RFI Injection

This is some google dork for RFI injection. Later, i'll write how to make RFI Injection. Don't forget to come to this page again.

Joomla and Mambo
/components/com_flyspray/startdown.php?file=
/administrator/components/com_admin/admin.admin.html.php?mosConfig_absolute_path=
/components/com_simpleboard/file_upload.php?sbp=
/components/com_hashcash/server.php?mosConfig_absolute_path=
/components/com_htmlarea3_xtd-c/popups/ImageManager/config.inc.php?mosConfig_absolute_path=
/components/com_sitemap/sitemap.xml.php?mosConfig_absolute_path=
/components/com_performs/performs.php?mosConfig_absolute_path=
/components/com_forum/download.php?phpbb_root_path=
/components/com_pccookbook/pccookbook.php?mosConfig_absolute_path=
/components/com_extcalendar/extcalendar.php?mosConfig_absolute_path=
/components/minibb/index.php?absolute_path=
/components/com_smf/smf.php?mosConfig_absolute_path=
/modules/mod_calendar.php?absolute_path=
/components/com_pollxt/conf.pollxt.php?mosConfig_absolute_path=
/components/com_loudmounth/includes/abbc/abbc.class.php?mosConfig_absolute_path=
/components/com_videodb/core/videodb.class.xml.php?mosConfig_absolute_path=
/components/com_pcchess/include.pcchess.php?mosConfig_absolute_path=
/administrator/components/com_multibanners/extadminmenus.class.php?mosConfig_absolute_path=
/administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path=
/components/com_mambatstaff/mambatstaff.php?mosConfig_absolute_path=
/components/com_securityimages/configinsert.php?mosConfig_absolute_path=
/components/com_securityimages/lang.php?mosConfig_absolute_path=
/components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path=
/components/com_galleria/galleria.html.php?mosConfig_absolute_path=
/akocomments.php?mosConfig_absolute_path=
/administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=
/cropcanvas.php?cropimagedir=
/administrator/components/com_kochsuite/config.kochsuite.php?mosConfig_absolute_path=
/administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path=
/components/com_zoom/classes/fs_unix.php?mosConfig_absolute_path=
/components/com_zoom/includes/database.php?mosConfig_absolute_path=
/administrator/components/com_serverstat/install.serverstat.php?mosConfig_absolute_path=
/components/com_fm/fm.install.php?lm_absolute_path=
/administrator/components/com_mambelfish/mambelfish.class.php?mosConfig_absolute_path=
/components/com_lmo/lmo.php?mosConfig_absolute_path=
/administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosConfig_absolute_path=
/components/com_mtree/Savant2/Savant2_Plugin_textarea.php?mosConfig_absolute_path=
/administrator/components/com_jim/install.jim.php?mosConfig_absolute_path=
/administrator/components/com_webring/admin.webring.docs.php?component_dir=
/administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path=
/administrator/components/com_babackup/classes/Tar.php?mosConfig_absolute_path=
/administrator/components/com_lurm_constructor/admin.lurm_constructor.php?lm_absolute_path=
/components/com_mambowiki/Mam***ogin.php?IP=
/administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_live_site=
/administrator/components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=
/components/com_cpg/cpg.php?mosConfig_absolute_path=
/components/com_moodle/moodle.php?mosConfig_absolute_path=
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_path=
/components/com_mospray/scripts/admin.php?basedir=
/administrator/components/com_bayesiannaivefilter/lang.php?mosConfig_absolute_path=
/administrator/components/com_uhp/uhp_config.php?mosConfig_absolute_path=
/administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_path=
/administrator/components/com_mmp/help.mmp.php?mosConfig_absolute_path=
/components/com_reporter/processor/reporter.sql.php?mosConfig_absolute_path=
/components/com_madeira/img.php?url=
/components/com_jd-wiki/lib/tpl/default/main.php?mosConfig_absolute_path=
/components/com_bsq_sitestats/external/rssfeed.php?baseDir=
/com_bsq_sitestats/external/rssfeed.php?baseDir=
/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=
/administrator/components/com_swmenupro/ImageManager/Classes/ImageManager.php?mosConfig_absolute_path=
/components/com_nfn_addressbook/nfnaddressbook.php?mosConfig_absolute_path=
/administrator/components/com_nfn_addressbook/nfnaddressbook.php?mosConfig_absolute_path=
/components/com_joomlaboard/file_upload.php?sbp=
/components/com_rwcards/rwcards.advancedate.php?mosConfig_absolute_path=
/components/com_thopper/inc/contact_type.php?mosConfig_absolute_path=
/components/com_thopper/inc/itemstatus_type.php?mosConfig_absolute_path=
/components/com_thopper/inc/projectstatus_type.php?mosConfig_absolute_path=
/components/com_thopper/inc/request_type.php?mosConfig_absolute_path=
/components/com_thopper/inc/responses_type.php?mosConfig_absolute_path=
/components/com_thopper/inc/timelog_type.php?mosConfig_absolute_path=
/components/com_thopper/inc/urgency_type.php?mosConfig_absolute_path=
/components/com_zoom/classes/iptc/EXIF_Makernote.php?mosConfig_absolute_path=
/components/com_zoom/classes/iptc/EXIF.php?mosConfig_absolute_path=
/modules/mod_weather.php?absolute_path=
/components/calendar/com_calendar.php?absolute_path=
/modules/calendar/mod_calendar.php?absolute_path=
/components/com_calendar.php?absolute_path=
/modules/mod_calendar.php?absolute_path=
/components/com_mosmedia/media.tab.php?mosConfig_absolute_path=
/components/com_mosmedia/media.divs.php?mosConfig_absolute_path=
/administrator/components/com_joomlaradiov5/admin.joomlaradiov5.php?mosConfig_live_site=
/administrator/components/com_joomlaflashfun/admin.joomlaflashfun.php?mosConfig_live_site=
/administrator/components/com_joom12pic/admin.joom12pic.php?mosConfig_live_site=
/components/com_slideshow/admin.slideshow1.php?mosConfig_live_site=
/administrator/components/com_panoramic/admin.panoramic.php?mosConfig_live_site=
/administrator/components/com_wmtgallery/admin.wmtgallery.php?mosConfig_live_site=
/administrator/components/com_wmtportfolio/admin.wmtportfolio.php?mosConfig_absolute_path=
/administrator/components/com_mosmedia/includes/credits.html.php?mosConfig_absolute_path=
/administrator/components/com_mosmedia/includes/info.html.php?mosConfig_absolute_path=
/administrator/components/com_mosmedia/includes/media.divs.php?mosConfig_absolute_path=
/administrator/components/com_mosmedia/includes/media.divs.js.php?mosConfig_absolute_path=
/administrator/components/com_mosmedia/includes/purchase.html.php?mosConfig_absolute_path=
/administrator/components/com_mosmedia/includes/support.html.php?mosConfig_absolute_path=

