===================
------------------------------------NET MANUAL FOR SURVIVAL----------------------------------------
===================
( 1.)
--------------------------------------------------------------------------------------------------------------
--------------------------------List of Free Linux/Unix Shell Account Providers-------------------------------------
---------------------------------------------------------------------------------------------------------------
A Unix shell or Linux console
is a program with which to comunicate with and access a particular personal account which enables a user access to a
command prompt and other programs on a remote machine
With these accounts you can login to a remote server and execute commands and run programs on it. These accounts are
normally accessed via SSH. Historically we used telnet for
that but now telnet is fast becoming obsolete due to security concerns. These free shell accounts can be used to practice
your Linux / Unix skills as well as making most out of IRC,
Email, web hosting etc.
The free Unix shell accounts listed below are all provided by not for profit organizations. The existence of these non-
profit organizations is vital for Internet community.So it is not
good to bring them down. (you know what I am talking about).
http://freeshell.org , http://sdf-eu.or
Server & services:
- two T3s lines
- SIGs, Music Compilations and Membership activities
- 10+ DEC Alphas (DS20L/DS10L) running NetBSD
- Supporter of the NetBSD project and The Computer History Museum in Mountain View California
- Members vote in new features
- Member contributed programs and tutorials
- 80MB (free), 600MB and 800MB disk quotas
- Membership perks (such as free admission to the Computer History Museum)
- User configurable email greylisting feature
- Partnership with Colleges world wide for free, in most cases, remote learning
- DSL as well 16,000+ Dialup access (PPP or SHELL) numbers in the USA and Canada
- IRC access to free users on Saturdays and Sundays
- motd.org project – user authored and maintained blogs, photo galleries, forums and more.
- VPN with IP4 assignment in our Class C.
http://www.grex.org
Server: OpenBSD
Services: email, lynx, personal webspace, compile C programs… (quota: 1Mb)
http://www.nyx.net
Services: email, ftp, telnet, lynx, personal webspace of 100K
http://m-net.arbornet.org
Server: FreeBSD
Services: email, pop3, lynx, personal webspace, compile C programs (quota: 500kb)
http://www.xox.pl
Services:email,pop3,ssh,irc,ftp,web space (quota: 1Mb)
http://www.rootshell.be
Server: OpenBSD
Services: pop3/web email, webspace, the complete set of UNIX/Gnu tools, quota: 2M
http://www.daforest.org
Server: Linux
Services: email, pop3, micq, ftp, personal webspace with cgi, ssi, eggdrop (quota: 10Mb)
http://www.polarhome.com
Server: Linux, FreeBSD, VAX (OpenVMS operating system)
Services: Email, pop3, irc, ftp, eggdrop… cool place on different operating systems!
http://www.titanix.net
Server: Linux
Services: pop3,pop2,imap,smtp,ftp,irc,mail,mail->SMS,compiliers, NO quota for now..
http://deathrow.vistech.net
Server: OpenVMS on VAX/Alpha
Services: IRC usage is allowed but no bots/relays/etc.
http://nic-nac-project.de
http://www.freeshell.de
Server: Debian GNU/Linux 4.0
Services: http://nic-nac-project.de/~yourname, Quota (Web & Home): 100 MB on your personal directory, FTP, SCP, SFTP, CGI,
PHP4, SSI, SSL, MySQL (one DB, ask for it), PHPMyAdmin
yes
eMail: yourname@nic-nac-project.de
Clients: mutt, pine, POP3s, IMAP, WebMail, maximum email size (per element): 7 MB
Features: Spamassassin, Razor2, Anti-Virus (drop of infected mails)
http://www.jvds.com/freeshells/
Server: ???
Services/Info: No irc, Quota: 6Mb (shared between mail and web)
http://www.unixdaemons.com/
Server: FreeBSD
Services/Info: mail, webspace, perl… (quota 12Mb)
http://www.polarhome.com/
Server: Linux/RedHat, Linux/Debian, OpenVMS/Alpha, OpenVMS/VAX, Solaris, Ultrix, OpenBSD, FreeBSD, NetBSD, HPUX, AIX
Services/Info: Polarhome.com is non commercial, educative effort for popularization of shell enabled operating systems and
Internet services, offering shell accounts and other
services on all available systems.
http://www.silenceisdefeat.org/
Server: OpenBSD
Services/Info: 50MB storage space, http access (http://silenceisdefeat.org/~username), ftp access, ssh, telnet, and
communication programs such as IRC, AIM, MSN, ICQ, Lily, and
email.
http://www.zsuatt.com/
Server: linux
Services/Info: public_html, php,cgi-bin on request, 3bg procesess, 50mb space , eggdrop allowed, access to compilers ,
bitchx, ftp , ssh access, and a lot of more…
http://www.rulex.net/
Server: FreeBSD
Services/Info: Free Email – 5mb space, 2 processes / 1 IRC-connection, Free Web-Space – 50mb space, PHP & MySQL supports.
Compilers, ssh and telnet has been disabled. BNCs are
forbidden.
No new accounts are being granted!
http://www.aeshells.org/
Server: Slackware 10.1
Services/Info: multiple servers, ssh, email, webspace, 200mb, irc, bitchx, eggdrop, mysql, much, much more…
IRC support: irc.aeirc.org #aeshells
http://freeshell.simosnap.com/
Server: Linux on a 2048/512 dsl line with static ipv4 and ipv6
Services/Info: Free shell service reserved to italian users only. Psybnc eggdrop, ipv6, bitchx, irssi, 2 max process per
user, usermin wget…
http://freebsd.prohostuk.net/
Server: FreeBSD
Services/Info: 5M disk quota as standard (more might be available if you can justify it), webspace (PHP enabled), an email
address, crontab access (limited), access to all the standard
UNIX command line tools and compilers, IRC access through BitchX…
http://www.celebris.net
Server: FreeBSD, Celeron II 700MHz
Services/Info: Access via SSH/SCP, e-mail, MySQL, webspace, PHP, 7 MB quota, IPv6 support, 1 bg, IRC access, NO bots or
bouncers
http://unixclan.no-ip.org/
Server: PA-RISC Debian Linux
Services/Info: Few restrictions, instant account additions, see webpage for more details.
http://www.zerged.com
Server: Slackware Linux
Services/Info: Offering free shells for IRC access, eggdrop, php, webmail. Runs BitchX and irssi.
http://www2.steve-gibbs.co.uk/
Server: Mandrake Linux
Services/Info: webpage, irc, gcc, pico , php , cgi scripts… quota: 10Mb
http://www.shellsnet.org
Server:
Services/Info: A large group of free shells providers have joined together on one IRC network and website. That
network/site is known as ShellsNet, and is founded on the idea that
different shell providers can help each other out in various ways, from sharing information about abusive users to admins
helping each other with resolving technical issues…
http://bsd.miki.eu.org/
Server: FreeBSD
Services/Info: Polish server. Full featured freebsd accounts suitable for developement, communication, php, unix scripting,
etc.
http://www.chules.net/
Server: Linux (Fedora Core 2)
Services/Info: ???
http://jiyu.gnook.org/
Server: OpenBSD 3.6 – Pentium 2 350hz, 128mb ram
Services/Info: 10mb quota for files (mail on seperate computer), webmail, IRC, WWW, FTP, SSH, NO BNC (and other IRC CRAP)
http://shell.yaphog.org/
Server: FreeBSD
Services/Info: C compiler, perl, free eggdrop hosting, webhosting + php, BitchX, ircII, psybnc, telnet and ssh access,
local ircd, and many more free of charge on FreeBSD systems.
http://www.gibbs-hosting.co.uk/freehosting.html
Server: Mandrake 10
Services/Info: 5mb disk space quota, Bitchx access, gcc,cc, pico, php, cgi scripts, apache, public ftp, LYNX access,
PHP/CGI scripts enabled
http://www.phoenix-network.org/
Server: Debian
Services/Info: Eggdrop, Psybnc, Irssi, BitchX, IRCD, Shoutcast, IPv4 and IPv6, Vhosts, SFTP, MySQL, PHP, Webhosting, Forum
Hosting, Perl, Gcc, Tcl, Sh, Nano, Pico (Disk Quota: 500MB)
http://freeshells.mtveurope.org/
Server: Debian GNU/Linux
Services/Info: 100Mbit bandwidth, Telnet and SSH, gcc compiler, Perl, Python, shell scripting, IRC clients (irssi, Bitchx),
eggdrop, IRC access to all IRC networks, 3 Background
processes, 1 Gigabyte of quota, including detached sessions (“screen” command is available), FTP access (your own directory
accessible via FTP), Your own crontab (running programs
in specific periods of time)
http://www.systemshell.net/
Server: Debian Linux
Services/Info: Email: YourUserName@systemshell.net, Website: http://www.systemshell.net/~YourUserName, Disk space is
limited. Background processes are limited and can only be
programs we have preinstalled on the system.
http://www.kverka.no/
Server: FreeBSD
Services/Info: email/webmail,pop3,ssh,irc,ftp,web space,psybnc,eggdrop,muh,namserver (disk quota: 100mb)
http://www.freeshell.se/
Server: OpenBSD
Services/Info: sshd, irc only ipv6, www with php, storing files and learn som basic commands, nameserver, 25mb disk quota,
1bg process allowed and running programs the staff has
selected
http://www.geekshells.org/
Server: ???
Services/Info: IRC clients, MySQL database, www, ftp, email, vhosts, quota: 5Mb
http://www.darktech.org.uk/
Server: ???
Services/Info: based in scotland, UK. Comes with irc access and allowed background processes.
http://furry.doesntexist.org/
Server: Debian Sarge
Services/Info: Your own homepages under public_html, MySQL + PHP, IRC, JSP, quota 1Gb!
http://nullshells.com/
Server: ???
Services/Info:NullShells.com provides free shell access via SSH with secure FTP, Web (PHP/PERL/MySQL) and storage space,
free subdomain/domain hosting, IRC client access
(BitchX/Irssi), IPv6 vhosts. No email access at this time. Access to development tools such as compilers. No unauthorized
bots or bncs. New mature community oriented provider.
Must go through account approval process.
http://www.disflux.com/
Server: OpenBSD
Services/Info:Services: PHP, GCC, perl, ruby, TCL, python, irssi, bitchx, epic, games, more. IRC: yes, eggdrop allowed, no
bouncers, Quotas: 25MB /home, 25MB www (more if needed)
http://www.bobshells.be/
Server: 4 servers, debian linux
Services/Info:Services: pre-installed eggdrop, pre-installed psybnc, bunch of linux apps, NO WEBSITE/E-MAIL HOSTING,
internal server for hacking and fun :), servers on
1Mbit/256KBit connection, account on one of the 3 user servers… Quota: 10Mb
http://www.boinc.ch/
Server: OpenBSD3.8, 64-bit Sparc architecture
Services/Info:Services: 15MB diskquota, homepage http://www.boinc.ch/~yourname , E-mail address yourname@boinc.ch , PHP
support and many GNU tools and development
compilers available. NO background processes (exceptions may apply)..
http://sense.do.pl/
Server: Running on AMD Duron 1,3ghz
Services/Info: Fully featured account with www/php/mysql(ask for it)/shell/mail.
Accounts will be also quotted for about 40MB fo data.
http://dieguin.no-ip.org
Server: Debian Sarge
Services/Info: Free Shells; ssh, bitchx, eggdrop, psybnc, bnc, ircII, webhosting, mail, 4bg for account, Quota: 50mb. More
info WWW
http://catcher.no-ip.org/
System: Linux 2.6.12
shell account with unlimited software usage and unlimited bg processes, webspace (catcher.no-ip.org/anything) with php and
mysql database, ftp access to Your account, 1 GB disk
quota
http://lostsouls.uv.ro/
Services: ???
http://artax.homelinux.com/
Server: Fedora Core 5
Services: IRC chatting, compiling, and basic unix usage.
http://osmiumnet.com
Services: free SSH and SFTP accounts (quota: 10Mb)
http://univac.gnu-linux.net/
Services:
Homepage URL: http(s)://univac.gnu-linux.net/~yourname/
Email Address: yourname@univac.gnu-linux.net
50 MB Quota on your Personal Directory and Mailbox.
SSH, SCP and SFTP Access
CGI, PHP, SSI, SSL, MySQL (One DB, only at request) and PHPMyAdmin.
WebMail and Community Forum.
Access to mutt, screen, python and a number of other unix commands.
irssi, preconfigured to connect to DilexNET IRC Network.
http://hamish.awardspace.com/
Server: Linux Debian Sarge
Services: eggdrops, three user psyBNC’s (including yourself) and irssi/bitchx.
http://www.nonlogic.org/
Server: Debian GNU/Linux
Services:
SSH and SFTP access
2 GB Quota
Webspace ( username.nonlogic.org, PHP (v5), MySQL, wiki )
Development environment: (c, c++, java etc), interpreters (python, perl, lua), code editors (emacs, nano, vim), version
control (svn)
Web Based Control Panel
IRC exclusively for donaters ( No Bouncers )
http://blinkenshell.org
Services:
SSH and SFTP access
50 MB Quota ( more space can be requested )
Webhost ( username.blinkenshell.org , PHP (v5) enabled )
Database ( MySQL , 5 MB Quota, optional )
Mail ( username@blinkenshell.org , optional )
IRC access via screen and irssi/BitchX ( No bots, no eggdrops: Bots. No bouncers. )
ICQ, AIM, Yahoo, MSN access via CenterICQ. Jabber access.
Development environment: compilers (c, c++, java etc), interpreters (python, perl, php), code editors (emacs, nano, vim),
utilities (subversion, cvs)
http://freeshells.ch/
It is a 64bit Ultrasparc Architecture running NetBSD
250MB of disk space
publicly accessible website (http://www.freeshells.ch/~username)
send/receive email (username@freeshells.ch)
file transfer via scp, sftp, ftp
shell login via ssh or telnet
IPv6 connectivity
no bots, bncs, or bg’s while logged out
http://www.anapnea.net/
Server: Gentoo Linux
Services: 8MB disk space,
MSN, AIM, YIM, and other clients (including ctorrent), Perl, GCC, CLISP, Ruby, and many development tools, Misc. apps and
games such as netris,
Limit of 16 simultaneous processes and 3 simultaneous logins per user
Your own webspace at anapnea.net/~username/
SFTP access
No bots, no zombie scripts, no abuse, no rudeness…
http://new-order.org/
Server: FreeBSD
Services: ssh / sftp access
100 MB disk quota , screen, lynx, BitchX, centericq
mc, vifm and much more
send and receive emails using mutt or pine
apache+php+mysql
homepages under public_html
http://rednex.1.vg/
Server: gentoo linux
Services: 200MB space, tools for: icq, irc, c/c++, mail, etc…
http://glupie.info/
Server: ???
Services: quota: 10-100 mb, php, mysql, irc (bitchx/irssi), ekg, wget, screen, ipv6, jabber server, subdomains:
*.glupie.info.
http://tshells.selfip.org
Server: ubuntu linux
Services: Trinity Shells provides free linux shell accounts on ubuntu server edition. The free shell includes 50 megs of
space for webhosting, network programs (irc, telnet, ssh etc),
access to compilers (c, c++, perl etc) as well as access to MySQL.
http://shellshock.homeunix.net
Services: Users are supplied with 500MB of storage space. Instant messanging services including MSN, AOL, Yahoo!, Jabber.
