to Halifax. On August 13, from Halifax to Lyon, in France. On August 14th, she flew, according to records, from just outside Florence to just outside Moscow. (There does not appear to be any record of the flight from Lyon to Florence). And on August 15th, she flew from Moscow to remote Wyoming, to Bow National Forest.

flor moscow.jpg

Moscow Wy.jpg

UPDATE: a pilot tells me the plane did not stop in Wyoming but flew to San Jose:

Probably not significant, but N450GA does not end in Wyoming on 8/15. In my data, the track is lost temporarily (2245Z-2330Z) 45,000 ft above Provo, Utah, picks up again above Nevada and lands in San Jose, CA.

That is, thus far, what my researches have shown. It certainly does not prove Mr. Cohen went to the Bahamas or met with anybody in Moscow. But as he was not where he said he was, and as he is keen to pretend that Twitter data can alone prove whereabouts, I believe that it is worth asking about.

Mr. Cohen’s Apparent Relationship With Pro-Russian Twitter Trolls Fits One Allegation Made in the Dossier

When I started talking to Mr. Cohen on Twitter asking about his whereabouts on August 19-22, immediately a bunch of fake Putinbot accounts, some with Ukranian IP addresses, started to @ me. Mr. Cohen would also himself RT these accounts. In particular they started making excuses for Cohen‘s whereabouts. One Russian troll RTed things like this. The dossier alleges that Mr. Cohen paid a company that ran a bot net out of Russia, which infected Democrats and others with viruses. He certainly regularly retweets Putinbots who seem to know him well, and to be directly connected to the Trump administration.  He said to me he would meet me around the first week of March. Others tweeted and instantly deleted that Cohen was at a Chris Christie fundraiser when he said he was in LA.

goyd .jpg

This same Putinbot account tweeted:

is an amazing man who has done an amazing job! lots of behind the scenes work getting us President Trump!

Under this, there was a gif of Vladimir Putin clapping.

If Mr. Cohen comes back to me with a substantive reply on August 19-22 that is not wrong on its face, I will update this post.


A few images relating to plane registrations discussed above. More will be added later.


5031 is N795 BA.jpg

1495 is N899AL and N33LR.jpg

N450GA has the transponder 51271263 – serial 4189

avaiation db.jpg

Now N555LR, Serial number 4189, but a different transponder number: 51611410

S code 51611410 n555lr J.jpg

N999LR, serial number 5481, Mode S Code 53372434

N999LR 5481 53372434 J.jpg

N33LR was used as for a GV, 5031, and a G4, 1495

N33LR as 1495 and also as 5031.jpg

But both of these aircraft shared the same transponder number – 50712200 – when they each bore this N-Number. Sources say this is oddG5, 5031, N33LR, 50712200 J.jpg33LR 1495, G4, serial 1495, 50712200 J.jpg

As N795BA, the GV with serial number 5031 had a different transponder to this: now it is  52545262795BA 08 03 2016 5031 J.jpg

And as N899AL, the G4 with serial number 1495 ALSO had a different transponder number – now it’s Mode S Code 53063316

1495 is N899AL and N33LR.jpg

All pretty strange, as is the simultaneous delivery date of one plane to (apparently) two companies:

450 delivery .jpg

As I have written, there may be a perfectly simple explanation for all of it, but I believe it is worth journalists examining.

Dear Mr. Putin, Let’s Play Chess

Patribotics hopes to expand reporting and commission other writers. If you would like to donate, there are buttons around the site, or you could make a contribution here. 


I have an overarching theory of Russia’s attack on America and the West. Here it is.

There have not been a series of attacks on America and Europe by Vladimir Putin. There has been one single operation; it is the same operation.

By 2008, possibly even earlier, according to John Schindler, a National Security expert formerly at the NSA, Russia had placed moles in the highest levels of US counter-intelligence. I take this as my starting-point, because all the subsequent facts bear it out.

Mr. Putin always wanted to use the strength of the West as a lever to attack it, because Russia is weak and poor. So he did, and he used a very old-fashioned and effective method. Spies inside the IC. He also believes in propaganda and mind-games. He uses them on the West, he uses them on Russians, in Russia.

Hillary Clinton correctly noted that Putin rigged his own election in 2011. This, apparently, is when he started to hate her.