Wordpress
index/wp-content/plugins/Enigma2.php?boarddir=
mygallery/myfunctions/mygallerybrowser.php?myPath=
plugins/wp-table/js/wptable-button.phpp?wpPATH=
plugins/wordtube/wordtube-button.php?wpPATH=
plugins/myflash/myflash-button.php?wpPATH=
plugins/BackUp/Archive.php?bkpwp_plugin_path=
plugins/BackUp/Archive/Predicate.php?bkpwp_plugin_path=
plugins/BackUp/Archive/Writer.php?bkpwp_plugin_path=
plugins/BackUp/Archive/Reader.php?bkpwp_plugin_path=
plugins/sniplets/modules/syntax_highlight.php?libpath=

PHPBB
/path/authentication/phpbb3/phpbb3.functions.php?pConfig_auth[phpbb_path]=
/includes/functions_portal.php?phpbb_root_path=
/includes/functions_mod_user.php?phpbb_root_path=
/includes/openid/Auth/OpenID/BBStore.php?openid_root_path=
/language/lang_german/lang_main_album.php?phpbb_root_path=
link_main.php?phpbb_root_path=
/inc/nuke_include.php?newsSync_enable_phpnuke_mod=1&newsSync_NUKE_PATH=
MOD_forum_fields_parse.php?phpbb_root_path=
/codebb/pass_code.php?phpbb_root_path=
/codebb/lang_select?phpbb_root_path=
includes/functions_nomoketos_rules.php?phpbb_root_path=
includes/functions.php?phpbb_root_path=
/includes/functions.php?phpbb_root_path=
/ezconvert/config.php?ezconvert_dir=
/includes/class_template.php?phpbb_root_path=
/includes/usercp_viewprofile.php?phpbb_root_path=
/includes/functions.php?phpbb_root_path=
/includes/functions.php?phpbb_root_path=
menu.php?sesion_idioma=
/includes/functions.php?phpbb_root_path=
/admin/admin_linkdb.php?phpbb_root_path=
/admin/admin_forum_prune.php?phpbb_root_path=
/admin/admin_extensions.php?phpbb_root_path=
/admin/admin_board.php?phpbb_root_path=
/admin/admin_attachments.php?phpbb_root_path=
/admin/admin_users.php?phpbb_root_path=
/includes/archive/archive_topic.php?phpbb_root_path=
/admin/modules_data.php?phpbb_root_path=
/faq.php?foing_root_path=
/index.php?foing_root_path=
/list.php?foing_root_path=
/login.php?foing_root_path=
/playlist.php?foing_root_path=
/song.php?foing_root_path=
/gen_m3u.php?foing_root_path=
/view_artist.php?foing_root_path=
/view_song.php?foing_root_path=
/login.php?foing_root_path=
/playlist.php?foing_root_path=
/song.php?foing_root_path=
/flash/set_na.php?foing_root_path=
/flash/initialise.php?foing_root_path=
/flash/get_song.php?foing_root_path=
/includes/common.php?foing_root_path=
/admin/nav.php?foing_root_path=
/admin/main.php?foing_root_path=
/admin/list_artists.php?foing_root_path=
/admin/index.php?foing_root_path=
/admin/genres.php?foing_root_path=
/admin/edit_artist.php?foing_root_path=
/admin/edit_album.php?foing_root_path=
/admin/config.php?foing_root_path=
/admin/admin_status.php?foing_root_path=
language/lang_english/lang_prillian_faq.php?phpbb_root_path=
/includes/functions_mod_user.php?phpbb_root_path=
/language/lang_french/lang_prillian_faq.php?phpbb_root_path=
/includes/archive/archive_topic.php?phpbb_root_path=
/functions_rpg_events.php?phpbb_root_path=
/admin/admin_spam.php?phpbb_root_path=
/includes/functions_newshr.php?phpbb_root_path=
/zufallscodepart.php?phpbb_root_path=
/mods/iai/includes/constants.php?phpbb_root_path=
/root/includes/antispam.php?phpbb_root_path=
/phpBB2/shoutbox.php?phpbb_root_path=
/includes/functions_mod_user.php?phpbb_root_path=
/includes/functions_mod_user.php?phpbb_root_path=
/includes/journals_delete.php?phpbb_root_path=
/includes/journals_post.php?phpbb_root_path=
/includes/journals_edit.php?phpbb_root_path=
/includes/functions_num_image.php?phpbb_root_path=
/includes/functions_user_viewed_posts.php?phpbb_root_path=
/includes/themen_portal_mitte.php?phpbb_root_path=
/includes/logger_engine.php?phpbb_root_path=
/includes/logger_engine.php?phpbb_root_path=
