I was digging around some servers that run webdav on them and found a directory that had a shell.php , turns out its a working UDP flooder. (link below)
http://212.10.160.148/webdav/shell.php

That's not the weird thing though, i viewed the source and noticed that the image was uploaded to a different host ( http://authkeys.com/sh3ll/logo.php )

I checked out the sh3ll directory but it was empty, so then i went to http://authkeys.com/ , this image appeared.

Is this real ?