IRC services like Eggdrop, BNC (bouncers), and proxies.
And web hosting with MySQL, and PHP.
http://shellhostia.com/
Server: FreeBSD
Services: Vhosts available. PsyBNC and Eggdrop supported.
Users must login to their web page once per day to maintain their account… (???)
http://singularity.darkspace.info/
Server: RedHat Linux
Services: Quota: 20 Mb, IRC access, gcc, cc, perl, php, python, bitchx, pico, emacs, lynx, wget…
Background processes allowed, but NO psyBNC, Eggdrop, BNC
http://shellweb.net/
Server: Ubuntu linux
Srvices: Web Mail Access, Home page http://vhost.shellweb.net or hosting your own domain name, FTP access, MySQL Database,
SSH access…
http://hackbox.ath.cx/
Server: Linux
Services: ssh, telnet, lynx, BitchX, mail, webspace etc.
http://jaguar.garofil.be/
Server: Debian Linux
Services: SSH, MySQL database, 1 background process, 10 simultaneously running processes, 25MB bandwidthquota, quota: 10MB
http://savsem.debil.net
Server: Fedora Linux
Services: 1 bg, IRC, Eggdrop, no BNC`s, mail, web, 15 mb quota
http://www.visualserver.org/
Server: Linux
Services: No applications running in the background, webssh, Quota: 500Mb
http://free.calvinleong.net
Server: FreeBSD
Service: www, ssh, sftp, bitchx ,eggdrop, psybnc, lynx, wget… no. of processes: maximum 2 only
http://www.narkwork.com/
Server: FreeBSD
Services: Shell login via SSH or Telnet, ftp, gcc, c++, mail, web page under public_html, php, perl, python, mysql, screen,
BitchX, 100MB quota and more. Request something you don’t
see.
http://www.unixpod.com/
Server: Debian GNU/Linux 4.0
Services: vim, emacs, lynx, pine, PHP 5, 1 MySQL 5, up to 10 background processes, email , webmail, quota: 500Mb. Unixpod
Provide tools to aid developers and users to create/use
open source software.
http://www.bshellz.net
Server: Debian Linux
Services: SSH/SFTP, GNU tools, gcc, g++, make, Perl, Tcl, Python, Bash, php, perl, mysql, irc, bitchx… Quota: 500Mb
If users dont say !keep on IRC channel at least once in a 24 hours period their account will be deleted! (hm, hm!?)
http://www.s33n.net
Server: Linux/Debian 4.0
Service: Web Mail Access, Home page http://s33n.net/~YourUserName or hosting your own domain name, FTP access, MySQL
Database, 50mb space , eggdrop allowed, access to
compilers , bitchx, ftp , msn ,ssh access, and a lot of more…
http://www.learningshells.com
Server: Debian Linux, 8GB RAM, QuadCore CPU, 10Mbit
Services: personal web page (50Mb), personal unix email account, able to compile C programs, background processes, and
more..
http://netburst.zenknight.org
Services: 1 eggdrop, and 1 client for the freenode.net network, user can run maximum 2 background processes
http://www.shellium.org
Server: Debian Etch, 100Mbit connection
Services: Free BNC psybnc, Free eggdrop, 100MB quota, webmail, user websites, CGI, imap, sftp, phpmyadmin, 2 mysql
databases, 2 postgre databases, able to compile programs, 2
background processes, over 6 shells to choose from(fish, bash, tcsh, csh, dash, sash, etc.)
http://shell.kracknet.net
Server: FreeBSD 7.0
To create and account users must ssh to shell.kracknet.net on port 22 and login with new:new
http://odin.phoenix-network.org/
Server: Debian, 256 MB of RAM, 250 GB traffic, 20 GB HD and 30 ips, of which 10 availables.
Services: Eggdrop, Energymech, PsyBNC, sBNC, Irssi, BitchX, bash, irc, and more if needed and once discussed with admin.
Picrofo - CentOS
OS: CentOS 6.5
Website: http://picrofo.com
Services: RAM: 2 GB, Processor: Intel(R) Atom(TM) CPU C2750 @ 2.40GHz, Bandwidth: 1000 Mbps
ssh command: ssh c1.linuxshell.picrofo.com
Picrofo - Ubuntu
OS: Ubuntu 14.04 LTS
Website: http://picrofo.com
Services: RAM: 2 GB, Processor: Intel(R) Xeon(R) CPU E5520 @ 2.27GHz, Bandiwdth: 1000 Mbps
ssh command: ssh u1.linuxshell.picrofo.com
SDF Public Access UNIX System
OS: NetBSD
Website: http://freeshell.org
Services: ssh and telnet, DSl/PPP/dialup access, email, usenet, chat, webspace 80MB
ssh command: ssh freeshell.org
Grex
OS: OpenBSD
Website: http://grex.org
Services: ssh grex.org::ssh and telnet, email, webspace 1MB
ssh command: ssh grex.org
Nyx
OS: unknown
Website: http://www.nyx.net
Services: he oldest free public access ISP offers a text-based newsfeed, email, web access, lynx, webspace hosting 2MB
ssh command: telnet nyx.nyx.net
aeshells
OS: Slackware
Website: http://www.aeshells.com
Services: ssh, email, webspace, irc, bitchx, eggdrop, mysql, webspace 200MB
ssh command: ssh aeshells.com
free-shells.com.ar
OS: FreeBSD 6.3
Website: http://www.en.free-shells.com.ar
Services: ssh, telnet, ftp, lynx, web pages, php+mysql, webmail, compile and test your programs, webspace 60MB
ssh command: ssh everest.free-shells.com.ar -p 702
free-shells.com.ar
OS: Debian Sarge
Website: http://debian.free-shells.com.ar
Services: ssh, telnet, ftp, lynx, web pages with ~/user, email accounts, webspace 10MB
ssh command: ssh debian.free-shells.com.ar -p 802
nux.sk
OS: Debian GNU/Linux (3 GHz CPU, 1GB RAM, 30 Mbit upload, 2 Mbit download)
Website: http://nux.sk
Services: gcc, vim, screen, irssi, mutt, pine, mc, make, g++, ruby, python, gzip, gdb, webpages with http://nux.sk/~user,
email as user@nux.sk. /home directory has 1GB
ssh command: ~temporarily down~
freessh.net
OS: Debian 5.0 Stable (Intel(R) Xeon(TM) CPU 2.40GHz, 512MB RAM)
Website: http://www.freessh.net
Services: irssi, gcc, g++, screen, cvs, torrent
ssh command: ssh srvgam01.freessh.net
yunix.net
OS: CentOS [Pentium(R) Dual-Core CPU E5200 @ 2.50GHz]
Website: http://yunix.net
Services: Irssi, screen, psybnc, figlet, local IRC and Mordor MUD, cc/g++ version 4.1.2, gdb 6.8-27, Python 2.4.3, Perl
5.8.8, Shells: sh, bash, zsh, tcsh, csh; each user gets 40MB RAM
and 10 background processes, webspace 30MB
ssh command: ssh username@yunix.net -p 666
( 2.)
------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------
----------------------Exploring Linux Shell (Terminal) Remotely Using PHP Shell-----------------------------
------------------------------------------------------------------------------------------------------
PHP Shell or Shell PHP is a program or script written in PHP (Php Hypertext Preprocessor) which provides Linux Terminal
(Shell is a much broader concept) in Browser. PHP Shell lets
you to execute most of the shell commands in browser, but not all.
PHP Shell is very much useful in executing Shell commands on remote web-server, similar to Telnet and SSH. It can be useful
in moving, unzipping and handling larger files or bulk
files on Web-Server. Administrating and Maintaining a webserver using PHP Shell is very much easier, provided the user has
working knowledge of Shell Programs.
When there was Telnet and SSH already, what is the need of phpshell, is a question which may come to the mind of yours. The
answer is – in many cases, the firewall is so restrictive
that nothing, apart from HTTP(S), gets through, in that case phpshell lets you gain the shell access on a remote server.
However you can not execute a GUI program or an interactive script/program using PHP Shell, It could be it’s limitation but
this limitation is a boon, as GUI disabling means higher
security.
Download PHP Shell
The latest version can be downloaded from here:
http://sourceforge.net/projects/phpshell/?source=dlp
How to Install PHP Shell
As stated above PHP Shell is written in PHP so you don’t need to install it, just move the archived file to your working
apache/httpd directory, and of course you must have Apache
and PHP installed.
Install Apache and PHP
Install on Debian based systems using apt-get command
# apt-get install apache2
# apt-get install php5 libapache2-mod-auth-mysql php5-mysql
# service apache2 startInstall on Red Hat based systems using yum command.
# yum install httpd
# yum install php php-mysql
# service httpd startBy default working directory of apache/http is:
on Debian based distro /var/www
on Red Hat based distro /var/www/html
Note: It can be changed to any other folder, and it is recommended as a security measure.
Move the downloaded PHP Shell archive file to Apache working directory. Here I am using Debian system, so my Apache working
directory is.
# mv phpshell-2.4.tar.gz /var/www/Unzip php shell
# tar -zxvf phpshell-2.4.tar.gzRemove the compressed file.
# rm -rf phpshell-2.4.tar.gzRename the php shell folder to anything hard to guess, as a security measure. For example, I
move to the phpshell (now tecmint-nix) folder and rename
phpshell.php to index.php so that you are redirected directly to the index page and not the contents of the folder.
# mv phpshell-2.4 tecmint-nix
# cd tecmint-nix/
# mv phpshell.php index.phpFine, Its time to open your Web browser and navigate to “http://127.0.0.1/tecmint-nix“.
By default no username or password will work, hence you need to add username and password manually.
To create a user name and password call the pwhash.php script already in phpshell folder like “http://127.0.0.1/tecmint-
nix/pwhash.php“.
Enter Username and password on the above php page and click ‘Update‘.
As stated in the Result section you need to add the sha line as it as by copying and pasting into config.php in the [user]
section.
Open config.php file using your favorite editor.
# nano config.phpAdd the line.
tecmint = "sha1:673a19a5:7e4b922b64a6321716370dad1fed192cdb661170"As it is in the [user section], obviously your sha1 will
be unique based upon your username and password.
PHP Shell or Shell PHP is a program or script written in PHP (Php Hypertext Preprocessor) which provides Linux Terminal
(Shell is a much broader concept) in Browser. PHP Shell lets
you to execute most of the shell commands in browser, but not all.
Linux Shell Acess on Browser
PHP Shell is very much useful in executing Shell commands on remote web-server, similar to Telnet and SSH. It can be useful
in moving, unzipping and handling larger files or bulk
files on Web-Server. Administrating and Maintaining a webserver using PHP Shell is very much easier, provided the user has
working knowledge of Shell Programs.
When there was Telnet and SSH already, what is the need of phpshell, is a question which may come to the mind of yours. The
answer is – in many cases, the firewall is so restrictive
that nothing, apart from HTTP(S), gets through, in that case phpshell lets you gain the shell access on a remote server.
However you can not execute a GUI program or an interactive script/program using PHP Shell, It could be it’s limitation but
this limitation is a boon, as GUI disabling means higher
security.
Download PHP Shell
The latest version can be downloaded from here:
¦http://sourceforge.net/projects/phpshell/?source=dlp
How to Install PHP Shell
As stated above PHP Shell is written in PHP so you don’t need to install it, just move the archived file to your working
apache/httpd directory, and of course you must have Apache
and PHP installed.
Install Apache and PHP
Install on Debian based systems using apt-get command.
# apt-get install apache2
# apt-get install php5 libapache2-mod-auth-mysql php5-mysql
# service apache2 startInstall on Red Hat based systems using yum command.
# yum install httpd
# yum install php php-mysql
# service httpd startBy default working directory of apache/http is:
on Debian based distro /var/www
on Red Hat based distro /var/www/html
Note: It can be changed to any other folder, and it is recommended as a security measure.
Move the downloaded PHP Shell archive file to Apache working directory. Here I am using Debian system, so my Apache working
directory is.
# mv phpshell-2.4.tar.gz /var/www/Unzip php shell
# tar -zxvf phpshell-2.4.tar.gzRemove the compressed file.
# rm -rf phpshell-2.4.tar.gzRename the php shell folder to anything hard to guess, as a security measure. For example, I
move to the phpshell (now tecmint-nix) folder and rename
phpshell.php to index.php so that you are redirected directly to the index page and not the contents of the folder.
# mv phpshell-2.4 tecmint-nix
# cd tecmint-nix/
# mv phpshell.php index.phpFine, Its time to open your Web browser and navigate to “http://127.0.0.1/tecmint-nix“.
PHP Shell Login Screen
By default no username or password will work, hence you need to add username and password manually.
To create a user name and password call the pwhash.php script already in phpshell folder like “http://127.0.0.1/tecmint-
nix/pwhash.php“.
PHP Shell Password Hasher
Enter Username and password on the above php page and click ‘Update‘.
Set PHP Shell Password
As stated in the Result section you need to add the sha line as it as by copying and pasting into config.php in the [user]
section.
Open config.php file using your favorite editor.
# nano config.phpAdd the line.
tecmint = "sha1:673a19a5:7e4b922b64a6321716370dad1fed192cdb661170"As it is in the [user section], obviously your sha1 will
be unique based upon your username and password.
PHP Shell Password Line
Save the config.php file with the current changes and exit it.
Now it’s time to login. Visit http://127.0.0.1/tecmint-nix. Login using your ‘User Name‘ and ‘Password‘.
PHP Shell or Shell PHP is a program or script written in PHP (Php Hypertext Preprocessor) which provides Linux Terminal
(Shell is a much broader concept) in Browser. PHP Shell lets
you to execute most of the shell commands in browser, but not all.
Linux Shell Acess on Browser
PHP Shell is very much useful in executing Shell commands on remote web-server, similar to Telnet and SSH. It can be useful
in moving, unzipping and handling larger files or bulk
files on Web-Server. Administrating and Maintaining a webserver using PHP Shell is very much easier, provided the user has
working knowledge of Shell Programs.
When there was Telnet and SSH already, what is the need of phpshell, is a question which may come to the mind of yours. The
answer is – in many cases, the firewall is so restrictive
that nothing, apart from HTTP(S), gets through, in that case phpshell lets you gain the shell access on a remote server.
However you can not execute a GUI program or an interactive script/program using PHP Shell, It could be it’s limitation but
this limitation is a boon, as GUI disabling means higher
security.
Download PHP Shell
The latest version can be downloaded from here:
¦http://sourceforge.net/projects/phpshell/?source=dlp
How to Install PHP Shell
As stated above PHP Shell is written in PHP so you don’t need to install it, just move the archived file to your working
apache/httpd directory, and of course you must have Apache
and PHP installed.
Install Apache and PHP
Install on Debian based systems using apt-get command.
# apt-get install apache2
# apt-get install php5 libapache2-mod-auth-mysql php5-mysql
# service apache2 startInstall on Red Hat based systems using yum command.
# yum install httpd
# yum install php php-mysql
# service httpd startBy default working directory of apache/http is:
on Debian based distro /var/www
on Red Hat based distro /var/www/html
Note: It can be changed to any other folder, and it is recommended as a security measure.
Move the downloaded PHP Shell archive file to Apache working directory. Here I am using Debian system, so my Apache working
directory is.