/includes/functions_static_topics.php?phpbb_root_path=
/admin/admin_topic_action_logging.php?setmodules=pagestart&phpbb_root_path=
/includes/functions_kb.php?phpbb_root_path=
/includes/bbcb_mg.php?phpbb_root_path=
/admin/admin_topic_action_logging.php?setmodules=attach&phpbb_root_path=
/includes/pafiledb_constants.php?module_root_path=
/index.php?phpbb_root_path=
/song.php?phpbb_root_path=
/faq.php?phpbb_root_path=
/list.php?phpbb_root_path=
/gen_m3u.php?phpbb_root_path=
/playlist.php?phpbb_root_path=
/language/lang_english/lang_activity.php?phpbb_root_path=
/language/lang_english/lang_activity.php?phpbb_root_path=
/blend_data/blend_common.php?phpbb_root_path=
/blend_data/blend_common.php?phpbb_root_path=
/modules/Forums/admin/index.php?phpbb_root_path=
/modules/Forums/admin/admin_ug_auth.php?phpbb_root_path=
/modules/Forums/admin/admin_board.php?phpbb_root_path=
/modules/Forums/admin/admin_disallow.php?phpbb_root_path=
/modules/Forums/admin/admin_forumauth.php?phpbb_root_path=
/modules/Forums/admin/admin_groups.php?phpbb_root_path=
/modules/Forums/admin/admin_ranks.php?phpbb_root_path=
/modules/Forums/admin/admin_styles.php?phpbb_root_path=
/modules/Forums/admin/admin_user_ban.php?phpbb_root_path=
/modules/Forums/admin/admin_words.php?phpbb_root_path=
/modules/Forums/admin/admin_avatar.php?phpbb_root_path=
/modules/Forums/admin/admin_db_utilities.php?phpbb_root_path=
/modules/Forums/admin/admin_forum_prune.php?phpbb_root_path=
/modules/Forums/admin/admin_forums.php?phpbb_root_path=
/modules/Forums/admin/admin_mass_email.php?phpbb_root_path=
/modules/Forums/admin/admin_smilies.php?phpbb_root_path=
/modules/Forums/admin/admin_ug_auth.php?phpbb_root_path=
/modules/Forums/admin/admin_users.php?phpbb_root_path=
/stat_modules/users_age/module.php?phpbb_root_path=
/includes/functions_cms.php?phpbb_root_path=
/m2f/m2f_phpbb204.php?m2f_root_path=
/m2f/m2f_forum.php?m2f_root_path=
/m2f/m2f_mailinglist.php?m2f_root_path=
/m2f/m2f_cron.php?m2f_root_path=
/lib/phpbb.php?subdir=
/includes/functions_mod_user.php?phpbb_root_path=
/includes/functions.php?phpbb_root_path=
/includes/functions_portal.php?phpbb_root_path=
/includes/functions.php?phpbb_root_path=
/includes/functions_admin.php?phpbb_root_path=
/toplist.php?f=toplist_top10&phpbb_root_path=
/admin/addentry.php?phpbb_root_path=
/includes/kb_constants.php?module_root_path=
/auth/auth.php?phpbb_root_path=
/auth/auth_phpbb/phpbb_root_path=
/auction/auction_common.php?phpbb_root_path=
/auth/auth_SMF/smf_root_path=
/auth/auth.php?smf_root_path=
More >>>

Decipher FTP password

DECIPHER PASSWORD FROM INI FILE

Example, enter:

PWD=V29BEA5A170EE544D8F2D7CEA802A182BA76A387266A14799AEA53D73B0AE

Password Deciphered

More >>>

How to add Read More in Blogspot

As you can see, my blog has this Read More function. This little trick can help you to summarize your post before your reader read the rest of your post. Well, continue your reading here.

First of all, you must to your blogger account. Next step, open your template from Layout > Edit Html. After that, click the Expand Template Widget. Click the picture below.



Next, add this code below the

</head>

section. Add this code:

<style>
<b:if cond='data:blog.pageType == "item"'>
 span.fullpost {display:inline;}
<b:else/>
span.fullpost {display:none;}
</b:if>
</style>

Locate this code in your template by using the Find command. (CTRL+F in mozilla)

<p><data:post.body/></p>

Now, add this code below the above code:

<b:if cond='data:blog.pageType != "item"'>
<a expr:href='data:post.url'> Read More..</a>
</b:if>

*** You can change the Read More.. with anything you like. You can use images too.

Save your template.