By the 2012 election, Russia’s desire to interfere with American democracy was already there, but it as yet didn’t have the tools to succeed in that aim. I deliberately omit some of the timeline here in order to get to the bigger points in the story, but I will return to it later.

Russian moles placed inside the NSA recruited Edward Snowden. A letter between the FSB in Cuba and SENAIN in Quito held in a file marked ‘Assange’ in London, dated 4th April 2013, the day before Snowden sent his only email on legalities, April 5th 2013, and before Snowden took his uppermost level documents during the rest of the month of April, proves conclusively that Mr. Snowden is a Russian agent who acted on instructions from Moscow. After Snowden fled to Hong Kong, he escaped from there by an Ecuadorean travel document arranged by Julian Assange, and tried to get to Cuba.

Snowden is a low-level IT idiot. He had help taking what he took from the NSA. I recommend the NSA review their case files and pick up the Russian moles within their agency. Snowden used stolen credentials, but it is almost certain that he received a piece of removable media like a memory card from his Russian handlers. He took military secrets. And by “he” I mean the FSB.

In 2013, after the Russians received all of the Snowden files, and China some of them, most press coverage concentrated on the traps that terrorists and Russian spies were able to avoid. They missed that Russian hackers would now proceed to use the NSA’s tech offensively.

In 2013, the Russians briefed their army of hackers.

In 2012/13, a young Russian hacker called Yvegeny Nikulin, then 26, was using Snowden’s NSA techniques – stolen credentials – to hack LinkedIn, Dropbox and Formspring.

Formspring, which shut down late 2013, was the app that Anthony Wiener used for his sexting.

According to John Schindler, “a hacker”(Nikulin) was picked up in Prague, October 5th, on suspicion of interfering with the DNC and the Democrats in America’s election. He had been sought on an FBI red warrant.

He is being extradited to the United States (if Jeff Sessions, a Russia partisan who recruited the spy Carter Page into Team Trump, does not try to stop it)  over strong protests from Russia. The DoJ announcement on his indictment mentioned not only Formspring, but ‘a count of conspiracy’ and ‘sending a code to a computer’.

It was three years later. Nikulin was now 29.

On Oct 26, Rudy Giuliani joked on television about a big surprise coming in the election that would turn things around for Trump.

On Oct 28, Director James Comey of the FBI announced that more as yet unexamined emails had been found on an old laptop of Mr. Wiener’s.

Mr. Putin, it is my surmise that some of the Russian moles inside US counter-intelligence work within the FBI’s criminal division, and particularly, within the New York field office.

It is my surmise that your hacker, Nikulin, sent a command buried in a virus earlier transmitted by Formspring to ‘wake up’ that old computer and either find, or place, emails from Huma Abedin on to it, and that you then contacted your moles inside the NYPD/  FBI NY and told them to “suddenly find” emails that, the expectation was, could not possibly be combed through in time before the election.

Your agents within the FBI Field Office then did a number of additional things.

Firstly, they illegally spoke to any friendly press and the Trump campaign about putative ongoing criminal investigations into the Clinton Foundation and the matter of her email server.

They told Fox News’s Brett Baier that Hillary Clinton “Would soon be indicted” and this was reported on TV, and then retracted after the damage was done.

They told your agents of influence, Rudy Giuliani and X Kallstrom, that ‘a group of active FBI agents’ had demanded Comey release his letter. Both of them stated as much, Mr. Giuliani specifying ‘active’ FBI agents.

They used your agent General Flynn – I scorn to use ‘of influence’ in this case, Flynn knew what he was doing – to say on live television that active FBI agents were talking to him about an going ‘criminal investigation’

And they told the New York Times that the FBI ’Saw No Clear Ties to Russia’ in the matter of the Russian bank servers. And the New York Times printed it, even though they, the Times, knew it was false.

Before the election, only I reported, correctly, that the FBI’s Counter-Intelligence division in Connecticut had obtained a FISA warrant for ‘any US persons’ relating to the two banks involved in the Trump Tower server; Alfa Bank and SVB Bank.

So your moles in the NSA recruited Ed Snowden in 2012/2013.

You got to work using NSA hacking techniques. Stealing legit credentials features often. You hacked Wiener in 2013 via Formspring. You waited.

You used your moles in the FBI Field Office and, in 2016 at the right moment, you woke up Wiener’s laptop via the ’Snowden Virus’, found or planted old emails on it, and suddenly had the FBI Field Office “find it” and then lean, hard, on Comey to produce the letter he did.