# mv phpshell-2.4.tar.gz /var/www/Unzip php shell
# tar -zxvf phpshell-2.4.tar.gzRemove the compressed file.
# rm -rf phpshell-2.4.tar.gzRename the php shell folder to anything hard to guess, as a security measure. For example, I
move to the phpshell (now tecmint-nix) folder and rename
phpshell.php to index.php so that you are redirected directly to the index page and not the contents of the folder.
# mv phpshell-2.4 tecmint-nix
# cd tecmint-nix/
# mv phpshell.php index.phpFine, Its time to open your Web browser and navigate to “http://127.0.0.1/tecmint-nix“.
PHP Shell Login Screen
By default no username or password will work, hence you need to add username and password manually.
To create a user name and password call the pwhash.php script already in phpshell folder like “http://127.0.0.1/tecmint-
nix/pwhash.php“.
PHP Shell Password Hasher
Enter Username and password on the above php page and click ‘Update‘.
Set PHP Shell Password
As stated in the Result section you need to add the sha line as it as by copying and pasting into config.php in the [user]
section.
Open config.php file using your favorite editor.
# nano config.phpAdd the line.
tecmint = "sha1:673a19a5:7e4b922b64a6321716370dad1fed192cdb661170"As it is in the [user section], obviously your sha1 will
be unique based upon your username and password.
PHP Shell Password Line
Save the config.php file with the current changes and exit it.
Now it’s time to login. Visit http://127.0.0.1/tecmint-nix. Login using your ‘User Name‘ and ‘Password‘.
PHP Shell Terminal Access
Yeah you have successfully logged into your phpshell. Now you can execute most the the shell program as smooth as if you
are running those commands and scripts on your own
system.
Certain bottlenecks of PHP Shell
¦No additional input supported, i.e., once a program is launched no interactive script can be used.
¦All the webserver is configured to timeout at a certain time frame, say 30 sec. This limitation is of webserver/ Apache
and not phpshell.
¦Each command in phpshell must be strictly one liner. Phpshell don’t understand command in continuation or a multi lines
command as in loops.
Remember that it’s very important to have PHP Shell password protected, or else everybody will be able so snoop into your
files and perhaps also be able to delete them! Please take
the time to protect your installation of PHP Shell. Please take the time to protect your installation of PHP Shell. Please
take the time to protect your installation of PHP Shell. Please
take the time to protect your installation of PHP Shell. Please take the time to protect your installation of PHP Shell.
Please take the time to protect your installation of PHP Shell.
Please take the time to protect your installation of PHP Shell. Please take the time to protect your installation of PHP
Shell. Please take the time to protect your installation of PHP
Shell. Please take the time to protect your installation of ANY TYPE OF PROTECTABLE Shell !!!!!!!!!!!!!!!!!!!
(
3.)
------------------------------------------------------------------------------------------------------
-----------------------------------------PORT
DATABASE------------------------------------------------------------
------------------------------------------------------------------------------------
------------------------------------------------------------------------------------------------------
# Port DB for Infobot by CommPort5
# Thanks 'a lot' to oznoid and #Perl on EFnet for the help!
port 0 => - Reserved
port 1 => tcpmux - TCP Port Service Multiplexer
port 2 => compressnet - Management Utility
port 3 => compressnet - Compression Process
port 5 => rje - Remote Job Entry
port 7 => echo - Echo
port 9 => discard - Discard
port 11 => systat - Active Users
port 13 => daytime - Daytime (RFC 867)
port 15 => netstat - Was Netstat
port 17 => qotd - Quote of the Day
port 18 => msp - Message Send Protocol
port 19 => chargen - Character Generator
port 20 => ftp-data - File Transfer [Default Data]
port 21 => ftp - File Transfer [Control]
port 22 => ssh - SSH Remote Login Protocol
port 23 => telnet - Telnet
port 24 => - any private mail system
port 25 => smtp - Simple Mail Transfer
port 27 => nsw-fe - NSW User System FE
port 29 => msg-icp - MSG ICP
port 31 => msg-auth - MSG Authentication
port 33 => dsp - Display Support Protocol
port 35 => - any private printer server
port 37 => time - Time
port 38 => rap - Route Access Protocol
port 39 => rlp - Resource Location Protocol
port 41 => graphics - Graphics
port 42 => name - Host Name Server
port 42 => nameserver - Host Name Server
port 43 => nicname - Who Is
port 44 => mpm-flags - MPM FLAGS Protocol
port 45 => mpm - Message Processing Module [recv]
port 46 => mpm-snd - MPM [default send]
port 47 => ni-ftp - NI FTP
port 48 => auditd - Digital Audit Daemon
port 49 => tacacs - Login Host Protocol (TACACS)
port 50 => re-mail-ck - Remote Mail Checking Protocol
port 51 => la-maint - IMP Logical Address Maintenance
port 52 => xns-time - XNS Time Protocol
port 53 => domain - Domain Name Server
port 54 => xns-ch - XNS Clearinghouse
port 55 => isi-gl - ISI Graphics Language
port 56 => xns-auth - XNS Authentication
port 57 => - any private terminal access
port 58 => xns-mail - XNS Mail
port 59 => - any private file service
port 61 => ni-mail - NI MAIL
port 62 => acas - ACA Services
port 63 => whois++ - whois++
port 64 => covia - Communications Integrator (CI)
port 65 => tacacs-ds - TACACS-Database Service
port 66 => sql*net - Oracle SQL*NET
port 67 => bootps - Bootstrap Protocol Server
port 68 => bootpc - Bootstrap Protocol Client
port 69 => tftp - Trivial File Transfer
port 70 => gopher - Gopher
port 71 => netrjs-1 - Remote Job Service
port 72 => netrjs-2 - Remote Job Service
port 73 => netrjs-3 - Remote Job Service
port 74 => netrjs-4 - Remote Job Service
port 75 => - any private dial out service
port 76 => deos - Distributed External Object Store
port 77 => - any private RJE service
port 78 => vettcp - vettcp
port 79 => finger - Finger
port 80 => http - World Wide Web HTTP
port 80 => www - World Wide Web HTTP
port 80 => www-http - World Wide Web HTTP
port 81 => hosts2-ns - HOSTS2 Name Server
port 82 => xfer - XFER Utility
port 83 => mit-ml-dev - MIT ML Device
port 84 => ctf - Common Trace Facility
port 85 => mit-ml-dev - MIT ML Device
port 86 => mfcobol - Micro Focus Cobol
port 87 => - any private terminal link
port 88 => kerberos - Kerberos
port 89 => su-mit-tg - SU/MIT Telnet Gateway
port 90 => dnsix - DNSIX Securit Attribute Token Map (or Pointcast (UNOFFICIALLY))
port 91 => mit-dov - MIT Dover Spooler
port 92 => npp - Network Printing Protocol
port 93 => dcp - Device Control Protocol
port 94 => objcall - Tivoli Object Dispatcher
port 95 => supdup - SUPDUP
port 96 => dixie - DIXIE Protocol Specification
port 97 => swift-rvf - Swift Remote Virtural File Protocol
port 98 => tacnews - TAC News
port 99 => metagram - Metagram Relay
port 100 => newacct - [unauthorized use]
port 101 => hostname - NIC Host Name Server
port 102 => iso-tsap - ISO-TSAP Class 0
port 103 => gppitnp - Genesis Point-to-Point Trans Net
port 104 => acr-nema - ACR-NEMA Digital Imag. & Comm. 300
port 105 => cso - CCSO name server protocol
port 105 => csnet-ns - Mailbox Name Nameserver
port 106 => 3com-tsmux - 3COM-TSMUX
port 107 => rtelnet - Remote Telnet Service
port 108 => snagas - SNA Gateway Access Server
port 109 => pop2 - Post Office Protocol - Version 2
port 110 => pop3 - Post Office Protocol - Version 3
port 111 => sunrpc - SUN Remote Procedure Call
port 112 => mcidas - McIDAS Data Transmission Protocol
port 113 => ident - 113/tcp => auth - Authentication Service
port 114 => audionews - Audio News Multicast
port 115 => sftp - Simple File Transfer Protocol
port 116 => ansanotify - ANSA REX Notify
port 117 => uucp-path - UUCP Path Service
port 118 => sqlserv - SQL Services
port 119 => nntp - Network News Transfer Protocol
port 120 => cfdptkt - CFDPTKT
port 121 => erpc - Encore Expedited Remote Pro.Call
port 122 => smakynet - SMAKYNET
port 123 => ntp - Network Time Protocol
port 124 => ansatrader - ANSA REX Trader
port 125 => locus-map - Locus PC-Interface Net Map Ser
port 126 => nxedit - NXEdit (previously assigned to unitary - Unisys Unitary Login)
port 127 => locus-con - Locus PC-Interface Conn Server
port 128 => gss-xlicen - GSS X License Verification
port 129 => pwdgen - Password Generator Protocol
port 130 => cisco-fna - cisco FNATIVE
port 131 => cisco-tna - cisco TNATIVE
port 132 => cisco-sys - cisco SYSMAINT
port 133 => statsrv - Statistics Service
port 134 => ingres-net - INGRES-NET Service
port 135 => epmap - DCE endpoint resolution
port 136 => profile - PROFILE Naming System
port 137 => netbios-ns - NETBIOS Name Service
port 138 => netbios-dgm - NETBIOS Datagram Service
port 139 => netbios-ssn - NETBIOS Session Service
port 140 => emfis-data - EMFIS Data Service
port 141 => emfis-cntl - EMFIS Control Service
port 142 => bl-idm - Britton-Lee IDM
port 143 => imap - Internet Message Access Protocol
port 144 => uma - Universal Management Architecture
port 145 => uaac - UAAC Protocol
port 146 => iso-tp0 - ISO-IP0
port 147 => iso-ip - ISO-IP
port 148 => jargon - Jargon
port 149 => aed-512 - AED 512 Emulation Service
port 150 => sql-net - SQL-NET
port 151 => hems - HEMS
port 152 => bftp - Background File Transfer Program
port 153 => sgmp - SGMP
port 154 => netsc-prod - NETSC
port 155 => netsc-dev - NETSC
port 156 => sqlsrv - SQL Service
port 157 => knet-cmp - KNET/VM Command/Message Protocol
port 158 => pcmail-srv - PCMail Server
port 159 => nss-routing - NSS-Routing
port 160 => sgmp-traps - SGMP-TRAPS
port 161 => snmp - SNMP
port 162 => snmptrap - SNMPTRAP
port 163 => cmip-man - CMIP/TCP Manager
port 164 => cmip-agent - CMIP/TCP Agent
port 165 => xns-courier - Xerox
port 166 => s-net - Sirius Systems
port 167 => namp - NAMP
port 168 => rsvd - RSVD
port 169 => send - SEND
port 170 => print-srv - Network PostScript
port 171 => multiplex - Network Innovations Multiplex
port 172 => cl/1 - Network Innovations CL/1
port 173 => xyplex-mux - Xyplex
port 174 => mailq - MAILQ
port 175 => vmnet - VMNET
port 176 => genrad-mux - GENRAD-MUX
port 177 => xdmcp - X Display Manager Control Protocol
port 178 => nextstep - NextStep Window Server
port 179 => bgp - Border Gateway Protocol
port 180 => ris - Intergraph
port 181 => unify - Unify
port 182 => audit - Unisys Audit SITP
port 183 => ocbinder - OCBinder
port 184 => ocserver - OCServer
port 185 => remote-kis - Remote-KIS
port 186 => kis - KIS Protocol
port 187 => aci - Application Communication Interface
port 188 => mumps - Plus Five's MUMPS
port 189 => qft - Queued File Transport
port 190 => gacp - Gateway Access Control Protocol
port 191 => prospero - Prospero Directory Service
port 192 => osu-nms - OSU Network Monitoring System
port 193 => srmp - Spider Remote Monitoring Protocol
port 194 => irc - Internet Relay Chat Protocol
port 195 => dn6-nlm-aud - DNSIX Network Level Module Audit
port 196 => dn6-smm-red - DNSIX Session Mgt Module Audit Redir
port 197 => dls - Directory Location Service
port 198 => dls-mon - Directory Location Service Monitor
port 199 => smux - SMUX
port 200 => src - IBM System Resource Controller
port 201 => at-rtmp - AppleTalk Routing Maintenance
port 202 => at-nbp - AppleTalk Name Binding
port 203 => at-3 - AppleTalk Unused
port 204 => at-echo - AppleTalk Echo
port 205 => at-5 - AppleTalk Unused
port 206 => at-zis - AppleTalk Zone Information
port 207 => at-7 - AppleTalk Unused
port 208 => at-8 - AppleTalk Unused
port 209 => qmtp - The Quick Mail Transfer Protocol
port 210 => z39.50 - ANSI Z39.50
port 211 => 914c/g - Texas Instruments 914C/G Terminal
port 212 => anet - ATEXSSTR
port 213 => ipx - IPX
port 214 => vmpwscs - VM PWSCS
port 215 => softpc - Insignia Solutions
port 216 => CAIlic - Computer Associates Int'l License Server
port 217 => dbase - dBASE Unix
port 218 => mpp - Netix Message Posting Protocol
port 219 => uarps - Unisys ARPs
port 220 => imap3 - Interactive Mail Access Protocol v3
port 221 => fln-spx - Berkeley rlogind with SPX auth
port 222 => rsh-spx - Berkeley rshd with SPX auth (possible conflict with Masqdialer)
port 223 => cdc - Certificate Distribution Center
port 224 => masqdialer - masqdialer
port 225 => - Reserved
port 226 => - Reserved
port 227 => - Reserved
port 228 => - Reserved
port 229 => - Reserved
port 230 => - Reserved
port 231 => - Reserved
port 232 => - Reserved
port 233 => - Reserved
port 234 => - Reserved
port 235 => - Reserved
port 236 => - Reserved
port 237 => - Reserved
port 238 => - Reserved
port 239 => - Reserved
port 240 => - Reserved
port 241 => - Reserved
port 242 => direct - Direct
port 243 => sur-meas - Survey Measurement
port 244 => dayna - Dayna
port 245 => link - LINK
port 246 => dsp3270 - Display Systems Protocol
port 247 => subntbcst_tftp - SUBNTBCST_TFTP
port 248 => bhfhs - bhfhs
port 249 => - Reserved
port 250 => - Reserved
port 251 => - Reserved
port 252 => - Reserved
port 253 => - Reserved
port 254 => - Reserved
port 255 => - Reserved
port 256 => rap - RAP
port 257 => set - Secure Electronic Transaction
port 258 => yak-chat - Yak Winsock Personal Chat
port 259 => esro-gen - Efficient Short Remote Operations
port 260 => openport - Openport
port 261 => nsiiops - IIOP Name Service over TLS/SSL
port 262 => arcisdms - Arcisdms
port 263 => hdap - HDAP
port 264 => bgmp - BGMP
port 280 => http-mgmt - http-mgmt
port 281 => personal-link - Personal Link
port 282 => cableport-ax - Cable Port A/X
port 283 => rescap - rescap
port 308 => novastorbakcup - Novastor Backup
port 309 => entrusttime - EntrustTime
port 310 => bhmds - bhmds
port 311 => asip-webadmin - AppleShare IP WebAdmin
port 312 => vslmp - VSLMP
port 313 => magenta-logic - Magenta Logic
port 314 => opalis-robot - Opalis Robot
port 315 => dpsi - DPSI
port 316 => decauth - decAuth
port 317 => zannet - Zannet
port 318 => pkix-timestamp - PKIX TimeStamp
port 319 => ptp-event - PTP Event
port 320 => ptp-general - PTP General
port 321 => pip - PIP
port 322 => rtsps - RTSPS
port 344 => pdap - Prospero Data Access Protocol
port 345 => pawserv - Perf Analysis Workbench
port 346 => zserv - Zebra server
port 347 => fatserv - Fatmen Server
port 348 => csi-sgwp - Cabletron Management Protocol
port 349 => mftp - mftp
port 350 => matip-type-a - MATIP Type A
port 351 => matip-type-b - MATIP Type B
port 351 => bhoetty - bhoetty
port 352 => dtag-ste-sb - DTAG
port 352 => bhoedap4 - bhoedap4
port 353 => ndsauth - NDSAUTH
port 354 => bh611 - bh611
port 355 => datex-asn - DATEX-ASN
port 356 => cloanto-net-1 - Cloanto Net 1
port 357 => bhevent - bhevent
port 358 => shrinkwrap - Shrinkwrap
port 359 => tenebris_nts - Tenebris Network Trace Service
port 360 => scoi2odialog - scoi2odialog
port 361 => semantix - Semantix
port 362 => srssend - SRS Send
port 363 => rsvp_tunnel - RSVP Tunnel
port 364 => aurora-cmgr - Aurora CMGR
port 365 => dtk - DTK
port 366 => odmr - ODMR
port 367 => mortgageware - MortgageWare
port 368 => qbikgdp - QbikGDP
port 369 => rpc2portmap - rpc2portmap
port 370 => codaauth2 - codaauth2
port 371 => clearcase - Clearcase
port 372 => ulistproc - ListProcessor
port 373 => legent-1 - Legent Corporation
port 374 => legent-2 - Legent Corporation
port 375 => hassle - Hassle
port 376 => nip - Amiga Envoy Network Inquiry Proto
port 377 => tnETOS - NEC Corporation
port 378 => dsETOS - NEC Corporation
port 379 => is99c - TIA/EIA/IS-99 modem client
port 380 => is99s - TIA/EIA/IS-99 modem server
port 381 => hp-collector - hp performance data collector
port 382 => hp-managed-node - hp performance data managed node
port 383 => hp-alarm-mgr - hp performance data alarm manager
port 384 => arns - A Remote Network Server System
port 385 => ibm-app - IBM Application
port 386 => asa - ASA Message Router Object Def.
