Joomla mass attack more sites added coming soon

1. http://medinup.org/images/Kyfx.txt
2. http://associacio4arts.org/es/images/kyfx.txt
3. http://espacot.pt/T/images/Kyfx.txt
4. http://www.cvc.gov.co/portalold/images/CVC/Kyfx.jpg
5.  
6.  
7.  
8.  
9.  
10. ext:php program_listing intitle:MythWeb.Program.Listing
11. inurl:preferences.ini “[emule]”
12. intitle:”Index of /CFIDE/” administrator
13. “access denied for user” “using password”
14. ext:php intext:”Powered by phpNewMan Version” 可以看到：path/to/news/browse.php?clang=../../../../../../file/i/want
15. inurl:”/becommunity/community/index.php?pageurl=”
16. intitle:”ASP FileMan” Resend -site:iisworks.com
17. “Enter ip” inurl:”php-ping.php”
18. ext:conf inurl:rsyncd.conf -cvs -man
19. intitle: private, protected, secret, secure, winnt
20. intitle:”DocuShare” inurl:”docushare/dsweb/” -faq -gov -edu
21. “#mysql dump” filetype:sql
22. “allow_call_time_pass_reference” “PATH_INFO”
23. “Certificate Practice Statement” inurl:(PDF | DOC)
24. LeapFTP intitle:”index.of./” sites.ini modified
25. master.passwd
26. mysql history files
27. NickServ registration passwords
28. passlist
29. passlist.txt (a better way)
30. passwd
31. passwd / etc (reliable)
32. people.lst
33. psyBNC config files
34. pwd.db
35. signin filetype:url
36. spwd.db / passwd
37. trillian.ini
38. wwwboard WebAdmin inurl:passwd.txt wwwboard|webadmin
39. “# -FrontPage-” ext:pwd inurl:(service | authors | administrators | users) “# -FrontPage-”
40. inurl:service.pwd
41. “AutoCreate=TRUE password=*”
42. “http://*:*@www” domainname
43. “index of/” “ws_ftp.ini” “parent directory”
44. “liveice configuration file” ext:cfg -site:sourceforge.net
45. “powered by ducalendar” -site:duware.com
46. “Powered by Duclassified” -site:duware.com
47. “Powered by Duclassified” -site:duware.com “DUware All Rights reserved”
48. “powered by duclassmate” -site:duware.com
49. “Powered by Dudirectory” -site:duware.com
50. “powered by dudownload” -site:duware.com
51. “Powered By Elite Forum Version *.*”
52. “Powered by Link Department”
53. “sets mode: +k”
54. “Powered by DUpaypal” -site:duware.com
55. allinurl: admin mdb
56. auth_user_file.txt
57. config.php
58. eggdrop filetype:user user
59. etc (index.of)
60. ext:ini eudora.ini
61. ext:ini Version=… password
62. ext:txt inurl:unattend.txt
63. filetype:bak inurl:”htaccess|passwd|shadow|htusers”
64. filetype:cfg mrtg “target[*]” -sample -cvs -example
65. filetype:cfm “cfapplication name” password
66. filetype:conf oekakibbs
67. filetype:conf sc_serv.conf
68. filetype:conf slapd.conf
69. filetype:config config intext:appSettings “User ID”
70. filetype:dat “password.dat”
71. filetype:dat wand.dat
72. filetype:inc dbconn
73. filetype:inc intext:mysql_connect
74. filetype:inc mysql_connect OR mysql_pconnect
75. filetype:inf sysprep
76. filetype:ini inurl:”serv-u.ini”
77. filetype:ini inurl:flashFXP.ini
78. filetype:ini ServUDaemon
79. filetype:ini wcx_ftp
80. filetype:ini ws_ftp pwd
81. filetype:ldb admin
82. filetype:log “See `ipsec copyright”
83. filetype:log inurl:”password.log”
84. filetype:mdb inurl:users.mdb
85. filetype:mdb wwforum
86. filetype:netrc password
87. filetype:pass pass intext:userid
88. filetype:pem intext:private
89. filetype:properties inurl:db intext:password
90. filetype:pwd service
91. filetype:pwl pwl
92. filetype:reg reg +intext:”defaultusername” +intext:”defaultpassword”
93. filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS
94. filetype:sql (“values * MD” | “values * password” | “values * encrypt”)
95. filetype:sql (“passwd values” | “password values” | “pass values” )
96. filetype:sql +”IDENTIFIED BY” -cvs
97. filetype:sql password
98. filetype:url +inurl:”ftp://” +inurl:”;@”
99. filetype:xls username password email
100. htpasswd
101. htpasswd / htgroup
102. htpasswd / htpasswd.bak
103. intext:”enable secret $”
104. intext:”powered by Web Wiz Journal”
105. intitle:”index of” intext:connect.inc