Your RIS moles in the FBI then engaged in some agitprop with Giuliani, Flynn, an innocent Fox News, a not-innocent New York Times who deliberately used its prior authority to rubbish Franklin Foer and David Corn’s Alfa Bank server reporting, to make absolutely certain that “Trump-Russia” was suppressed and Clinton was defeated.

Your agents in the FBI Field Office in New York did, however, make one incredibly stupid mistake. A coder named Dustin Giebel caught it and he flagged it up to me.

The trouble with hiring young and foolish men to flood twitter and Facebook, to act as your hackers and so forth, is that they are young and foolish. Trolls gonna troll.

In this case, the Twitter account @FBIRecordsVault ceased being dormant for the first time in two years. It went on a little tweet storm. The last tweets were attacks on Hillary Clinton with a chaser of an attack on Eric Holder, the former AG. The first tweet, however, was a tweet praising Fred C. Trump. (Donald Trump has often said that his father is his only hero). It used language about Mr. Trump senior that was not only unlike any FBI descriptors ever used before, but had been lifted from Donald Trump’s commercial, company website.

When I saw that, I was overwhelmed with joy. It was not the severity of the offense, it was its traceability. Somebody sat at a keyboard and typed those tweets. Identifiable people. An FBI statement wrongly said that these were automated responses to three FOIA requests. Not true. Some identifiable person ordered and gave that statement. When I filed a private FOIA lawsuit with Mark S Zaid and Bradley Moss, we wrote the questions in ways that would be difficult to avoid answering. Who wrote those tweets? How many agents knew of them? What records exist of FBI agents or staff visiting the Trump commercial website to lift the descriptor of Fred Trump? What internal investigations exist into FBI agents leaking criminal investigations to Flynn and Giuliani? Do they feature any of the same agents who composed, knew of or authorized the FBI Records Vault tweets?

Days after our FOIA requests landed, Mr. Giuliani abruptly withdrew from his application to be Secretary of State. A week after our lawsuit was announced over non-response, the Department of Justice announced an investigation into more or less every matter named in our lawsuit, including the FBI Records Vault’s beautifully traceable tweets.

Even little pawns, like Twitter accounts, can become Queens, if you let them reach the 8th square, Mr. Putin.

So there you have it. Part One:

Russia has moles inside the IC, several of whom are not yet caught.

The NSA moles recruit Snowden.

Assange Ecuador and Russia give Snowden orders, and removable media to scrape intel and military secrets.

Ecuador exfiltrates Snowden to Moscow.

2012-2013, Russian hackers are given all of the NSA techniques. Nikulin hacks Formspring and Wiener. He plants a virus in his laptop. He waits and wakes it up in October.

Russia’s FBI Field Office moles “suddenly find” the emails, perhaps even placed on that computer, at a crucial juncture.

Russia’s FBI Field Office moles pressure Comey into releasing his letter, and thereby spin the election to Trump.

How am doing so far, Mr. Putin? You know, for a woman. And an amateur.


Or, James Comey’s Counterintelligence FBI vs Rudy Giuliani’s NY Criminal FBI

There are three parts to this theory, like a good play, and narratively, the next section ought to be about your spy ring in the University of Cambridge, your hacking of Facebook and Twitter and your propaganda wars across Europe, but as I have learned from you one must play to the audience, and I think American readers are mostly terrified that Director Comey will throw America under the bus and cover up your coup.

I don’t agree. Here is my take.

Before the BBC and the Guardian confirmed my HeatStreet exclusive on the FISA warrant issued in October, I was a lone voice in the wilderness on its existence.(And may history record that our conservative-leaning website had that scoop). When the writer Jason Leopold of Vice asked if Trump had been under investigation in September he got a GLOMAR response: ‘We can neither confirm nor deny the existence of any such records’.

GLOMAR responses are named for a submarine and can only be given if a matter of national security is at stake. Mr. Leopold announced he would sue, for why should a concluded investigation be a matter of national security? I told him, with little credibility then and tons now, that the GLOMAR response made sense because there is an ongoing investigation into Mr. Trump and his associates on a matter of national security.

Democrats, including Democrats in Obama’s government who ought to know better, have asked if James Comey had ‘a double standard’ over the investigations into Clinton and Trump. Yes; he did, and he does. He may talk about a criminal investigation. He may not talk about a current, ongoing investigation into espionage, bribery, money laundering and so forth that affects US national security.