port 387 => aurp - Appletalk Update-Based Routing Pro.
port 388 => unidata-ldm - Unidata LDM Version 4
port 389 => ldap - Lightweight Directory Access Protocol
port 390 => uis - UIS
port 391 => synotics-relay - SynOptics SNMP Relay Port
port 392 => synotics-broker - SynOptics Port Broker Port
port 393 => dis - Data Interpretation System
port 394 => embl-ndt - EMBL Nucleic Data Transfer
port 395 => netcp - NETscout Control Protocol
port 396 => netware-ip - Novell Netware over IP
port 397 => mptn - Multi Protocol Trans. Net.
port 398 => kryptolan - Kryptolan
port 399 => iso-tsap-c2 - ISO Transport Class 2 Non-Control over TCP
port 400 => work-sol - Workstation Solutions
port 401 => ups - Uninterruptible Power Supply
port 402 => genie - Genie Protocol
port 403 => decap - decap
port 404 => nced - nced
port 405 => ncld - ncld
port 406 => imsp - Interactive Mail Support Protocol
port 407 => timbuktu - Timbuktu
port 408 => prm-sm - Prospero Resource Manager Sys. Man.
port 409 => prm-nm - Prospero Resource Manager Node Man.
port 410 => decladebug - DECLadebug Remote Debug Protocol
port 411 => rmt - Remote MT Protocol
port 412 => synoptics-trap - Trap Convention Port
port 413 => smsp - SMSP
port 414 => infoseek - InfoSeek
port 415 => bnet - BNet
port 416 => silverplatter - Silverplatter
port 417 => onmux - Onmux
port 418 => hyper-g - Hyper-G
port 419 => ariel1 - Ariel
port 420 => smpte - SMPTE
port 421 => ariel2 - Ariel
port 422 => ariel3 - Ariel
port 423 => opc-job-start - IBM Operations Planning and Control Start
port 424 => opc-job-track - IBM Operations Planning and Control Track
port 425 => icad-el - ICAD
port 426 => smartsdp - smartsdp
port 427 => svrloc - Server Location
port 428 => ocs_cmu - OCS_CMU
port 429 => ocs_amu - OCS_AMU
port 430 => utmpsd - UTMPSD
port 431 => utmpcd - UTMPCD
port 432 => iasd - IASD
port 433 => nnsp - NNSP
port 434 => mobileip-agent - MobileIP-Agent
port 435 => mobilip-mn - MobilIP-MN
port 436 => dna-cml - DNA-CML
port 437 => comscm - comscm
port 438 => dsfgw - dsfgw
port 439 => dasp - dasp
port 440 => sgcp - sgcp
port 441 => decvms-sysmgt - decvms-sysmgt
port 442 => cvc_hostd - cvc_hostd
port 443 => https - http protocol over TLS/SSL
port 444 => snpp - Simple Network Paging Protocol [RFC1568]
port 445 => microsoft-ds - Microsoft-DS
port 446 => ddm-rdb - DDM-RDB
port 447 => ddm-dfm - DDM-RFM
port 448 => ddm-ssl - DDM-SSL
port 449 => as-servermap - AS Server Mapper
port 450 => tserver - TServer
port 451 => sfs-smp-net - Cray Network Semaphore server
port 452 => sfs-config - Cray SFS config server
port 453 => creativeserver - CreativeServer
port 454 => contentserver - ContentServer
port 455 => creativepartnr - CreativePartnr
port 456 => macon-tcp - macon-tcp
port 457 => scohelp - scohelp
port 458 => appleqtc - apple quick time
port 459 => ampr-rcmd - ampr-rcmd
port 460 => skronk - skronk
port 461 => datasurfsrv - DataRampSrv
port 462 => datasurfsrvsec - DataRampSrvSec
port 463 => alpes - alpes
port 464 => kpasswd - kpasswd
port 466 => digital-vrc - digital-vrc
port 467 => mylex-mapd - mylex-mapd
port 468 => photuris - proturis
port 469 => rcp - Radio Control Protocol
port 470 => scx-proxy - scx-proxy
port 471 => mondex - Mondex
port 472 => ljk-login - ljk-login
port 473 => hybrid-pop - hybrid-pop
port 474 => tn-tl-w1 - tn-tl-w1
port 475 => tcpnethaspsrv - tcpnethaspsrv
port 476 => tn-tl-fd1 - tn-tl-fd1
port 477 => ss7ns - ss7ns
port 478 => spsc - spsc
port 479 => iafserver - iafserver
port 480 => iafdbase - iafdbase
port 481 => ph - Ph service
port 482 => bgs-nsi - bgs-nsi
port 483 => ulpnet - ulpnet
port 484 => integra-sme - Integra Software Management Environment
port 485 => powerburst - Air Soft Power Burst
port 486 => avian - avian
port 487 => saft - saft Simple Asynchronous File Transfer
port 488 => gss-http - gss-http
port 489 => nest-protocol - nest-protocol
port 490 => micom-pfs - micom-pfs
port 491 => go-login - go-login
port 492 => ticf-1 - Transport Independent Convergence for FNA
port 493 => ticf-2 - Transport Independent Convergence for FNA
port 494 => pov-ray - POV-Ray
port 495 => intecourier - intecourier
port 496 => pim-rp-disc - PIM-RP-DISC
port 497 => dantz - dantz
port 498 => siam - siam
port 499 => iso-ill - ISO ILL Protocol
port 500 => isakmp - isakmp
port 501 => stmf - STMF
port 502 => asa-appl-proto - asa-appl-proto
port 503 => intrinsa - Intrinsa
port 504 => citadel - citadel
port 505 => mailbox-lm - mailbox-lm
port 506 => ohimsrv - ohimsrv
port 507 => crs - crs
port 508 => xvttp - xvttp
port 509 => snare - snare
port 510 => fcp - FirstClass Protocol
port 511 => passgo - PassGo
port 512 => exec - remote process execution authentication performed using passwords and UNIX loppgin names
port 513 => login - remote login a la telnet; automatic authentication performed based on priviledged port numbers and
distributed data bases which identify "authentication domains"
port 514 => shell - cmd like exec, but automatic authentication is performed as for login server
port 515 => printer - spooler
port 516 => videotex - videotex
port 517 => talk - like tenex link, but across machine - unfortunately, doesn't use link protocol (this is actually just a
rendezvous port from which a tcp connection is established)
port 518 => ntalk - ntalk
port 519 => utime - unixtime
port 520 => efs - extended file name server
port 521 => ripng - ripng
port 522 => ulp - ULP
port 523 => ibm-db2 - IBM-DB2
port 524 => ncp - NCP
port 525 => timed - timeserver
port 526 => tempo - newdate
port 527 => stx - Stock IXChange
port 528 => custix - Customer IXChange
port 529 => irc-serv - IRC-SERV
port 530 => courier - rpc
port 531 => conference - chat
port 532 => netnews - readnews
port 533 => netwall - for emergency broadcasts
port 534 => mm-admin - MegaMedia Admin
port 535 => iiop - iiop
port 536 => opalis-rdv - opalis-rdv
port 537 => nmsp - Networked Media Streaming Protocol
port 538 => gdomap - gdomap
port 539 => apertus-ldp - Apertus Technologies Load Determination
port 540 => uucp - uucpd
port 541 => uucp-rlogin - uucp-rlogin
port 542 => commerce - commerce
port 543 => klogin - klogin
port 544 => kshell - krcmd
port 545 => appleqtcsrvr - appleqtcsrvr
port 546 => dhcpv6-client - DHCPv6 Client
port 547 => dhcpv6-server - DHCPv6 Server
port 548 => afpovertcp - AFP over TCP
port 549 => idfp - IDFP
port 550 => new-rwho - new-who
port 551 => cybercash - cybercash
port 552 => deviceshare - deviceshare
port 553 => pirp - pirp
port 554 => rtsp - Real Time Stream Control Protocol
port 555 => dsf - dsf (or Stealth Spy TROJAN)
port 556 => remotefs - rfs server
port 557 => openvms-sysipc - openvms-sysipc
port 558 => sdnskmp - SDNSKMP
port 559 => teedtap - TEEDTAP
port 560 => rmonitor - rmonitord
port 561 => monitor - monitor
port 562 => chshell - chcmd
port 563 => nntps - nntp protocol over TLS/SSL (was snntp)
port 564 => 9pfs - plan 9 file service
port 565 => whoami - whoami
port 566 => streettalk - streettalk
port 567 => banyan-rpc - banyan-rpc
port 568 => ms-shuttle - microsoft shuttle
port 569 => ms-rome - microsoft rome
port 570 => meter - demon
port 571 => meter - udemon
port 572 => sonar - sonar
port 573 => banyan-vip - banyan-vip
port 574 => ftp-agent - FTP Software Agent System
port 575 => vemmi - VEMMI
port 576 => ipcd - ipcd
port 577 => vnas - vnas
port 578 => ipdd - ipdd
port 579 => decbsrv - decbsrv
port 580 => sntp-heartbeat - SNTP HEARTBEAT
port 581 => bdp - Bundle Discovery Protocol
port 582 => scc-security - SCC Security
port 583 => philips-vc - Philips Video-Conferencing
port 584 => keyserver - Key Server
port 585 => imap4-ssl - IMAP4+SSL (use 993 instead)
port 586 => password-chg - Password Change
port 587 => submission - Submission
port 588 => cal - CAL
port 589 => eyelink - EyeLink
port 590 => tns-cml - TNS CML
port 591 => http-alt - FileMaker, Inc. - HTTP Alternate (see Port 80)
port 592 => eudora-set - Eudora Set
port 593 => http-rpc-epmap - HTTP RPC Ep Map
port 594 => tpip - TPIP
port 595 => cab-protocol - CAB Protocol
port 596 => smsd - SMSD
port 597 => ptcnameservice - PTC Name Service
port 598 => sco-websrvrmg3 - SCO Web Server Manager 3
port 599 => acp - Aeolon Core Protocol
port 600 => ipcserver - Sun IPC server
port 606 => urm - Cray Unified Resource Manager
port 607 => nqs - nqs
port 608 => sift-uft - Sender-Initiated/Unsolicited File Transfer
port 609 => npmp-trap - npmp-trap
port 610 => npmp-local - npmp-local
port 611 => npmp-gui - npmp-gui
port 612 => hmmp-ind - HMMP Indication
port 613 => hmmp-op - HMMP Operation
port 614 => sshell - SSLshell
port 615 => sco-inetmgr - Internet Configuration Manager
port 616 => sco-sysmgr - SCO System Administration Server
port 617 => sco-dtmgr - SCO Desktop Administration Server
port 618 => dei-icda - DEI-ICDA
port 619 => digital-evm - Digital EVM
port 620 => sco-websrvrmgr - SCO WebServer Manager
port 621 => escp-ip - ESCP
port 622 => collaborator - Collaborator
port 623 => aux_bus_shunt - Aux Bus Shunt
port 624 => cryptoadmin - Crypto Admin
port 625 => dec_dlm - DEC DLM
port 626 => asia - ASIA
port 627 => passgo-tivoli - PassGo Tivoli
port 628 => qmqp - QMQP
port 629 => 3com-amp3 - 3Com AMP3
port 630 => rda - RDA
port 631 => ipp - IPP (Internet Printing Protocol)
port 632 => bmpp - bmpp
port 633 => servstat - Service Status update (Sterling Software)
port 634 => ginad - ginad
port 635 => rlzdbase - RLZ DBase
port 636 => ldaps - ldap protocol over TLS/SSL (was sldap)
port 637 => lanserver - lanserver
port 638 => mcns-sec - mcns-sec
port 639 => msdp - MSDP
port 640 => entrust-sps - entrust-sps
port 641 => repcmd - repcmd
port 642 => esro-emsdp - ESRO-EMSDP V1.3
port 643 => sanity - SANity
port 644 => dwr - dwr
port 645 => pssc - PSSC
port 646 => ldp - LDP
port 647 => dhcp-failover - DHCP Failover
port 648 => rrp - Registry Registrar Protocol (RRP)
port 649 => aminet - Aminet
port 650 => obex - OBEX
port 651 => ieee-mms - IEEE MMS
port 652 => udlr-dtcp - UDLR_DTCP
port 653 => repscmd - RepCmd
port 654 => aodv - AODV
port 655 => tinc - TINC
port 656 => spmp - SPMP
port 657 => rmc - RMC
port 658 => tenfold - TenFold
port 659 => url-rendezvous - URL Rendezvous
port 660 => mac-srvr-admin - MacOS Server Admin
port 661 => hap - HAP
port 662 => pftp - PFTP
port 663 => purenoise - PureNoise
port 666 => doom - doom Id Software (or mdqs or FTP TROJAN)
port 667 => disclose - campaign contribution disclosures - SDR Technologies
port 668 => mecomm - MeComm
port 669 => meregister - MeRegister
port 670 => vacdsm-sws - VACDSM-SWS
port 671 => vacdsm-app - VACDSM-APP
port 672 => vpps-qua - VPPS-QUA
port 673 => cimplex - CIMPLEX
port 674 => acap - ACAP
port 675 => dctp - DCTP
port 676 => vpps-via - VPPS Via
port 677 => vpp - Virtual Presence Protocol
port 678 => ggf-ncp - GNU Gereration Foundation NCP
port 679 => mrm - MRM
port 680 => entrust-aaas - entrust-aaas
port 681 => entrust-aams - entrust-aams
port 682 => xfr - XFR
port 683 => corba-iiop - CORBA IIOP
port 684 => corba-iiop-ssl - CORBA IIOP SSL
port 685 => mdc-portmapper - MDC Port Mapper
port 686 => hcp-wismar - Hardware Control Protocol Wismar
port 687 => asipregistry - asipregistry
port 688 => realm-rusd - REALM-RUSD
port 704 => elcsd - errlog copy/server daemon
port 705 => agentx - AgentX
port 707 => borland-dsj - Borland DSJ
port 709 => entrust-kmsh - Entrust Key Management Service Handler
port 710 => entrust-ash - Entrust Administration Service Handler
port 711 => cisco-tdp - Cisco TDP
port 729 => netviewdm1 - IBM NetView DM/6000 Server/Client
port 730 => netviewdm2 - IBM NetView DM/6000 send/tcp
port 731 => netviewdm3 - IBM NetView DM/6000 receive/tcp
port 741 => netgw - netGW
port 742 => netrcs - Network based Rev. Cont. Sys.