We are entering the second phase of this tutorial.
Click SETTING and then FORMATTING.

At the bottom of the screen is, some empty white box. Now, fill the box with this code:

<span class="fullpost">

</span>

Now, Save your Setting. You're done adding the Read More function.


SOME IMPORTANT STUFF
1. Your older post will not automatically have this function. You HAVE to add it manually.
2. When you making post, make sure to add the summary before this code:

<span class="fullpost">

</span>

Put the rest of the post in between the code.
More >>>

Shell Listing

You have a Rapidleech script but don't have your server? Here is a trick how to find a server using Google. Yes!! using Google only, you can find yourself a server to upload your rapidleech script and start downloading with fast connection. This is the code that can be use in google text box to find yourself your own private server. Tadaa...

33|28.45%| powered by captain crunch security team
6 |5.17%| safe-mode: off (not secure)
5 |4.31%| home
4 |3.45%| basel 2.2
4 |3.45%| safe-mode: off (not secure) drwxrwxrwx
3 |2.59%| c99memoryl
3 |2.59%| c99shell [file on secure ok ]
3 |2.59%| c99shell v. 1.0 pre-release build #16
3 |2.59%| hacker
3 |2.59%| uid=99(nobody) gid=99(nobody) groups=99(nobody)
2 |1.72%| --[ c99shell v. 1.0 pre-release build #16
2 |1.72%| basel
2 |1.72%| c99shell v. 1.0 pre-release build
2 |1.72%| powered by captain crunch security team | http://ccteam.ru |
2 |1.72%| safe-mode : off ( not secured ) drwxrwxrwx
2 |1.72%| safe-mode: off (not secure) drwxrwxrwx c99shell
1 |0.86%| !c99shell v. 1.0 pre-release build #16!
1 |0.86%| --[ c99shell v. 1.0 pre-release build
1 |0.86%| -[ c99shell v. 1.0 pre-release build #16 powered by captain cru
1 |0.86%| /opt/zope/lib/python/zdaemon/zdrun.py
1 |0.86%| allintext:"safe-mode: off (not secure)"
1 |0.86%| allinurl:selfremove
1 |0.86%| basel documentation
1 |0.86%| c99memory.php
1 |0.86%| c99shell safe-mode : off ( not secured ) drwxrwxrwx
1 |0.86%| c99shell v. 1.0 pre-release build #16 powered by captain crunch
1 |0.86%| c99shell v. 1.0 pre-release uname
1 |0.86%| c99shell v. pre-release build
1 |0.86%| captain crunch security team
1 |0.86%| code safe-mode: off (not secure) drwxrwxrwx c99shell
1 |0.86%| drwxrwxrwx c99shell filetype:php
1 |0.86%| encoder bind proc. ftp brute sec. sql php-code feedback self re
1 |0.86%| encoder tools proc. ftp brute sec. sql php-code update feedback
1 |0.86%| home updir search buffer tools proc ftp brute sec sql self remo
1 |0.86%| how to restore using !c99memory v. 1.0 pre-release build #16!
1 |0.86%| intext:c99memory v. 1.0
1 |0.86%| intext:safe-mode: off (not secure)
1 |0.86%| intext:safe-mode: off (not secure) tooling
1 |0.86%| inurl:act=sql
1 |0.86%| name asc. size · modify · owner/group · perms action
1 |0.86%| php safe-mode drwxrwxrwx
1 |0.86%| php4 timezone database
1 |0.86%| powered by captain crunch security team drwxrwxrwx
1 |0.86%| powered by captain crunch security team | http://ccteam.ru
1 |0.86%| safe mode: off ( not secure )
1 |0.86%| safe mode: off (not secure)
1 |0.86%| safe-mode: off (not secure) / tmp/ drwxrwxrwx
1 |0.86%| safe-mode: off (not secure) site:pt
1 |0.86%| shell powered by captain crunch security team
1 |0.86%| site:www.astro.mat.uc.pt basel
1 |0.86%| uid= gid= groups= sql uname -a
1 |0.86%| uid=99 ( nobody ) gid=99 ( nobody )
1 |0.86%| uid=99(nobody) gid=99(nobody) groups=99(nobody)safe-mode: off
6 7.32% locus7shell
4 4.88% shell
3 3.66% kuwait hacker
3 3.66% php safe-mode bypass (list directories):
3 3.66% safe-mode: off (not secure)
3 3.66% safe-mode: off (not secure) drwxrwxrwx c99shell
3 3.66% startpar -f
2 2.44% hs_kuwait.php
2 2.44% lejeune interpolate
2 2.44% name asc. size · modify · owner/group · perms action
2 2.44% shell c99 ccteam.r
1 1.22% .phpact=f shell
1 1.22% 00007458 zip
1 1.22% allintitle: \locus7shell\
1 1.22% allintitle: c99memoryl
1 1.22% allinurl:upload3.php
1 1.22% astro acrobat
1 1.22% basel stellar library
1 1.22% c99memory
1 1.22% c99memoryl
1 1.22% c99shell v. 1.0 pre-release build #16
1 1.22% class-efem
1 1.22% efemerides del 22 de abril
1 1.22% encoder bind proc. ftp brute sec. sql php-
1 1.22% encoder bind proc. ftp brute sec. sql php-code feedback
1 1.22% encoder bind proc. ftp brute sec. sql php-code update feedback
1 1.22% encoder tools proc. ftp brute sec. sql php-code update feedback
1 1.22% filetype:php shell
1 1.22% foreach (array(sortsql_sort) as $v)
1 1.22% i.s.s.w team ...
1 1.22% intitle:locus7shell
1 1.22% inurl:ftpquickbrute
1 1.22% inurl:php drwxrwxr-x ftp brute sql
1 1.22% lejeune interpolation
1 1.22% lejuene interpolate
1 1.22% lmgrd_start 47
1 1.22% mysqld usage of cpu suse httpd2-prefork
1 1.22% php echo getenv
1 1.22% php4 “registered stream socket transports�
1 1.22% powered by captain crunch filetype:php
1 1.22% powered by captain crunch security team drwxrwxrwx
1 1.22% safe-mode:
1 1.22% select action/file-type:
1 1.22% software make dir upload file safe-mode
1 1.22% uid=30(wwwrun) gid=8(www)
1 1.22% "uname -a","uid=","drwxr-xr-x","r57shell"