106. intitle:”index of” intext:globals.inc
107. intitle:”Index of” passwords modified
108. intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp) -site:duware.com
109. —————————————-
110. intitle:index.of intext:”secring.skr”|”secring.pgp”|”secring.bak”
111. inurl:”GRC.DAT” intext:”password”
112. inurl:”slapd.conf” intext:”credentials” -manpage -”Manual Page” -man: -sample
113. inurl:”slapd.conf” intext:”rootpw” -manpage -”Manual Page” -man: -sample
114. inurl:”wvdial.conf” intext:”password”
115. inurl:/db/main.mdb
116. inurl:chap-secrets -cvs
117. inurl:config.php dbuname dbpass
118. inurl:filezilla.xml -cvs
119. inurl:lilo.conf filetype:conf password -tatercounter -bootpwd -man
120. inurl:nuke filetype:sql
121. inurl:ospfd.conf intext:password -sample -test -tutorial -download 路由配置
122. inurl:pap-secrets -cvs
123. inurl:perform filetype:ini
124. inurl:secring ext:skr | ext:pgp | ext:bak
125. inurl:vtund.conf intext:pass -cvs
126. inurl:zebra.conf intext:password -sample -test -tutorial -download
127. “Generated by phpSystem”
128. “generated by wwwstat”
129. “Host Vulnerability Summary Report” ]
130. “HTTP_FROM=googlebot” googlebot.com “Server_Software=”
131. “Index of” / “chat/logs” 聊天室
132. “Installed Objects Scanner” inurl:default.asp
133. “Mecury Version” “Infastructure Group”
134. “Microsoft (R) Windows * ™ Version * DrWtsn Copyright (C)” ext:log
135. “Most Submitted Forms and Scripts” “this section”
136. “Network Vulnerability Assessment Report”
137. “not for distribution” confidential
138. “phone * * *” “address *” “e-mail” intitle:”curriculum vitae”
139. “phpMyAdmin” “running on” inurl:”main.php”
140. “produced by getstats”
141. “Request Details” “Control Tree” “Server Variables”
142. “robots.txt” “Disallow:” filetype:txt
143. “Running in Child mode”
144. “sets mode: +p”
145. “sets mode: +s”
146. “Thank you for your order” +receipt
147. “This is a Shareaza Node”
148. “This report was generated by WebLog”
149. ( filetype:mail | filetype:eml | filetype:mbox | filetype:mbx ) intext:password|subject
150. (inurl:”robot.txt” | inurl:”robots.txt” ) intext:disallow filetype:txt
151. -site:php.net -”The PHP Group” inurl:source inurl:url ext:pHp
152. FBR “ADOBE PHOTOSHOP”
153. AIM buddy lists
154. allinurl:/examples/jsp/snp/snoop.jsp
155. allinurl:servlet/SnoopServlet
156. cgiirc.conf
157. data filetype:mdb -site:gov -site:mil
158. exported email addresses
159. ext:asp inurl:pathto.asp
160. ext:cgi inurl:editcgi.cgi inurl:file=
161. ext:conf inurl:rsyncd.conf -cvs -man
162. ext:conf NoCatAuth -cvs
163. ext:dat bpk.dat
164. ext:gho gho
165. ext:ini intext:env.ini
166. ext:ldif ldif
167. ext:log “Software: Microsoft Internet Information Services *.*”
168. ——————————
169. ext:mdb inurl:*.mdb inurl:fpdb shop.mdb
170. filetype:bkf bkf
171. filetype:blt “buddylist”
172. filetype:blt blt +intext:screenname
173. filetype:cfg auto_inst.cfg
174. filetype:conf inurl:firewall -intitle:cvs
175. filetype:config web.config -CVS
176. filetype:ctt ctt messenger
177. filetype:fp fp
178. filetype:fp fp -site:gov -site:mil -”cvs log”
179. filetype:inf inurl:capolicy.inf
180. filetype:lic lic intext:key
181. filetype:myd myd -CVS
182. filetype:ns ns
183. filetype:ora ora
184. filetype:ora tnsnames
185. filetype:pdb pdb backup (Pilot | Pluckerdb)
186. filetype:pot inurl:john.pot
187. ————————————–
188. filetype:pst inurl:”outlook.pst”
189. filetype:pst pst -from -to -date
190. filetype:qbb qbb
191. filetype:rdp rdp
192. filetype:reg “Terminal Server Client”
193. filetype:vcs vcs
194. filetype:wab wab
195. filetype:xls -site:gov inurl:contact
196. filetype:xls inurl:”email.xls”
197. Financial spreadsheets: finance.xls
198. Financial spreadsheets: finances.xls
199. Ganglia Cluster Reports
200. haccess.ctl (one way)
201. haccess.ctl (VERY reliable)
202. ICQ chat logs, please…
203. iletype:log cron.log
204. intext:”Session Start * * * *:*:* *” filetype:log
205. intext:”Tobias Oetiker” “traffic analysis”