port 744 => flexlm - Flexible License Manager
port 747 => fujitsu-dev - Fujitsu Device Control
port 748 => ris-cm - Russell Info Sci Calendar Manager
port 749 => kerberos-adm - kerberos administration
port 750 => rfile - rfile
port 751 => pump - pump
port 752 => qrh - qrh
port 753 => rrh - rrh
port 754 => tell - send
port 758 => nlogin - nlogin
port 759 => con - con
port 760 => ns - ns
port 761 => rxe - rxe
port 762 => quotad - quotad
port 763 => cycleserv - cycleserv
port 764 => omserv - omserv
port 765 => webster - webster
port 767 => phonebook - phone
port 769 => vid - vid
port 770 => cadlock - cadlock
port 771 => rtip - rtip
port 772 => cycleserv2 - cycleserv2
port 773 => submit - submit
port 774 => rpasswd - rpasswd
port 775 => entomb - entomb
port 776 => wpages - wpages
port 777 => multiling-http - Multiling HTTP
port 780 => wpgs - wpgs
port 786 => concert - Concert
port 787 => qsc - QSC
port 800 => mdbs_daemon - mdbs_daemon
port 801 => device - device
port 810 => fcp-udp - FCP
port 828 => itm-mcell-s - itm-mcell-s
port 829 => pkix-3-ca-ra - PKIX-3 CA/RA
port 873 => rsync - rsync
port 886 => iclcnet-locate - ICL coNETion locate server
port 887 => iclcnet_svinfo - ICL coNETion server info
port 888 => accessbuilder - AccessBuilder (or cddbp - CD Database Protocol)
port 900 => omginitialrefs - OMG Initial Refs
port 911 => xact-backup - xact-backup
port 989 => ftps-data - ftp protocol, data, over TLS/SSL
port 990 => ftps - ftp protocol, control, over TLS/SSL
port 991 => nas - Netnews Administration System
port 992 => telnets - telnet protocol over TLS/SSL
port 993 => imaps - imap4 protocol over TLS/SSL
port 994 => ircs - irc protocol over TLS/SSL
port 995 => pop3s - pop3 protocol over TLS/SSL (was spop3)
port 996 => vsinet - vsinet
port 997 => maitrd - maitrd
port 998 => busboy - busboy
port 999 => garcon - garcon
port 999 => puprouter - puprouter
port 1000 => cadlock - cadlock
port 1008 => - Possibly used by Sun Solaris
port 1010 => surf - surf
port 1011 => - Reserved
port 1012 => - Reserved
port 1013 => - Reserved
port 1014 => - Reserved
port 1015 => - Reserved
port 1016 => - Reserved
port 1017 => - Reserved
port 1018 => - Reserved
port 1019 => - Reserved
port 1020 => - Reserved
port 1021 => - Reserved
port 1022 => - Reserved
port 1023 => - Reserved
port 1024 => - Reserved
port 1025 => blackjack - network blackjack
port 1027 => icq - ICQ
port 1029 => icq - ICQ
port 1032 => icq - ICQ
port 1030 => iad1 - BBN IAD
port 1031 => iad2 - BBN IAD
port 1032 => iad3 - BBN IAD
port 1047 => neod1 - Sun's NEO Object Request Broker
port 1048 => neod2 - Sun's NEO Object Request Broker
port 1058 => nim - nim
port 1059 => nimreg - nimreg
port 1067 => instl_boots - Installation Bootstrap Proto. Serv.
port 1068 => instl_bootc - Installation Bootstrap Proto. Cli.
port 1080 => socks - Socks (or Wingate)
port 1083 => ansoft-lm-1 - Anasoft License Manager
port 1084 => ansoft-lm-2 - Anasoft License Manager
port 1085 => webobjects - Web Objects
port 1097 => sunclustermgr - Sun Cluster Manager
port 1098 => rmiactivation - RMI Activation
port 1099 => rmiregistry - RMI Registry
port 1110 => nfsd-status - Cluster status info
port 1111 => lmsocialserver - LM Social Server
port 1114 => mini-sql - Mini SQL
port 1123 => murray - Murray
port 1155 => nfa - Network File Access
port 1161 => health-polling - Health Polling
port 1162 => health-trap - Health Trap
port 1180 => mc-client - Millicent Client Proxy
port 1188 => hp-webadmin - HP Web Admin
port 1202 => caiccipc - caiccipc
port 1212 => lupa - lupa
port 1222 => nerv - SNI R&D network
port 1234 => search-agent - Infoseek Search Agent
port 1239 => nmsd - NMSD
port 1248 => hermes - hermes
port 1300 => h323hostcallsc - H323 Host Call Secure
port 1310 => husky - Husky
port 1311 => rxmon - RxMon
port 1312 => sti-envision - STI Envision
port 1313 => bmc_patroldb - BMC_PATROLDB
port 1314 => pdps - Photoscript Distributed Printing System
port 1321 => pip - PIP
port 1335 => digital-notary - Digital Notary Protocol
port 1345 => vpjp - VPJP
port 1346 => alta-ana-lm - Alta Analytics License Manager
port 1347 => bbn-mmc - multi media conferencing
port 1348 => bbn-mmx - multi media conferencing
port 1349 => sbook - Registration Network Protocol
port 1350 => editbench - Registration Network Protocol
port 1351 => equationbuilder - Digital Tool Works (MIT)
port 1352 => lotusnote - Lotus Note
port 1353 => relief - Relief Consulting
port 1354 => rightbrain - RightBrain Software
port 1355 => intuitive-edge - Intuitive Edge
port 1356 => cuillamartin - CuillaMartin Company
port 1357 => pegboard - Electronic PegBoard
port 1358 => connlcli - CONNLCLI
port 1359 => ftsrv - FTSRV
port 1360 => mimer - MIMER
port 1361 => linx - LinX
port 1362 => timeflies - TimeFlies
port 1363 => ndm-requester - Network DataMover Requester
port 1364 => ndm-server - Network DataMover Server
port 1365 => adapt-sna - Network Software Associates
port 1366 => netware-csp - Novell NetWare Comm Service Platform
port 1367 => dcs - DCS
port 1368 => screencast - ScreenCast
port 1369 => gv-us - GlobalView to Unix Shell
port 1370 => us-gv - Unix Shell to GlobalView
port 1371 => fc-cli - Fujitsu Config Protocol
port 1372 => fc-ser - Fujitsu Config Protocol
port 1373 => chromagrafx - Chromagrafx
port 1374 => molly - EPI Software Systems
port 1375 => bytex - Bytex
port 1376 => ibm-pps - IBM Person to Person Software
port 1377 => cichlid - Cichlid License Manager
port 1378 => elan - Elan License Manager
port 1379 => dbreporter - Integrity Solutions
port 1380 => telesis-licman - Telesis Network License Manager
port 1381 => apple-licman - Apple Network License Manager
port 1382 => udt_os - udt_os
port 1383 => gwha - GW Hannaway Network License Manager
port 1384 => os-licman - Objective Solutions License Manager
port 1385 => atex_elmd - Atex Publishing License Manager
port 1386 => checksum - CheckSum License Manager
port 1387 => cadsi-lm - Computer Aided Design Software Inc LM
port 1388 => objective-dbc - Objective Solutions DataBase Cache
port 1389 => iclpv-dm - Document Manager
port 1390 => iclpv-sc - Storage Controller
port 1391 => iclpv-sas - Storage Access Server
port 1392 => iclpv-pm - Print Manager
port 1393 => iclpv-nls - Network Log Server
port 1394 => iclpv-nlc - Network Log Client
port 1395 => iclpv-wsm - PC Workstation Manager software
port 1396 => dvl-activemail - DVL Active Mail
port 1397 => audio-activmail - Audio Active Mail
port 1398 => video-activmail - Video Active Mail
port 1399 => cadkey-licman - Cadkey License Manager
port 1400 => cadkey-tablet - Cadkey Tablet Daemon
port 1401 => goldleaf-licman - Goldleaf License Manager
port 1402 => prm-sm-np - Prospero Resource Manager
port 1403 => prm-nm-np - Prospero Resource Manager
port 1404 => igi-lm - Infinite Graphics License Manager
port 1405 => ibm-res - IBM Remote Execution Starter
port 1406 => netlabs-lm - NetLabs License Manager
port 1407 => dbsa-lm - DBSA License Manager
port 1408 => sophia-lm - Sophia License Manager
port 1409 => here-lm - Here License Manager
port 1410 => hiq - HiQ License Manager
port 1411 => af - AudioFile
port 1412 => innosys - InnoSys
port 1413 => innosys-acl - Innosys-ACL
port 1414 => ibm-mqseries - IBM MQSeries
port 1415 => dbstar - DBStar
port 1416 => novell-lu6.2 - Novell LU6.2
port 1417 => timbuktu-srv1 - Timbuktu Service 1 Port
port 1418 => timbuktu-srv2 - Timbuktu Service 2 Port
port 1419 => timbuktu-srv3 - Timbuktu Service 3 Port
port 1420 => timbuktu-srv4 - Timbuktu Service 4 Port
port 1421 => gandalf-lm - Gandalf License Manager
port 1422 => autodesk-lm - Autodesk License Manager
port 1423 => essbase - Essbase Arbor Software
port 1424 => hybrid - Hybrid Encryption Protocol
port 1425 => zion-lm - Zion Software License Manager
port 1426 => sais - Satellite-data Acquisition System 1
port 1427 => mloadd - mloadd monitoring tool
port 1428 => informatik-lm - Informatik License Manager
port 1429 => nms - Hypercom NMS
port 1430 => tpdu - Hypercom TPDU
port 1431 => rgtp - Reverse Gossip Transport
port 1432 => blueberry-lm - Blueberry Software License Manager
port 1433 => ms-sql-s - Microsoft-SQL-Server
port 1434 => ms-sql-m - Microsoft-SQL-Monitor
port 1435 => ibm-cics - IBM CICS
port 1436 => saism - Satellite-data Acquisition System 2
port 1437 => tabula - Tabula
port 1438 => eicon-server - Eicon Security Agent/Server
port 1439 => eicon-x25 - Eicon X25/SNA Gateway
port 1440 => eicon-slp - Eicon Service Location Protocol
port 1441 => cadis-1 - Cadis License Management
port 1442 => cadis-2 - Cadis License Management
port 1443 => ies-lm - Integrated Engineering Software
port 1444 => marcam-lm - MarcamLicense Management
port 1445 => proxima-lm - Proxima License Manager
port 1446 => ora-lm - Optical Research Associates License Manager
port 1447 => apri-lm - Applied Parallel Research LM
port 1448 => oc-lm - OpenConnect License Manager
port 1449 => peport - PEport
port 1450 => dwf - Tandem Distributed Workbench Facility
port 1451 => infoman - IBM Information Management
port 1452 => gtegsc-lm - GTE Government Systems License Man
port 1453 => genie-lm - Genie License Manager
port 1454 => interhdl_elmd - interHDL License Manager
port 1455 => esl-lm - ESL License Manager
port 1456 => dca - DCA
port 1457 => valisys-lm - Valisys License Manager
port 1458 => nrcabq-lm - Nichols Research Corp.
port 1459 => proshare1 - Proshare Notebook Application
port 1460 => proshare2 - Proshare Notebook Application
port 1461 => ibm_wrless_lan - IBM Wireless LAN
port 1462 => world-lm - World License Manager
port 1463 => nucleus - Nucleus
port 1464 => msl_lmd - MSL License Manager
port 1465 => pipes - Pipes Platform
port 1466 => oceansoft-lm - Ocean Software License Manager
port 1467 => csdmbase - CSDMBASE
port 1468 => csdm - CSDM
port 1469 => aal-lm - Active Analysis Limited License Manager
port 1470 => uaiact - Universal Analytics
port 1471 => csdmbase - csdmbase
port 1472 => csdm - csdm
port 1473 => openmath - OpenMath
port 1474 => telefinder - Telefinder
port 1475 => taligent-lm - Taligent License Manager
port 1476 => clvm-cfg - clvm-cfg
port 1477 => ms-sna-server - ms-sna-server
port 1478 => ms-sna-base - ms-sna-base
port 1479 => dberegister - dberegister
port 1480 => pacerforum - PacerForum
port 1481 => airs - AIRS
port 1482 => miteksys-lm - Miteksys License Manager
port 1483 => afs - AFS License Manager
port 1484 => confluent - Confluent License Manager
port 1485 => lansource - LANSource
port 1486 => nms_topo_serv - nms_topo_serv
port 1487 => localinfosrvr - LocalInfoSrvr
port 1488 => docstor - DocStor
port 1489 => dmdocbroker - dmdocbroker
port 1490 => insitu-conf - insitu-conf
port 1491 => anynetgateway - anynetgateway
port 1492 => stone-design-1 - stone-design-1
port 1493 => netmap_lm - netmap_lm
port 1494 => ica - ica
port 1495 => cvc - cvc
port 1496 => liberty-lm - liberty-lm
port 1497 => rfx-lm - rfx-lm
port 1498 => sybase-sqlany - Sybase SQL Any
port 1499 => fhc - Federico Heinz Consultora
port 1500 => vlsi-lm - VLSI License Manager
port 1501 => saiscm - Satellite-data Acquisition System 3
port 1502 => shivadiscovery - Shiva
port 1503 => imtc-mcs - Databeam
port 1504 => evb-elm - EVB Software Engineering License Manager
port 1505 => funkproxy - Funk Software, Inc.
port 1506 => utcd - Universal Time daemon (utcd)
port 1507 => symplex - symplex
port 1508 => diagmond - diagmond
port 1509 => robcad-lm - Robcad, Ltd. License Manager
port 1510 => mvx-lm - Midland Valley Exploration Ltd. Lic. Man.