LOCUS7 SHELL

locus7shell
intitle:locus7shell
locus7shell filetype:php
locus7shell uname
allintitle: locus7shell
- locus7shell
intitle:- locus7shell
x2300 locus7shell
--[ x2300 locus7shell v. 1.0a beta modded by #!physx^ |
allintitle:- locus7shell
intitle: - locus7shell
safe-mode: off (not secure)
locus7shell 2008
shell x2300 locus7shell
.br - locus7shell
.us/images/0/588/mo_656_656.swf
allintext:--[ x2300 locus7shell v. modded by #!physx^
allintitle: - locus7shell
allintitle: locus7shell ext:php
allintitle:locus7shell
allintitle:locus7shell filetype:php
free locus7shell
ftp brute sec. sql php-code
inurl:act=sql
locus7s off secure
locus7s shell
ocus7shell apache
locus7shell edition 2008
locus7shell filetype: 'php'
locus7shell index:php
locus7shell linux 2008
locus7shell modified
php safe-mode bypass (list directories):
safe-mode: off (not secure) drwxrwxrwx locus7shell
%%% locus7shell
- locus7shell windows
--[ x2300 locus7shell v. 1.0a beta modded by #!physx^ | www.loc
--[ x2300 locus7shell v. modded by #!physx^ | www.locus7s.com |
--[ x2300 locus7shell v.1.0a beta modded by #!physx^ | www.locu
/locus7shell/
[enumerate] [encoder] [tools] [proc.] [ftp brute] [sec.] [sql]
allintext: locus7shell v. 1.0a beta
allintext:�safe-mode: off (not secure)�
allintitle: \locus7shell\
allinurl: .phpact=ls
apache aix aixthread_scope
ar ba locus7shell
basel
basel 3.1 library
basel interpolation
basel interpolation engine
basel spectra
c99memoryl
encoder bind proc. ftp brute sec. sql php-code feedback self re
filetype locus7shell
interpolation engine
intext:'' safe-mode:off (not secure)''
intitle:- locus7shell'
intitle:c99memoryl inurl:.php
intitle:locus7shell by filetype:php
intitle:locus7shell drwxr-xr-x
inurl:.phpact=ls
inurl:act intext:full hexdump
license.dat idl server bypass
locus7s uname
ocus7shell 2.0
locus7shell [file on secure ok ] drwxrwxrwx
locus7shell intext:x2300 intext:milw0rm.it enumerate uname
locus7shell inurl:php
locus7shell linux
locus7shell linux 2006
locus7shell safe-mode: off (not secure) drwxrwxrwx
locus7shell self remove drwxrwxrwx
locus7shell v. 1.0
locus7shell windows 2008
locus7shell-
make dir make file ok read files locus7shell
modded locus7shell
php safe-mode bypass (list directories)
php safe-mode bypass (read file)
php safe-mode bypass (read files)
safe-mode: apache uname -a: linux filetype:php
safe-mode: off (not secure) locus7shell
safe_mode: off drwxr-xr-x locus7shell
software: safe-mode: off (not secure) your ip: - server ip: [ft
suhosin 5.1.2
sybase aixthread_scope
uploads/ drwxrwxrwx
warning kernel may be alerted using higher levels safe mode
x2300 locus7shell download
x2300 locus7shell modified by #!physx^
x2300 locus7shell v. 1.0a
x2300 locus7shell v. 1.0a beta

FTP password:

intitle:"index of" spwd.db passwd -pam.conf
filetype:bak inurl:"htaccess\passwd\shadow\htusers
filetype:inc dbconn
filetype:inc intext:mysql_connect
filetype:properties inurl:db intext:password
inurl:vtund.conf intext:pass -cvs
inurl:"wvdial.conf" intext:"password"
filetype:mdb wwforum
"AutoCreate:=TRUE password=*"
filetype:pwl pwl
filetype:reg reg +intext:"defaultusername" intext:"defaultpassword"
filetype:ref ref+intext:"internet account manager"
"index of/" "ws_ftp.ini" "parent directory"
filetype:ini ws_ftp pwd
inurl:/wwwboard

only copy the text in bold. copy and paste it in Google text box and pick your desired server.