Over the summer and early autumn Democrats wrongly stated that the FBI / Comey had said they were not looking into Roger Stone and had declined to investigate Roger Stone, who announced his links to Wikileaks. This came from a Senate hearing and Mr. Comey’s testimony to Democrat Rep. Nadler. Rep. Nadler asked if Stone’s boasts constituted special circumstances, Comey said “I don’t think so.”  It must have been frustrating for Comey. He was GLOMAR-ing Congress right to their face and they did not understand what was going on.

Subsequently, the heads of NSA, CIA and FBI “Glomar”ed, in no particular order, two Congressional open Russian hack hearings, one closed briefing to the House of Representatives, and in the case of the CIA’s Director Brennan, Chris Wallace on Fox News Sunday.

Furthermore, although Comey is a natural Republican he appeared to have played it straight. In the summer he cleared Clinton of a criminal standard of negligence. In the fall, he had been sandbagged by Russian moles inside the FBI Field Office in New York. But I do not believe Mr. Comey surrendered wrongly to ‘pressure’. He knew the moles had effective kompromat – the emails your hacker Nikulin planted or woke – and that were he not to revise his testimony in the light of new evidence, his far more important natsec investigation into the traitor, Donald Trump, would be discredited. He then worked around the clock to clear Mrs. Clinton.

All evidence shows that James Comey is pursuing your assault on America, Mr. Putin, with the fearless I expect from a counter-intelligence patriot. In June, he named Donald Trump to a FISA court as an agent of Russian influence. In July, he did the same. Both times, the court turned him down. In April, Mr. Comey received audio of Russian money financing Trump – that’s the same time that Paul Manafort joined the campaign to run it. He formed a joint CIA/FBI /Treasury task force to look at the money.

Over the summer, US counter-intelligence met with Chris Steele because they had already got their own independent information that he was correct. On October 5th, your hacker Nikulin was picked up on an FBI ‘Red Warrant’ in Prague which means Director Comey had put a top priority on getting him some time before. Armed with whatever Nikulin spilled – and, Mr. Putin, he fainted when they caught him – Director Comey went back again, to a new FISA judge, on October 15, and he got his warrant.

Every indication is that Director Comey is not only independent but plays better chess than both you or I, Mr. Putin. (Can I call you VVP? I feel like I know you). For in September, the FBI did not join the ODNI statement about Russia’s intent being to aid Trump. Why not? Because while the NSA and CIA had heard the tapes of Americans in Trump’s camp working with your officials, taking your bribes, disseminating your information, Director Comey had not yet received his warrant. In order not to give Trump’s defense and the defense of his camps anything to go on, the FBI was Caesar’s wife. It did not act on surveillance of US persons abroad offered by the UK, Estonia, BIS, and Lithuania until it got the warrant. Director Comey does not want any ‘fruit of the poisoned tree’ defenses (no pun intended, Mr. Putin, and may I remind you sir that it is bad form to kill one’s opponents in chess. It’s cheating).

The FBI ‘changed’ its stance on the final Russian hacking report because they had, by then, listened to the tapes. Legally. Under a warrant.

The FBI has, fortunately, always employed the principle of compartmentalization. The FBI Counter-Intelligence division in New York kept their dealings secret from the criminal field office in New York.

But, some readers will say, Russian moles in the NSA – OK, it’s a worthy target. Why would the Russians have sleeper moles in a mere FBI criminal field office, even if it is New York?

And the answer to that is simple; a corrupt FBI NY Field Office guards the interest of Russian mobsters, allows them to launder their money through Trump’s “failing” casinos and building projects, makes sure that Trump being paid double for a Florida house doesn’t get investigated, allows paedophile Jeffrey Epstein to keep a mansion in New York City,  ensures that Trump’s criminal taxes don’t get investigated, and sits hard enough on the NYPD that Trump can commit crime after crime in plain sight, socializing with the FBI’s most wanted mobsters, and never get charged with a damn thing. It ensures that Manafort and Stone can live in Trump tower, that Cohen’s trips on Russian-Registered private jets get washed. It allows the “FBI” to be next to the media, including the New York Times and Fox news, and act as un-named law enforcement sources. The FBI Field Office in New York wasn’t just infiltrated by your agents to scupper Hillary Clinton, Mr. Putin. It was there to guard the money of your billionaires and to cover the tracks of your handlers in the Russian embassy and consulates. That’s why the dead security guard at the Russian consulate never got investigated. You have a lot of people in New York, and they are very affable, pleasant folks, too. I’ve met a couple.