port 1511 => 3l-l1 - 3l-l1
port 1512 => wins - Microsoft's Windows Internet Name Service
port 1513 => fujitsu-dtc - Fujitsu Systems Business of America, Inc
port 1514 => fujitsu-dtcns - Fujitsu Systems Business of America, Inc
port 1515 => ifor-protocol - ifor-protocol
port 1516 => vpad - Virtual Places Audio data
port 1517 => vpac - Virtual Places Audio control
port 1518 => vpvd - Virtual Places Video data
port 1519 => vpvc - Virtual Places Video control
port 1520 => atm-zip-office - atm zip office
port 1521 => ncube-lm - nCube License Manager
port 1522 => ricardo-lm - Ricardo North America License Manager
port 1523 => cichild-lm - cichild
port 1524 => ingreslock - ingres
port 1525 => orasrv - oracle
port 1525 => prospero-np - Prospero Directory Service non-priv
port 1526 => pdap-np - Prospero Data Access Prot non-priv
port 1527 => tlisrv - oracle
port 1528 => mciautoreg - micautoreg
port 1529 => coauthor - oracle
port 1530 => rap-service - rap-service
port 1531 => rap-listen - rap-listen
port 1532 => miroconnect - miroconnect
port 1533 => virtual-places - Virtual Places Software
port 1534 => micromuse-lm - micromuse-lm
port 1535 => ampr-info - ampr-info
port 1536 => ampr-inter - ampr-inter
port 1537 => sdsc-lm - isi-lm
port 1538 => 3ds-lm - 3ds-lm
port 1539 => intellistor-lm - Intellistor License Manager
port 1540 => rds - rds
port 1541 => rds2 - rds2
port 1542 => gridgen-elmd - gridgen-elmd
port 1543 => simba-cs - simba-cs
port 1544 => aspeclmd - aspeclmd
port 1545 => vistium-share - vistium-share
port 1546 => abbaccuray - abbaccuray
port 1547 => laplink - laplink
port 1548 => axon-lm - Axon License Manager
port 1549 => shivahose - Shiva Hose
port 1550 => 3m-image-lm - Image Storage license manager 3M Company
port 1551 => hecmtl-db - HECMTL-DB
port 1552 => pciarray - pciarray
port 1553 => sna-cs - sna-cs
port 1554 => caci-lm - CACI Products Company License Manager
port 1555 => livelan - livelan
port 1556 => ashwin - AshWin CI Tecnologies
port 1557 => arbortext-lm - ArborText License Manager
port 1558 => xingmpeg - xingmpeg
port 1559 => web2host - web2host
port 1560 => asci-val - asci-val
port 1561 => facilityview - facilityview
port 1562 => pconnectmgr - pconnectmgr
port 1563 => cadabra-lm - Cadabra License Manager
port 1564 => pay-per-view - Pay-Per-View
port 1565 => winddlb - WinDD
port 1566 => corelvideo - CORELVIDEO
port 1567 => jlicelmd - jlicelmd
port 1568 => tsspmap - tsspmap
port 1569 => ets - ets
port 1570 => orbixd - orbixd
port 1571 => rdb-dbs-disp - Oracle Remote Data Base
port 1572 => chip-lm - Chipcom License Manager
port 1573 => itscomm-ns - itscomm-ns
port 1574 => mvel-lm - mvel-lm
port 1575 => oraclenames - oraclenames
port 1576 => moldflow-lm - moldflow-lm
port 1577 => hypercube-lm - hypercube-lm
port 1578 => jacobus-lm - Jacobus License Manager
port 1579 => ioc-sea-lm - ioc-sea-lm
port 1580 => tn-tl-r1 - tn-tl-r1
port 1581 => mil-2045-47001 - MIL-2045-47001
port 1582 => msims - MSIMS
port 1583 => simbaexpress - simbaexpress
port 1584 => tn-tl-fd2 - tn-tl-fd2
port 1585 => intv - intv
port 1586 => ibm-abtact - ibm-abtact
port 1587 => pra_elmd - pra_elmd
port 1588 => triquest-lm - triquest-lm
port 1589 => vqp - VQP
port 1590 => gemini-lm - gemini-lm
port 1591 => ncpm-pm - ncpm-pm
port 1592 => commonspace - commonspace
port 1593 => mainsoft-lm - mainsoft-lm
port 1594 => sixtrak - sixtrak
port 1595 => radio - radio
port 1596 => radio-sm - radio-sm
port 1597 => orbplus-iiop - orbplus-iiop
port 1598 => picknfs - picknfs
port 1599 => simbaservices - simbaservices
port 1600 => issd - 1600/udp => issd - 1601/tcp => aas - aas
port 1602 => inspect - inspect
port 1603 => picodbc - pickodbc
port 1604 => icabrowser - icabrowser
port 1605 => slp - Salutation Manager (Salutation Protocol)
port 1606 => slm-api - Salutation Manager (SLM-API)
port 1607 => stt - stt
port 1608 => smart-lm - Smart Corp. License Manager
port 1609 => isysg-lm - isysg-lm
port 1610 => taurus-wh - taurus-wh
port 1611 => ill - Inter Library Loan
port 1612 => netbill-trans - NetBill Transaction Server
port 1613 => netbill-keyrep - NetBill Key Repository
port 1614 => netbill-cred - NetBill Credential Server
port 1615 => netbill-auth - NetBill Authorization Server
port 1616 => netbill-prod - NetBill Product Server
port 1617 => nimrod-agent - Nimrod Inter-Agent Communication
port 1618 => skytelnet - skytelnet
port 1619 => xs-openstorage - xs-openstorage
port 1620 => faxportwinport - faxportwinport
port 1621 => softdataphone - softdataphone
port 1622 => ontime - ontime
port 1623 => jaleosnd - jaleosnd
port 1624 => udp-sr-port - udp-sr-port
port 1625 => svs-omagent - svs-omagent
port 1626 => shockwave - Shockwave
port 1627 => t128-gateway - T.128 Gateway
port 1628 => lontalk-norm - LonTalk normal
port 1629 => lontalk-urgnt - LonTalk urgent
port 1630 => oraclenet8cman - Oracle Net8 Cman
port 1631 => visitview - Visit view
port 1632 => pammratc - PAMMRATC
port 1633 => pammrpc - PAMMRPC
port 1634 => loaprobe - Log On America Probe
port 1635 => edb-server1 - EDB Server 1
port 1636 => cncp - CableNet Control Protocol
port 1637 => cnap - CableNet Admin Protocol
port 1638 => cnip - CableNet Info Protocol
port 1639 => cert-initiator - cert-initiator
port 1640 => cert-responder - cert-responder
port 1641 => invision - InVision
port 1642 => isis-am - isis-am
port 1643 => isis-ambc - isis-ambc
port 1644 => saiseh - Satellite-data Acquisition System 4
port 1645 => datametrics - datametrics
port 1646 => sa-msg-port - sa-msg-port
port 1647 => rsap - rsap
port 1648 => concurrent-lm - concurrent-lm
port 1649 => kermit - kermit
port 1650 => nkd - nkd
port 1651 => shiva_confsrvr - shiva_confsrvr
port 1652 => xnmp - xnmp
port 1653 => alphatech-lm - alphatech-lm
port 1654 => stargatealerts - stargatealerts
port 1655 => dec-mbadmin - dec-mbadmin
port 1656 => dec-mbadmin-h - dec-mbadmin-h
port 1657 => fujitsu-mmpdc - fujitsu-mmpdc
port 1658 => sixnetudr - sixnetudr
port 1659 => sg-lm - Silicon Grail License Manager
port 1660 => skip-mc-gikreq - skip-mc-gikreq
port 1661 => netview-aix-1 - netview-aix-1
port 1662 => netview-aix-2 - netview-aix-2
port 1663 => netview-aix-3 - netview-aix-3
port 1664 => netview-aix-4 - netview-aix-4
port 1665 => netview-aix-5 - netview-aix-5
port 1666 => netview-aix-6 - netview-aix-6
port 1667 => netview-aix-7 - netview-aix-7
port 1668 => netview-aix-8 - netview-aix-8
port 1669 => netview-aix-9 - netview-aix-9
port 1670 => netview-aix-10 - netview-aix-10
port 1671 => netview-aix-11 - netview-aix-11
port 1672 => netview-aix-12 - netview-aix-12
port 1673 => proshare-mc-1 - Intel Proshare Multicast
port 1674 => proshare-mc-2 - Intel Proshare Multicast
port 1675 => pdp - Pacific Data Products
port 1676 => netcomm1 - netcomm1
port 1677 => groupwise - groupwise
port 1678 => prolink - prolink
port 1679 => darcorp-lm - darcorp-lm
port 1680 => microcom-sbp - microcom-sbp
port 1681 => sd-elmd - sd-elmd
port 1682 => lanyon-lantern - lanyon-lantern
port 1683 => ncpm-hip - ncpm-hip
port 1684 => snaresecure - SnareSecure
port 1685 => n2nremote - n2nremote
port 1686 => cvmon - cvmon
port 1687 => nsjtp-ctrl - nsjtp-ctrl
port 1688 => nsjtp-data - nsjtp-data
port 1689 => firefox - firefox
port 1690 => ng-umds - ng-umds
port 1691 => empire-empuma - empire-empuma
port 1692 => sstsys-lm - sstsys-lm
port 1693 => rrirtr - rrirtr
port 1694 => rrimwm - rrimwm
port 1695 => rrilwm - rrilwm
port 1696 => rrifmm - rrifmm
port 1697 => rrisat - rrisat
port 1698 => rsvp-encap-1 - RSVP-ENCAPSULATION-1
port 1699 => rsvp-encap-2 - RSVP-ENCAPSULATION-2
port 1700 => mps-raft - mps-raft
port 1701 => l2f - l2f
port 1701 => l2tp - l2tp
port 1702 => deskshare - deskshare
port 1703 => hb-engine - hb-engine
port 1704 => bcs-broker - bcs-broker
port 1705 => slingshot - slingshot
port 1706 => jetform - jetform
port 1707 => vdmplay - vdmplay
port 1708 => gat-lmd - gat-lmd
port 1709 => centra - centra
port 1710 => impera - impera
port 1711 => pptconference - pptconference
port 1712 => registrar - resource monitoring service
port 1713 => conferencetalk - ConferenceTalk
port 1714 => sesi-lm - sesi-lm
port 1715 => houdini-lm - houdini-lm
port 1716 => xmsg - xmsg
port 1717 => fj-hdnet - fj-hdnet
port 1718 => h323gatedisc - h323gatedisc
port 1719 => h323gatestat - h323gatestat
port 1720 => h323hostcall - h323hostcall
port 1721 => caicci - caicci
port 1722 => hks-lm - HKS License Manager
port 1723 => pptp - pptp
port 1724 => csbphonemaster - csbphonemaster
port 1725 => iden-ralp - iden-ralp
port 1726 => iberiagames - IBERIAGAMES
port 1727 => winddx - winddx
port 1728 => telindus - TELINDUS
port 1729 => citynl - CityNL License Management
port 1730 => roketz - roketz
port 1731 => msiccp - MSICCP
port 1732 => proxim - proxim
port 1733 => siipat - SIMS - SIIPAT Protocol for Alarm Transmission
port 1734 => cambertx-lm - Camber Corporation License Management
port 1735 => privatechat - PrivateChat
port 1736 => street-stream - street-stream
port 1737 => ultimad - ultimad
port 1738 => gamegen1 - GameGen1
port 1739 => webaccess - webaccess
port 1740 => encore - encore
port 1741 => cisco-net-mgmt - cisco-net-mgmt
port 1742 => 3Com-nsd - 3Com-nsd
port 1743 => cinegrfx-lm - Cinema Graphics License Manager
port 1744 => ncpm-ft - ncpm-ft
port 1745 => remote-winsock - remote-winsock
port 1746 => ftrapid-1 - ftrapid-1
port 1747 => ftrapid-2 - ftrapid-2
port 1748 => oracle-em1 - oracle-em1
port 1749 => aspen-services - aspen-services
port 1750 => sslp - Simple Socket Library's PortMaster
port 1751 => swiftnet - SwiftNet
port 1752 => lofr-lm - Leap of Faith Research License Manager
port 1753 => translogic-lm - Translogic License Manager
port 1754 => oracle-em2 - oracle-em2
port 1755 => ms-streaming - ms-streaming
port 1756 => capfast-lmd - capfast-lmd
port 1757 => cnhrp - cnhrp
port 1758 => tftp-mcast - tftp-mcast
port 1759 => spss-lm - SPSS License Manager
port 1760 => www-ldap-gw - www-ldap-gw
port 1761 => cft-0 - cft-0
port 1762 => cft-1 - cft-1
port 1763 => cft-2 - cft-2
port 1764 => cft-3 - cft-3
port 1765 => cft-4 - cft-4
port 1766 => cft-5 - cft-5
port 1767 => cft-6 - cft-6
port 1768 => cft-7 - cft-7
port 1769 => bmc-net-adm - bmc-net-adm
port 1770 => bmc-net-svc - bmc-net-svc
port 1771 => vaultbase - vaultbase
port 1772 => essweb-gw - EssWeb Gateway
port 1773 => kmscontrol - KMSControl
port 1774 => global-dtserv - global-dtserv