206. intext:(password | passcode) intext:(username | userid | user) filetype:csv
207. intext:gmail invite intext:http://gmail.google.com/gmail/a
208. intext:SQLiteManager inurl:main.php
209. intitle:”Apache::Status” (inurl:server-status | inurl:status.html | inurl:apache.html)
210. intitle:”AppServ Open Project” -site:www.appservnetwork.com
211. intitle:”ASP Stats Generator *.*” “ASP Stats Generator” “- weppos”
212. intitle:”FTP root at”
213. intitle:”index of” +myd size
214. intitle:”Index Of” -inurl:maillog maillog size
215. intitle:”Index Of” cookies.txt size
216. intitle:”index of” mysql.conf OR mysql_config
217. intitle:”Index of” upload size parent directory
218. intitle:”index.of” .diz .nfo last modified
219. intitle:”Multimon UPS status page”
220. intitle:”PHP Advanced Transfer” (inurl:index.php | inurl:showrecent.php )
221. intitle:”PhpMyExplorer” inurl:”index.php” -cvs
222. ———————–
223. intitle:”statistics of” “advanced web statistics”
224. intitle:”System Statistics” +”System and Network Information Center”
225. intitle:”Usage Statistics for” “Generated by Webalizer”
226. intitle:”wbem” compaq login “Compaq Information Technologies Group”
227. intitle:”Web Server Statistics for ****”
228. intitle:”web server status” SSH Telnet
229. intitle:”welcome.to.squeezebox”
230. intitle:admin intitle:login
231. intitle:index.of “Apache” “server at”
232. intitle:index.of cleanup.log
233. intitle:index.of dead.letter
234. intitle:index.of inbox
235. intitle:index.of inbox dbx
236. intitle:intranet inurl:intranet +intext:”phone”
237. inurl:”/axs/ax-admin.pl” -script
238. inurl:”/cricket/grapher.cgi”
239. inurl:”bookmark.htm”
240. inurl:”cacti” +inurl:”graph_view.php” +”Settings Tree View” -cvs -RPM
241. inurl:”newsletter/admin/”
242. inurl:”newsletter/admin/” intitle:”newsletter admin”
243. inurl:”putty.reg”
244. inurl:”smb.conf” intext:”workgroup” filetype:conf conf
245. ————————————
246. Welcome to ntop!
247. “adding new user” inurl:addnewuser -”there are no domains”
248. (inurl:/cgi-bin/.cobalt/) | (intext:”Welcome to the Cobalt RaQ”)
249. filetype:php HAXPLORER “Server Files Browser”
250. intitle:”Web Data Administrator – Login”
251. inurl:ConnectComputer/precheck.htm | inurl:Remote/logon.aspx
252. PHP Shell (unprotected)
253. PHPKonsole PHPShell filetype:php -echo
254. Public PHP FileManagers
255. “index of” / picasa.ini
256. “index of” inurl:recycler
257. “Index of” rar r nfo Modified
258. “intitle:Index.Of /” stats merchant cgi-* etc
259. “Powered by Invision Power File Manager” (inurl:login.php) | (intitle:”Browsing directory /” )
260. “Web File Browser” “Use regular expression”
261. filetype:ini Desktop.ini intext:mydocs.dll
262. intext:”d.aspx?id” || inurl:”d.aspx?id”
263. intext:”Powered By: TotalIndex” intitle:”TotalIndex”
264. intitle:”album permissions” “Users who can modify photos” “EVERYBODY”
265. intitle:”Directory Listing For” intext:Tomcat -intitle:Tomcat
266. intitle:”HFS /” +”HttpFileServer”
267. intitle:”Index of *” inurl:”my shared folder” size modified
268. —————————————
269. “File Upload Manager v.” “rename to”
270. ext:asp “powered by DUForum” inurl:(messages|details|login|default|register) -site:duware.com
271. ext:asp inurl:DUgallery intitle:”.” -site:dugallery.com -site:duware.com
272. ext:cgi inurl:ubb_test
273. ezBOO “Administrator Panel” -cvs
274. filetype:cgi inurl:cachemgr.cgi
275. filetype:cnf my.cnf -cvs -example
276. filetype:inc inc intext:setcookie
277. filetype:php inurl:”viewfile” -”index.php” -”idfil
278. filetype:wsdl wsdl
279. intitle:”ASP FileMan” Resend -site:iisworks.com
280. intitle:”Index of /” modified php.exe
281. intitle:”phpremoteview” filetype:php “Name, Size, Type, Modify”
282. inurl:” WWWADMIN.PL” intitle:”wwwadmin”
283. inurl:”nph-proxy.cgi” “Start browsing through this CGI-based proxy”
284. inurl:”plog/register.php”
285. inurl:cgi.asx?StoreID
286. inurl:robpoll.cgi filetype:cgi
287. The Master List
288. “More Info about MetaCart Free”