More >>>

Lightbox Tutorial

How to add the Lightbox effect to your blog in Blogspot platform.
Before you continue, some of you might already know what can Lightbox do. See image below. What you see is just a regular image with no effect or blink-blink on them but try to click them. You'll see the difference now.

EXPLANATION
1. The first image, Jack Sparrow, has the lightbox effect but only showing the picture.
2. The second image, Punisher War Zone, has the lightbox effect and showing the picture with caption below the image.
3. The third image, Transformer Revenge of The Fallen, has the lightbox effect, showing picture, has caption below the picture, and the caption is hyperlink to other site (my blog).

Now you see what Lightbox can do.
Lightbox script is created by Lokesh Dhakar. You can download this script (for free) from his website: http://www.huddletogether.com.

HOW TO IMPLANT THE SCRIPT TO YOUR BLOG
Blogger system doesn't have the ability to upload script to their server. This is the main problem for blogger user. But, this is not a problem nowadays since there are many free hosting service available now.

you can sign-up for the free hosting service and you'll get free web server with your own storage. Some offer 1.5 Mb of storage for free. Below is my suggestion:
1. http://www.000webhost.com

it has faster connection and you can easily manage your FTP server.

I assume that you has downloaded the script by now and has your own server. if not, you can sign-up for free from the link above.

If you downloaded the latest script (v2.04), there is 3 folder and 1 html file name index. see image below:


Go to the images folder and copy close.gif, closelabel.gif, loading.gif, nextlabel.gif, and prevlabel.gif to other folder. Lets sat, Lightbox2 in Desktop.

Go to css folder and copy Lightbox.css. Paste it to Lightbox2, the folder where we paste the image.

Next, go to js folder, and copy all of the content inside and paste to Lightbox2 also.


Assume that your free server is this: http://mysite.site.com

Before you upload those files, we are going to edit it a little more.

You can do this with other tools also but i use CuteFTP to do it. You can use Dreamweaver or Notepadd++. I will show you how to edit it using Notepad++.

I assume that you have download Notepad++ now. Fire up Notepad++ and drag Lightbox.css to it's workspace. you'll get something like this:



We are going to edit some of code as follow. replace the highlighted code with your site name.


After edit:


You are done editing Lightbox.css

Now, we are going to edit Lightbox.js
Same as before, drag Lightbox.js to Notepadd++ work are and replace the these code with the same code you add in lightbox.css.



Change this too



Now, upload those files to you server using you FTP program such as CuteFTP (NOT FREE).

This is how you add the code to your template.
1. go to Edit Html
2. add this code at above the Header.


<script type="text/javascript" src="http://mysite.site.com/prototype.js"></script>

<script type="text/javascript" src="http://mysite.site.com/scriptaculous.js?load=effects,builder"></script>

<script type="text/javascript" src="http://mysite.site.com/lightbox.js"></script>

<link rel="stylesheet" href="http://mysite.site.com/lightbox.css" type="text/css" media="screen" />



Everytime you wan to use the effect with your picture, add this code to your image (Edit Html)


<a href="images/image-1.jpg" rel="lightbox" title="my caption">image #1</a>


If you want to make a group for your picture so that there is Next and Previous in that picture, add this code:


<a href="images/image-1.jpg" rel="lightbox[roadtrip]">image #1</a>

<a href="images/image-2.jpg" rel="lightbox[roadtrip]">image #2</a>

<a href="images/image-3.jpg" rel="lightbox[roadtrip]">image #3</a>




Delete these Highlighted code:






If you don't want to to waste your time doing all this stuff, you can always use my code. Just copy these code and paste it into your template. How to use it? follow the step above by adding REL attribute to your image


<script type="text/javascript" src="http://xenomorf.comuf.com/prototype.js"></script>

<script type="text/javascript" src="http://xenomorf.comuf.com/scriptaculous.js?load=effects,builder"></script>

<script type="text/javascript" src="http://xenomorf.comuf.com/lightbox.js"></script>

<link rel="stylesheet" href="http://xenomorf.comuf.com/lightbox.css" type="text/css" media="screen" />



have fun.
If you don't understand, just leave a comment and i will surely answer it.
More >>>

Arghh

My site is a MESS since i update to
new template and layout. But, i like this layout. BTW, i added some javascript to my blog so that user can view photo in different view. Try to read some of my blog that has some picture in it or you can read my other still-in-progress blog here to see this javascript in action.

i use the same script both of this blog but with different layout/template. because of this script, i waste 4+ hours just to figure out how to use it. but in the end, it paid. You can see that in my post here or in that other blog of mine. Try to click the picture below:

More >>>

Findings Windows XP Product Key in Installation Dics

Have you lost your Windows CD Key and are desperately looking for it? No backups, nothing. What do you do now? Well till you have your Original installation you can easily find the Product key without breaking a sweat.

Here are the simple steps you need to perform in order to get your Product Key from the installation CD.

NOTE: This method may not work for certain OEM CD.

1. Insert the Installation CD into your CD / Drive Drive.
2. Explore the CD and navigate to the i386 folder.
3. Open the file UNATTEND.txt and scroll down to the last line.
4. You will find your Windows XP Product key there.