port 1776 => femis - Federal Emergency Management Information System
port 1777 => powerguardian - powerguardian
port 1778 => prodigy-intrnet - prodigy-internet
port 1779 => pharmasoft - pharmasoft
port 1780 => dpkeyserv - dpkeyserv
port 1781 => answersoft-lm - answersoft-lm
port 1782 => hp-hcip - hp-hcip
port 1783 => fjris - Fujitsu Remote Install Service
port 1784 => finle-lm - Finle License Manager
port 1785 => windlm - Wind River Systems License Manager
port 1786 => funk-logger - funk-logger
port 1787 => funk-license - funk-license
port 1788 => psmond - psmond
port 1789 => hello - hello
port 1790 => nmsp - Narrative Media Streaming Protocol
port 1791 => ea1 - EA1
port 1792 => ibm-dt-2 - ibm-dt-2
port 1793 => rsc-robot - rsc-robot
port 1794 => cera-bcm - cera-bcm
port 1795 => dpi-proxy - dpi-proxy
port 1796 => vocaltec-admin - Vocaltec Server Administration
port 1797 => uma - UMA
port 1798 => etp - Event Transfer Protocol
port 1799 => netrisk - NETRISK
port 1800 => ansys-lm - ANSYS-License manager
port 1801 => msmq - Microsoft Message Que
port 1802 => concomp1 - ConComp1
port 1803 => hp-hcip-gwy - HP-HCIP-GWY
port 1804 => enl - ENL
port 1805 => enl-name - ENL-Name
port 1806 => musiconline - Musiconline
port 1807 => fhsp - Fujitsu Hot Standby Protocol
port 1808 => oracle-vp2 - Oracle-VP2
port 1809 => oracle-vp1 - Oracle-VP1
port 1810 => jerand-lm - Jerand License Manager
port 1811 => scientia-sdb - Scientia-SDB
port 1812 => radius - RADIUS
port 1813 => radius-acct - RADIUS Accounting
port 1814 => tdp-suite - TDP Suite
port 1815 => mmpft - MMPFT
port 1816 => harp - HARP
port 1817 => rkb-oscs - RKB-OSCS
port 1818 => etftp - Enhanced Trivial File Transfer Protocol
port 1819 => plato-lm - Plato License Manager
port 1820 => mcagent - mcagent
port 1821 => donnyworld - donnyworld
port 1822 => es-elmd - es-elmd
port 1823 => unisys-lm - Unisys Natural Language License Manager
port 1824 => metrics-pas - metrics-pas
port 1825 => direcpc-video - DirecPC Video
port 1826 => ardt - ARDT
port 1827 => asi - ASI
port 1828 => itm-mcell-u - itm-mcell-u
port 1829 => optika-emedia - Optika eMedia
port 1830 => net8-cman - Oracle Net8 CMan Admin
port 1831 => myrtle - Myrtle
port 1832 => tht-treasure - ThoughtTreasure
port 1833 => udpradio - udpradio
port 1834 => ardusuni - ARDUS Unicast
port 1835 => ardusmul - ARDUS Multicast
port 1836 => ste-smsc - ste-smsc
port 1837 => csoft1 - csoft1
port 1838 => talnet - TALNET
port 1839 => netopia-vo1 - netopia-vo1
port 1840 => netopia-vo2 - netopia-vo2
port 1841 => netopia-vo3 - netopia-vo3
port 1842 => netopia-vo4 - netopia-vo4
port 1843 => netopia-vo5 - netopia-vo5
port 1844 => direcpc-dll - DirecPC-DLL
port 1850 => gsi - GSI
port 1851 => ctcd - ctcd
port 1860 => sunscalar-svc - SunSCALAR Services
port 1861 => lecroy-vicp - LeCroy VICP
port 1862 => techra-server - techra-server
port 1863 => msnp - MSNP
port 1864 => paradym-31port - Paradym 31 Port
port 1865 => entp - ENTP
port 1870 => sunscalar-dns - SunSCALAR DNS Service
port 1871 => canocentral0 - Cano Central 0
port 1872 => canocentral1 - Cano Central 1
port 1873 => fjmpjps - Fjmpjps
port 1874 => fjswapsnp - Fjswapsnp
port 1881 => ibm-mqseries2 - IBM MQSeries
port 1895 => vista-4gl - Vista 4GL
port 1899 => mc2studios - MC2Studios
port 1901 => fjicl-tep-a - Fujitsu ICL Terminal Emulator Program A
port 1902 => fjicl-tep-b - Fujitsu ICL Terminal Emulator Program B
port 1903 => linkname - Local Link Name Resolution
port 1904 => fjicl-tep-c - Fujitsu ICL Terminal Emulator Program C
port 1905 => sugp - Secure UP.Link Gateway Protocol
port 1906 => tpmd - TPortMapperReq
port 1907 => intrastar - IntraSTAR
port 1908 => dawn - Dawn
port 1909 => global-wlink - Global World Link
port 1910 => ultrabac - ultrabac
port 1911 => mtp - Starlight Networks Multimedia Transport Protocol
port 1912 => rhp-iibp - rhp-iibp
port 1913 => armadp - armadp
port 1914 => elm-momentum - Elm-Momentum
port 1915 => facelink - FACELINK
port 1916 => persona - Persoft Persona
port 1917 => noagent - nOAgent
port 1918 => can-nds - Candle Directory Service - NDS
port 1919 => can-dch - Candle Directory Service - DCH
port 1920 => can-ferret - Candle Directory Service - FERRET
port 1921 => noadmin - NoAdmin
port 1922 => tapestry - Tapestry
port 1923 => spice - SPICE
port 1924 => xiip - XIIP
port 1944 => close-combat - close-combat
port 1945 => dialogic-elmd - dialogic-elmd
port 1946 => tekpls - tekpls
port 1947 => hlserver - hlserver
port 1948 => eye2eye - eye2eye
port 1949 => ismaeasdaqlive - ISMA Easdaq Live
port 1950 => ismaeasdaqtest - ISMA Easdaq Test
port 1951 => bcs-lmserver - bcs-lmserver
port 1952 => mpnjsc - mpnjsc
port 1953 => rapidbase - Rapid Base
port 1964 => solid-e-engine - SOLID E ENGINE
port 1965 => tivoli-npm - Tivoli NPM
port 1966 => slush - Slush
port 1967 => sns-quote - SNS Quote
port 1972 => intersys-cache - Cache
port 1973 => dlsrap - Data Link Switching Remote Access Protocol
port 1975 => tcoflashagent - TCO Flash Agent
port 1976 => tcoregagent - TCO Reg Agent
port 1977 => tcoaddressbook - TCO Address Book
port 1981 => shockrave - Shockrave TROJAN
port 1984 => bb - BB
port 1985 => hsrp - Hot Standby Router Protocol
port 1986 => licensedaemon - cisco license management
port 1987 => tr-rsrb-p1 - cisco RSRB Priority 1 port
port 1988 => tr-rsrb-p2 - cisco RSRB Priority 2 port
port 1989 => tr-rsrb-p3 - cisco RSRB Priority 3 port (or mshnet - MHSnet System)
port 1990 => stun-p1 - cisco STUN Priority 1 port
port 1991 => stun-p2 - cisco STUN Priority 2 port
port 1992 => stun-p3 - cisco STUN Priority 3 port (or IPsendmsg)
port 1993 => snmp-tcp-port - cisco SNMP TCP port
port 1994 => stun-port - cisco serial tunnel port
port 1995 => perf-port - cisco perf port
port 1996 => tr-rsrb-port - cisco Remote SRB port
port 1997 => gdp-port - cisco Gateway Discovery Protocol
port 1998 => x25-svc-port - cisco X.25 service (XOT)
port 1999 => tcp-id-port - cisco identification port
port 2000 => callbook - callbook
port 2001 => dc - dc
port 2002 => globe - globe
port 2004 => mailbox - mailbox
port 2005 => berknet - berknet
port 2006 => invokator - invokator
port 2007 => dectalk - dectalk
port 2008 => conf - conf
port 2009 => news - news
port 2010 => search - search
port 2011 => raid-cc - raid
port 2012 => ttyinfo - ttyinfo
port 2013 => raid-am - raid-am
port 2014 => troff - troff
port 2015 => cypress - cypress
port 2016 => bootserver - bootserver
port 2017 => cypress-stat - cypress-stat
port 2018 => terminaldb - terminaldb
port 2019 => whosockami - whosockami
port 2020 => xinupageserver - xinupageserver
port 2021 => servexec - servexec
port 2022 => down - down
port 2023 => xinuexpansion3 - xinuexpansion3
port 2024 => xinuexpansion4 - xinuexpansion4
port 2025 => ellpack - ellpack
port 2026 => scrabble - scrabble
port 2027 => shadowserver - shadowserver
port 2028 => submitserver - submitserver
port 2030 => device2 - device2
port 2032 => blackboard - blackboard
port 2033 => glogger - glogger
port 2034 => scoremgr - scoremgr
port 2035 => imsldoc - imsldoc
port 2038 => objectmanager - objectmanager
port 2040 => lam - lam
port 2041 => interbase - interbase
port 2042 => isis - isis
port 2043 => isis-bcast - isis-bcast
port 2044 => rimsl - rimsl
port 2045 => cdfunc - cdfunc
port 2046 => sdfunc - sdfunc
port 2047 => dls - dls
port 2048 => dls-monitor - dls-monitor
port 2049 => nfs - Network File System (or Sun Microsystems or shilp)
port 2065 => dlsrpn - Data Link Switch Read Port Number
port 2067 => dlswpn - Data Link Switch Write Port Number
port 2090 => lrp - Load Report Protocol
port 2091 => prp - PRP
port 2092 => descent3 - Descent 3
port 2093 => nbx-cc - NBX CC
port 2094 => nbx-au - NBX AU
port 2095 => nbx-ser - NBX SER
port 2096 => nbx-dir - NBX DIR
port 2097 => jetformpreview - Jet Form Preview
port 2098 => dialog-port - Dialog Port
port 2099 => h2250-annex-g - H.225.0 Annex G
port 2100 => amiganetfs - amiganetfs
port 2101 => rtcm-sc104 - rtcm-sc104
port 2102 => zephyr-srv - Zephyr server
port 2103 => zephyr-clt - Zephyr serv-hm connection
port 2104 => zephyr-hm - Zephyr hostmanager
port 2105 => minipay - MiniPay
port 2106 => mzap - MZAP
port 2107 => bintec-admin - BinTec Admin
port 2108 => comcam - Comcam
port 2109 => ergolight - Ergolight
port 2180 => mc-gt-srv - Millicent Vendor Gateway Server
port 2200 => ici - ICI
port 2201 => ats - Advanced Training System Program
port 2202 => imtc-map - Int. Multimedia Teleconferencing Cosortium
port 2213 => kali - Kali
port 2220 => ganymede - Ganymede
port 2221 => rockwell-csp1 - Rockwell CSP1
port 2222 => rockwell-csp2 - Rockwell CSP2
port 2223 => rockwell-csp3 - Rockwell CSP3
port 2232 => ivs-video - IVS Video default
port 2233 => infocrypt - INFOCRYPT
port 2234 => directplay - DirectPlay
port 2235 => sercomm-wlink - Sercomm-WLink
port 2236 => nani - Nani
port 2237 => optech-port1-lm - Optech Port1 License Manager
port 2238 => aviva-sna - AVIVA SNA SERVER
port 2239 => imagequery - Image Query
port 2240 => recipe - RECIPe
port 2241 => ivsd - IVS Daemon
port 2242 => foliocorp - Folio Remote Server
port 2243 => magicom - Magicom Protocol
port 2244 => nmsserver - NMS Server
port 2245 => hao - HaO
port 2279 => xmquery - xmquery
port 2280 => lnvpoller - LNVPOLLER
port 2281 => lnvconsole - LNVCONSOLE
port 2282 => lnvalarm - LNVALARM
port 2283 => lnvstatus - LNVSTATUS
port 2284 => lnvmaps - LNVMAPS
port 2285 => lnvmailmon - LNVMAILMON
port 2286 => nas-metering - NAS-Metering
port 2287 => dna - DNA
port 2288 => netml - NETML
port 2294 => konshus-lm - Konshus License Manager (FLEX)
port 2295 => advant-lm - Advant License Manager
port 2296 => theta-lm - Theta License Manager (Rainbow)
port 2297 => d2k-datamover1 - D2K DataMover 1
port 2298 => d2k-datamover2 - D2K DataMover 2
port 2299 => pc-telecommute - PC Telecommute
port 2300 => cvmmon - CVMMON
port 2301 => cpq-wbem - Compaq HTTP
port 2302 => binderysupport - Bindery Support
port 2303 => proxy-gateway - Proxy Gateway
port 2304 => attachmate-uts - Attachmate UTS
port 2305 => mt-scaleserver - MT ScaleServer
port 2306 => tappi-boxnet - TAPPI BoxNet
port 2307 => pehelp - pehelp
port 2308 => sdhelp - sdhelp
port 2309 => sdserver - SD Server
port 2310 => sdclient - SD Client
port 2311 => messageservice - Message Service
port 2313 => iapp - IAPP (Inter Access Point Protocol)
port 2314 => cr-websystems - CR WebSystems
port 2315 => precise-sft - Precise Sft.