But let’s get back to the game. Your trouble is that Mr. Comey is not for sale. You have nothing on him. Let’s remember your hacker Nikulin, whom Comey was chasing since who knows when. A few days ago Comey picked up another of your hackers in Spain as he was about to board a plane to France with his wife. You yourself, through your propaganda sites, connected this to the DNC hack. You had the identical reaction that you did to Nikulin being picked up. You threw a rather beta male hissy fit. Stanislav Lisov had coded a bank virus. But there’s rather more to it than that. Lisov fits the hacker narrative in the Steele dossier. He needed paying. He has Gazprom connections, and he has a scary interest in satellites, which you, Mr. Putin, would like to weaponize against the United States.

But you know, the FBI caught him, none the less. Comey caught him. They know about the US company he formed, how it transferred to Oregon from Florida, and how money was funneled through a failed ‘secretive startup’.

The white knight is outplaying the black knight and all his moves indicate that.


Is it really worth chronicling the rest of the match? You, Mr. Putin, have relied on big data and on propaganda, including an army of trolls. It is plain to UK intelligence that you have a Russian spy ring at Cambridge University; that you may have combed through and stolen, illegally in the EU, the Facebook data of hundreds of millions of Americans; that you use propagandists SCR and combined GSR and SCR to form Cambridge Analytica; and that you used Twitter’s database to create a bot army.

It’s plain from both money and propaganda that Steve Bannon is your tool, your agent of influence; that you work through Nigel Farage and so on; that RT and Sputnik are not merely spy centers, but money-laundering tools; and that you have used ‘Big data’ of Cambridge Analytica (personality types plus propaganda from SCR) to poison the minds of Americans and indeed voters across the West. You have your hackers sitting on 4 Chan, where the ‘prank’ on the Brexit petition involved Russian server addresses.

But you are a careless player, Mr. Putin. Scrubbing archive.is of tweets wherein @GenFlynn pushes your hideous propaganda is pretty dumb. Scrubbing Michael Cohen’s phone data is also dumb, when we have him and his daughter waltzing around Europe and the Caribbean in Russian-owned private jets. You live by the troll, sir, then you die by the troll. Your propaganda and how you pay for it is all traceable. America has its hackers, too.

The DoJ inquiry has fired the first shots. It’s named Erik Prince. It knows you have the Mercers, it knows about Bannon, it knows about your moles in the NYPD. You see sir it all goes back to Nikulin. The NYPD ‘found’ that laptop on October 3rd.  And on October 5th, Nikulin comes to Prague for payment.

But Mr. Putin, James Comey’s friends were waiting there to turn your black pawn into our white queen. And whenever Flynn tweeted Russian agitprop, the FBI and the NSA had a URL.

You sir, are like a chess player in possession of all his many, many pieces, but boxed in, in the back row, and despite having them all arrayed on the board – Jeff Sessions as Attorney General even though he recruited the spy Carter Page into your teamdespite all of that, none of it will matter. White has you trapped. You and your ally Iran. Checkmate came from the Persian phrase, “Shah Mat”.

The King is dead. And I didn’t even have to bother with Sessions, Page, Manafort, Stone, Flynn, and all the SIGINT that we have on them, the deals they made with Wikileaks to receive intel that you hacked and phished and planted with your viruses.

Impeachment of Mr. Trump is on the way.

What you should ask yourself is if it is in Russia’s and your own best interest for you to keep deceiving an angry America? For when the trials do start, the back-covering, the rage, the scrambling, the desperate need to seem harder on your oligarch friends than the next politician – this could harm not only you and your allies but the next generation of Russian kleptocrats too.

It would surely be better to give it up now, release some of that kompromat now, push Trump out, and face the anger of a relieved United States after Trump resigns.

But perhaps you cannot.

Perhaps Mr. Putin, you have played yourself right into a corner.  After all, those who know what komprat you hold on them also know that you hold it. And they can collaborate with the FBI.

Chess is a good game, sir.

But the reason Russians are so poor is that you can’t stop playing it.