Voilla!! More >>>

Bulubebek

W32/VBWorm.QXE (bulubebek)

This is not a new virus that most people say. This virus has been detected back in 10 October 2008. Maybe you just get infected by it and no people reported it to antivirus company before. That's why your antivirus can't detected it.


This is the history about this so called new virue. Previously, there is this virus name Kenshin, Doraemon, and Naruto. Most of them has the same ability, that is to destroy and delete your System file. Actually, it's not being destroy. They only HIDE it in the same directory.
After Donal Bebek saw this virus, and somewhere in Jepang, someone is actually modify the virus and make more powerful. Donal Bebek come up with new idea and on 10 october 2008, the world has witnessed a new born virus called Bulubebek. But, recently the spreading rate has increase as even I do not know why and how.
Locally in Indonesia, a ten thousand plus computer has reported that they ara infected with virus.

Bulubebek is written in High Level Programming languange, the famous Visual Basic with it's file size 53 KB only. The virus has 2 original file, the EXE and it's INF.




what will happen if you are infected with the virus.




Norman security suite detected the virus as VbWorm.QXE.



INFECTION
After the virus is activated, it will write certain file so that it will automatically activated when you turn on your computer. It will also create file in your %systemroot% and in your Document Setting.
The file that the virus created:

%systemroot%\Script.exe

%systemroot%\LSASS.exe

C:\Document and Settings\%User%\autorun.inf

C:\Document and Settings\%User%\bulubebek.ini

This file will be created in every of your volume

C:\bulubebek.ini

C:\autorunlinf

This is how it auto start when you turn on your computer


HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon

Shell = explorer.exe script.exe

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Shell = explorer.exe script.exe

Defence System

To defend itself, it will prevent the user to access some Windows function such as Task Manager, Folder Option, and CMD. To do this, it write some script in your registry.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\HideFileExt

- CheckedValue=2
- DefaultValue = 2
- UncheckedValue = 2

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN

- CheckedValue= 0
- DefaultValue = 0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL

- CheckedValue= 2
- DefaultValue = 2

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\ShowFullPath

- CheckedValue= 0
- DefaultValue = 0
- UncheckedValue = 0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\ShowFullPathAddress

- CheckedValue= 0
- DefaultValue = 0
- UncheckedValue = 0

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SuperHidden

- CheckedValue= 2
- DefaultValue = 2
- UncheckedValue = 2

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\HideFileExt

- CheckedValue= 1
- DefaultValue = 1

KEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SuperHidden

- CheckedValue= 0
- DefaultValue = 0

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

- NoFolderOptions

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System

- DisableRegistryTools

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced

- Hidden = 2
- HideFileExt = 1
ShowSuperHidden = 1

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Command Processor

AutoRun = exit

HKEY_CURRENT_USER\Software\Microsoft\Command Processor

AutoRun = exit



It also prevent Windows from using “Microsoft Visual Studio Debugging Tools”, file SPYXX.EXE. When Windows or certain drivers and program access the file, a message box will popup telling you that the file is unavailable. it actually because the virus altered some string in registry.


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SPYXX.EXE

debugger = TAI BEBEK



Error message from SPYXX.EXE

Spreading method

Flash Disk is the major media where this virus spread itself by copying Autorun.inf and bulubebek.ini to your Flash Disk.


string inside the Autorun.inf

EFFECT
Unlike other viruses, this virus won't harm the host. The maker of this virus has no intention of harming the host. More likely, it's only because of the fun and competition between each virus maker.
The only effect that come out after this virus activated is:

1.Try to hide all of your File/Folder in the Flash Disk or the host (Computer).

2.Make a clone of your File/Folder (with the original name).

3.Used your system resources. It use the Folder icon in System32

See the type, it says Application. Not Folder. This is the virus!!!


CLEANING BULUBEBEK VIRUS

Before you carry out this procedure, MAKE SURE:

1.You are OFFLINE

2.Disable your System Restore for the time being. (Windows ME/XP only)

3.Kill the virus process in memory using alternative program of Task Manager such as Procesxp or other similar tool that can access the Running Process Memory. You can use TuneUp Utilities but you have to buy it.

4.Bulubebek virus has the Folder icon with the name LSASS.EXE

5.Right click (in Procesxp) and select Kill Process Tree.

The sctipt below will revert your registry back to it original content. Copy the sciprt below to Notepad and save as “Repair.inf” with the quote. After that:

1.Right click Repair.inf

2.Click install and you're done.

********** copy below after this comment ******************

[Version]

Signature="$Chicago$"

Provider=xenomorf



[DefaultInstall]

AddReg=UnhookRegKey

DelReg=del



[UnhookRegKey]

HKLM, Software\CLASSES\batfile\shell\open\command,,,"""%1"" %*"

HKLM, Software\CLASSES\comfile\shell\open\command,,,"""%1"" %*"

HKLM, Software\CLASSES\exefile\shell\open\command,,,"""%1"" %*"

HKLM, Software\CLASSES\piffile\shell\open\command,,,"""%1"" %*"

HKLM, Software\CLASSES\regfile\shell\open\command,,,"regedit.exe "%1""

HKLM, Software\CLASSES\scrfile\shell\open\command,,,"""%1"" %*"

HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon, Shell,0, "Explorer.exe"

HKLM, SYSTEM\ControlSet001\Control\SafeBoot, AlternateShell,0, "cmd.exe"

HKLM, SYSTEM\ControlSet002\Control\SafeBoot, AlternateShell,0, "cmd.exe"

HKLM, SYSTEM\CurrentControlSet\Control\SafeBoot, AlternateShell,0, "cmd.exe"

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\SuperHidden, UncheckedValue,0x00010001,1

HKLM, SOFTWARE\Microsoft\Command Processor, AutoRun,0,

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL, CheckedValue, 0x00010001,1

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL, DefaultValue, 0x00010001,2

HKCU, Software\Microsoft\Command Processor, AutoRun,0,



[del]

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegistryTools

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableTaskMgr

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoFolderOptions

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NOFind

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NORun

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\WinOldApp

HKLM, SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PAYXX.exe

HKCU, Software\Microsoft\Windows NT\CurrentVersion\Winlogon, Shell

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\HideFileExt

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\ShowFullPath

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\ShowFullPathAddress

HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SuperHidden

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\Explorer, NoFolderOptions

HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegistryTools

************ Do not copy this LINE *******

Search and destroy your file that has been duplicate by the virus.




If your Folder Option is still unavailable, Log Off your computer and recover you original File or Folder using the command and properties below.


To delete the duplicate file, please use the DETAIL view to make it for to spot for the virus and your original file. The properties below will help you to recognize the virus application:

1.Using the Folder icon
2.File size is only 53 KB
3.The extension is EXE
4.Filetype is Application


Use Search funtion to locate the virus.

Most of your originial file is not LOST but it is SUPERHIDDEN. It means, you file is treated as System File to prevent from being edited or recover. The next step will help you get your file back.

This will be done by using the ATTRIB command in Command Prompt.

Click “Start”

Click “Run”

Type “CMD”, press [ENTER]

Change the directory to your Flash Drive (i.e: the drive letter such as E:, F:, and so on)
Enter this command: cd /D [Drive Letter]: ***[ ] is not inluded

Enter this command: ATTRIB –s –h –r /s /d and then press [ENTER]


I didn't change my drive letter because I only change my directory.

To ensure that the virus has been cleaned, update your antivirus and scan.

If you have any comment or suggestion, please comment below.

More >>>

Trivia

If you like trivia, then this is the best place for you to get some Trivia.

1. Coca-cola was originally green.

2. The most common name in the world is MUHAMMAD.

3. The name of all the continent end with the same letter that they start with. (only applicable in English name)

4. The strongest muscle in the body is the tongue.

5. TYPERWRITER is the longest word that can be made using the letters only on one row of the keyboard.

6. Women blink nearly twice as men.

7. You can't kill yourself by holding your breath.

8. It is impossible to lick your elbow.

9. When you sneeze, your heart stop for a milliseconds (could be hazardous).

10. It is physically impossible for pigs to look up to the sky.

11. The "Sixth sicks sheik's sixth sheep's sick" is said to be the toughest twister in the English language.

12. If you sneeze too hard, you can fracture a rib. If you try to suppress a sneeze, you can rupture a blood vessel in your head or neck and die.

13. Each king in a deck of playing card represent a great king from history:
* Spades - King David
* Clubs - Alexander the Great
* Hearts - Charlemagne
* Diamonds - Julius Ceaser

14. About Statute:
>> If a statute of a person in the park on a horse has both front legs in the air, the person died in the battle.
>> If the horse has one front leg in the air, the person died as a result of wounds received in battle.
>> If the horse has all four legs in ground, the person died of natural cause.
15. What do bullet proof, fire escape, windshield wiper and laser printer all have in common?
Answer ->> ALL invented by women.

16. A crocodile cannot sticks it's tongue out.

17. A snail can sleep for three years straight.

18. All polar bears are left handed.

19. Butterfly taste with their feet.

20. Elephants are the only animals that can't jump.

21. In the last 4000 years, no new animals have been domesticated.

22. On average, people fear spider more than they do death.

23. Shakespeare invented the words "Assassination" and "Bump".

24. "Stewardess" is the longest word type with only the left handed.

25. The ant always falls over on its right side when intoxicated.

26. The electric chair was invented by a dentist.

27. The human creates enough pressure when it pump out to body to squirt blood 30 feet.

28. Wearing headphone for just an hour will increase the bacteria in your ear by 700 times.

29. Rats multiply so quickly that in 18 months, two rats could have over a million descendants.

30. The cigarette lighter was invented before the match.

31. Most lipstick contains fish scales.

32. Like finger prints, everyone's tongue print is different.

33. Finally, 99% of people who read this will try to lick their elbow!!! More >>>

Hiding Files in Pictures

If you share your computer or your laptop with others, security and privacy is the most important thing that you can think of. You are right, you might don't want your family or other people to see your picture or your GF/BF picture right.


For now, i just show you the code.
i'll show you how it happen later.

1. go to RUN, type CMD, press [enter]
2. go to your directory where the files that you want to hide and the lucky picture resides
3. type this to copy the files to the picture as binary.

copy /B (JPG FILE) + (RAR File) (OutputFile)

example: copy /B test.pic + test.rar test.pic

More >>>