port 2316 => sent-lm - SENT License Manager
port 2317 => attachmate-g32 - Attachmate G32
port 2318 => cadencecontrol - Cadence Control
port 2319 => infolibria - InfoLibria
port 2320 => siebel-ns - Siebel NS
port 2321 => rdlap - RDLAP over UDP
port 2322 => ofsd - ofsd
port 2323 => 3d-nfsd - 3d-nfsd
port 2324 => cosmocall - Cosmocall
port 2325 => designspace-lm - Design Space License Management
port 2326 => idcp - IDCP
port 2327 => xingcsm - xingcsm
port 2328 => netrix-sftm - Netrix SFTM
port 2329 => nvd - NVD
port 2330 => tscchat - TSCCHAT
port 2331 => agentview - AGENTVIEW
port 2332 => rcc-host - RCC Host
port 2333 => snapp - SNAPP
port 2334 => ace-client - ACE Client Auth
port 2335 => ace-proxy - ACE Proxy
port 2336 => appleugcontrol - Apple UG Control
port 2337 => ideesrv - ideesrv
port 2338 => norton-lambert - Norton Lambert
port 2339 => 3com-webview - 3Com WebView
port 2340 => wrs_registry - WRS Registry
port 2341 => xiostatus - XIO Status
port 2342 => manage-exec - Seagate Manage Exec
port 2343 => nati-logos - nati logos
port 2344 => fcmsys - fcmsys
port 2345 => dbm - dbm
port 2346 => redstorm_join - Game Connection Port
port 2347 => redstorm_find - Game Announcement and Location
port 2348 => redstorm_info - Information to query for game status
port 2349 => redstorm_diag - Diagnostics Port
port 2350 => psbserver - psbserver
port 2351 => psrserver - psrserver
port 2352 => pslserver - pslserver
port 2353 => pspserver - pspserver
port 2354 => psprserver - psprserver
port 2355 => psdbserver - psdbserver
port 2356 => gxtelmd - GXT License Managemant
port 2357 => unihub-server - UniHub Server
port 2358 => futrix - Futrix
port 2359 => flukeserver - FlukeServer
port 2360 => nexstorindltd - NexstorIndLtd
port 2361 => tl1 - TL1
port 2381 => compaq-https - Compaq HTTPS
port 2389 => ovsessionmgr - OpenView Session Mgr
port 2390 => rsmtp - RSMTP
port 2391 => 3com-net-mgmt - 3COM Net Management
port 2392 => tacticalauth - Tactical Auth
port 2393 => ms-olap1 - MS OLAP 1
port 2394 => ms-olap2 - MS OLAP 2
port 2395 => lan900_remote - LAN900 Remote
port 2396 => wusage - Wusage
port 2397 => ncl - NCL
port 2398 => orbiter - Orbiter
port 2399 => fmpro-fdal - FileMaker, Inc. - Data Access Layer
port 2400 => opequus-server - OpEquus Server
port 2401 => cvspserver - cvspserver
port 2402 => taskmaster2000 - TaskMaster 2000 Server
port 2403 => taskmaster2000 - TaskMaster 2000 Web
port 2404 => iec870-5-104 - IEC870-5-104
port 2405 => trc-netpoll - TRC Netpoll
port 2406 => jediserver - JediServer
port 2407 => orion - Orion
port 2408 => optimanet - OptimaNet
port 2409 => sns-protocol - SNS Protocol
port 2410 => vrts-registry - VRTS Registry
port 2411 => netwave-ap-mgmt - Netwave AP Management
port 2412 => cdn - CDN
port 2413 => orion-rmi-reg - orion-rmi-reg
port 2414 => interlingua - Interlingua
port 2415 => comtest - COMTEST
port 2416 => rmtserver - RMT Server
port 2417 => composit-server - Composit Server
port 2418 => cas - cas
port 2419 => attachmate-s2s - Attachmate S2S
port 2420 => dslremote-mgmt - DSL Remote Management
port 2421 => g-talk - G-Talk
port 2422 => crmsbits - CRMSBITS
port 2423 => rnrp - RNRP
port 2424 => kofax-svr - KOFAX-SVR
port 2425 => fjitsuappmgr - Fujitsu App Manager
port 2426 => applianttcp - Appliant TCP
port 2427 => stgcp - Simple telephony Gateway Control Protocol
port 2428 => ott - One Way Trip Time
port 2429 => ft-role - FT-ROLE
port 2430 => venus - venus
port 2431 => venus-se - venus-se
port 2432 => codasrv - codasrv
port 2433 => codasrv-se - codasrv-se
port 2434 => pxc-epmap - pxc-epmap
port 2435 => optilogic - OptiLogic
port 2436 => topx - TOP/X
port 2437 => unicontrol - UniControl
port 2438 => msp - MSP
port 2439 => sybasedbsynch - SybaseDBSynch
port 2440 => spearway - Spearway Lockers
port 2441 => pvsw-inet - pvsw-inet
port 2442 => netangel - Netangel
port 2443 => powerclientcsf - PowerClient Central Storage Facility
port 2444 => btpp2sectrans - BT PP2 Sectrans
port 2445 => dtn1 - DTN1
port 2446 => bues_service - bues_service
port 2447 => ovwdb - OpenView NNM daemon
port 2448 => hpppssvr - hpppsvr
port 2449 => ratl - RATL
port 2450 => netadmin - netadmin
port 2451 => netchat - netchat
port 2452 => snifferclient - SnifferClient
port 2453 => madge-om - madge-om
port 2454 => indx-dds - IndX-DDS
port 2455 => wago-io-system - WAGO-IO-SYSTEM
port 2456 => altav-remmgt - altav-remmgt
port 2457 => rapido-ip - Rapido_IP
port 2458 => griffin - griffin
port 2459 => community - Community
port 2460 => ms-theater - ms-theater
port 2461 => qadmifoper - qadmifoper
port 2462 => qadmifevent - qadmifevent
port 2463 => symbios-raid - Symbios Raid
port 2464 => direcpc-si - DirecPC SI
port 2465 => lbm - Load Balance Management
port 2466 => lbf - Load Balance Forwarding
port 2467 => high-criteria - High Criteria
port 2468 => qip_msgd - qip_msgd
port 2469 => mti-tcs-comm - MTI-TCS-COMM
port 2470 => taskman_port - taskman port
port 2471 => seaodbc - SeaODBC
port 2472 => c3 - C3
port 2473 => aker-cdp - Aker-cdp
port 2474 => vitalanalysis - Vital Analysis
port 2475 => ace-server - ACE Server
port 2476 => ace-svr-prop - ACE Server Propagation
port 2477 => ssm-cvs - SecurSight Certificate Valifation Service
port 2478 => ssm-cssps - SecurSight Authentication Server (SLL)
port 2479 => ssm-els - SecurSight Event Logging Server (SSL)
port 2480 => lingwood - Lingwood's Detail
port 2481 => giop - Oracle GIOP
port 2482 => giop-ssl - Oracle GIOP SSL
port 2483 => ttc - Oracle TTC
port 2484 => ttc-ssl - Oracle TTC SSL
port 2485 => netobjects1 - Net Objects1
port 2486 => netobjects2 - Net Objects2
port 2487 => pns - Policy Notice Service
port 2488 => moy-corp - Moy Corporation
port 2489 => tsilb - TSILB
port 2490 => qip_qdhcp - qip_qdhcp
port 2491 => conclave-cpp - Conclave CPP
port 2492 => groove - GROOVE
port 2493 => talarian-mqs - Talarian MQS
port 2494 => bmc-ar - BMC AR
port 2495 => fast-rem-serv - Fast Remote Services
port 2496 => dirgis - DIRGIS
port 2497 => quaddb - Quad DB
port 2498 => odn-castraq - ODN-CasTraq
port 2499 => unicontrol - UniControl
port 2500 => rtsserv - Resource Tracking system server
port 2501 => rtsclient - Resource Tracking system client
port 2502 => kentrox-prot - Kentrox Protocol
port 2503 => nms-dpnss - NMS-DPNSS
port 2504 => wlbs - WLBS
port 2505 => torque-traffic - torque-traffic
port 2506 => jbroker - jbroker
port 2507 => spock - spock
port 2508 => datastore - datastore
port 2509 => fjmpss - fjmpss
port 2510 => fjappmgrbulk - fjappmgrbulk
port 2511 => metastorm - Metastorm
port 2512 => citrixima - Citrix IMA
port 2513 => citrixadmin - Citrix ADMIN
port 2514 => facsys-ntp - Facsys NTP
port 2515 => facsys-router - Facsys Router
port 2516 => maincontrol - Main Control
port 2517 => call-sig-trans - H.323 Annex E call signaling transport
port 2518 => willy - Willy
port 2519 => globmsgsvc - globmsgsvc
port 2520 => pvsw - pvsw
port 2521 => adaptecmgr - Adaptec Manager
port 2522 => windb - WinDb
port 2523 => qke-llc-v3 - Qke LLC V.3
port 2524 => optiwave-lm - Optiwave License Management
port 2525 => ms-v-worlds - MS V-Worlds
port 2526 => ema-sent-lm - EMA License Manager
port 2527 => iqserver - IQ Server
port 2528 => ncr_ccl - NCR CCL
port 2529 => utsftp - UTS FTP
port 2530 => vrcommerce - VR Commerce
port 2531 => ito-e-gui - ITO-E GUI
port 2532 => ovtopmd - OVTOPMD
port 2533 => snifferserver - SnifferServer
port 2534 => combox-web-acc - Combox Web Access
port 2535 => mdhcp - MDHCP
port 2536 => btpp2audctr1 - btpp2audctr1
port 2537 => upgrade - Upgrade Protocol
port 2538 => vnwk-prapi - vnwk-prapi
port 2539 => vsiadmin - VSI Admin
port 2540 => lonworks - LonWorks
port 2541 => lonworks2 - LonWorks2
port 2542 => davinci - daVinci
port 2543 => reftek - REFTEK
port 2544 => novell-zen - Novell ZEN
port 2545 => sis-emt - sis-emt
port 2546 => vytalvaultbrtp - vytalvaultbrtp
port 2547 => vytalvaultvsmp - vytalvaultvsmp
port 2548 => vytalvaultpipe - vytalvaultpipe
port 2549 => ipass - IPASS
port 2550 => ads - ADS
port 2551 => isg-uda-server - ISG UDA Server
port 2552 => call-logging - Call Logging
port 2553 => efidiningport - efidiningport
port 2554 => vcnet-link-v10 - VCnet-Link v10
port 2555 => compaq-wcp - Compaq WCP
port 2556 => nicetec-nmsvc - nicetec-nmsvc
port 2557 => nicetec-mgmt - nicetec-mgmt
port 2558 => pclemultimedia - PCLE Multi Media
port 2559 => lstp - LSTP
port 2560 => labrat - labrat
port 2561 => mosaixcc - MosaixCC
port 2562 => delibo - Delibo
port 2563 => cti-redwood - CTI Redwood
port 2564 => hp-3000-telnet - HP 3000 NS/VT block mode telnet
port 2565 => coord-svr - Coordinator Server
port 2566 => pcs-pcw - pcs-pcw
port 2567 => clp - Cisco Line Protocol
port 2568 => spamtrap - SPAM TRAP
port 2569 => sonuscallsig - Sonus Call Signal
port 2570 => hs-port - HS Port
port 2571 => cecsvc - CECSVC
port 2572 => ibp - IBP
port 2573 => trustestablish - Trust Establish
port 2574 => blockade-bpsp - Blockade BPSP
port 2575 => hl7 - HL7
port 2576 => tclprodebugger - TCL Pro Debugger
port 2577 => scipticslsrvr - Scriptics Lsrvr
port 2578 => rvs-isdn-dcp - RVS ISDN DCP
port 2579 => mpfoncl - mpfoncl
port 2580 => tributary - Tributary
port 2581 => argis-te - ARGIS TE
port 2582 => argis-ds - ARGIS DS
port 2583 => mon - MON
port 2584 => cyaserv - cyaserv
port 2585 => netx-server - NETX Server
port 2586 => netx-agent - NETX Agent
port 2587 => masc - MASC
port 2588 => privilege - Privilege
port 2589 => quartus-tcl - quartus tcl
port 2590 => idotdist - idotdist
port 2591 => maytagshuffle - Maytag Shuffle
port 2592 => netrek - netrek
port 2593 => mns-mail - MNS Mail Notice Service
port 2594 => dts - Data Base Server
port 2595 => worldfusion1 - World Fusion 1
port 2596 => worldfusion2 - World Fusion 2
port 2597 => homesteadglory - Homestead Glory
port 2598 => citriximaclient - Citrix MA Client
port 2599 => meridiandata - Meridian Data
port 2600 => hpstgmgr - HPSTGMGR
port 2601 => discp-client - discp client
port 2602 => discp-server - discp server
port 2603 => servicemeter - Service Meter
port 2604 => nsc-ccs - NSC CCS
port 2605 => nsc-posa - NSC POSA
port 2606 => netmon - Dell Netmon
port 2607 => connection - Dell Connection
port 2608 => wag-service - Wag Service
port 2609 => system-monitor - System Monitor
port 2610 => versa-tek - VersaTek
port 2611 => lionhead - LIONHEAD
port 2612 => qpasa-agent - Qpasa Agent
port 2613 => smntubootstrap - SMNTUBootstrap
port 2614 => neveroffline - Never Off Line
port 2615 => firepower - firepower
port 2616 => appswitch-emp - appswitch-emp
port 2617 => cmadmin - Clinical Context Managers
port 2618 => priority-e-com - Priority E-Com
port 2619 => bruce - bruce
port 2620 => lpsrecommender - LPSRecommender
port 2621 => miles-apart - Miles Apart Jukebox Server
port 2622 => metricadbc - MetricaDBC
port 2623 => lmdp - LMDP
port 2624 => aria - Aria
port 2625 => blwnkl-port - Blwnkl Port
port 2626 => gbjd816 - gbjd816
port 2627 => moshebeeri - Moshe Beeri
port 2628 => dict - DICT
port 2629 => sitaraserver - Sitara Server
port 2630 => sitaramgmt - Sitara Management
port 2631 => sitaradir - Sitara Dir
port 2632 => irdg-post - IRdg Post
port 2633 => interintelli - InterIntelli
port 2634 => pk-electronics - PK Electronics
port 2635 => backburner - Back Burner
port 2636 => solve - Solve
port 2637 => imdocsvc - Import Document Service
port 2638 => sybaseanywhere - Sybase Anywhere
port 2639 => aminet - AMInet
port 2640 => sai_sentlm - Sabbagh Associates Licence Manager
port 2641 => hdl-srv - HDL Server
port 2642 => tragic - Tragic
port 2643 => gte-samp - GTE-SAMP
port 2644 => travsoft-ipx-t - Travsoft IPX Tunnel
port 2645 => novell-ipx-cmd - Novell IPX CMD
port 2646 => and-lm - AND Licence Manager
port 2647 => syncserver - SyncServer
port 2648 => upsnotifyprot - Upsnotifyprot
port 2649 => vpsipport - VPSIPPORT
port 2650 => eristwoguns - eristwoguns
port 2651 => ebinsite - EBInSite
port 2652 => interpathpanel - InterPathPanel
port 2653 => sonus - Sonus
port 2654 => corel_vncadmin - Corel VNC Admin
port 2655 => unglue - UNIX Nt Glue
port 2656 => kana - Kana
port 2657 => sns-dispatcher - SNS Dispatcher
port 2658 => sns-admin - SNS Admin
port 2659 => sns-query - SNS Query
port 2660 => gcmonitor - GC Monitor
port 2661 => olhost - OLHOST
port 2662 => bintec-capi - BinTec-CAPI
port 2663 => bintec-tapi - BinTec-TAPI
port 2664 => command-mq-gm - Command MQ GM
port 2665 => command-mq-pm - Command MQ PM
port 2666 => extensis - extensis
port 2667 => alarm-clock-s - Alarm Clock Server
port 2668 => alarm-clock-c - Alarm Clock Client
port 2669 => toad - TOAD
port 2670 => tve-announce - TVE Announce
port 2671 => newlixreg - newlixreg
port 2672 => nhserver - nhserver
port 2673 => firstcall42 - First Call 42
port 2674 => ewnn - ewnn
port 2675 => ttc-etap - TTC ETAP
port 2676 => simslink - SIMSLink
port 2677 => gadgetgate1way - Gadget Gate 1 Way
port 2678 => gadgetgate2way - Gadget Gate 2 Way
port 2679 => syncserverssl - Sync Server SSL
port 2680 => pxc-sapxom - pxc-sapxom
port 2681 => mpnjsomb - mpnjsomb
port 2682 => srsp - SRSP
port 2683 => ncdloadbalance - NCDLoadBalance
port 2684 => mpnjsosv - mpnjsosv
port 2685 => mpnjsocl - mpnjsocl
port 2686 => mpnjsomg - mpnjsomg
port 2687 => pq-lic-mgmt - pq-lic-mgmt
port 2688 => md-cg-http - md-cf-http
port 2689 => fastlynx - FastLynx
port 2690 => hp-nnm-data - HP NNM Embedded Database
port 2691 => itinternet - IT Internet
port 2692 => admins-lms - Admins LMS
port 2693 => belarc-http - belarc-http
port 2694 => pwrsevent - pwrsevent
port 2695 => vspread - VSPREAD
port 2696 => unifyadmin - Unify Admin
port 2697 => oce-snmp-trap - Oce SNMP Trap Port
port 2698 => mck-ivpip - MCK-IVPIP
port 2699 => csoft-plusclnt - Csoft Plus Client
port 2700 => tqdata - tqdata
port 2701 => sms-rcinfo - SMS RCINFO
port 2702 => sms-xfer - SMS XFER
port 2703 => sms-chat - SMS CHAT
port 2704 => sms-remctrl - SMS REMCTRL
port 2705 => sds-admin - SDS Admin
port 2706 => ncdmirroring - NCD Mirroring
port 2707 => emcsymapiport - EMCSYMAPIPORT
port 2708 => banyan-net - Banyan-Net
port 2709 => supermon - Supermon
port 2710 => sso-service - SSO Service
port 2711 => sso-control - SSO Control
port 2712 => aocp - Axapta Object Communication Protocol
port 2713 => raven1 - Raven1
port 2714 => raven2 - Raven2
port 2715 => hpstgmgr2 - HPSTGMGR2
port 2716 => inova-ip-disco - Inova IP Disco
port 2784 => www-dev - world wide web - development
port 2785 => aic-np - aic-np
port 2786 => aic-oncrpc - aic-oncrpc - Destiny MCD database
port 2787 => piccolo - piccolo - Cornerstone Software
port 2788 => fryeserv - NetWare Loadable Module - Seagate Software
port 2789 => media-agent - Media Agent
port 2828 => itm-lm - ITM License Manager
port 2908 => mao - mao
port 2909 => funk-dialout - Funk Dialout
port 2910 => tdaccess - TDAccess
port 2911 => blockade - Blockade
port 2912 => epicon - Epicon
port 2913 => boosterware - Booster Ware
port 2914 => gamelobby - Game Lobby
port 2915 => tksocket - TK Socket
port 2916 => elvin_server - Elvin Server
port 2917 => elvin_client - Elvin Client
port 2918 => kastenchasepad - Kasten Chase Pad
port 2971 => netclip - Net Clip
port 2972 => pmsm-webrctl - PMSM Webrctl
port 2973 => svnetworks - SV Networks
port 2974 => signal - Signal
port 2975 => fjmpcm - Fujitsu Configuration Management Service
port 2976 => cns-srv-port - CNS Server Port
port 2977 => ttc-etap-ns - TTCs Enterprise Test Access Protocol - NS
port 2978 => ttc-etap-ds - TTCs Enterprise Test Access Protocol - DS
port 2979 => h263-video - H.263 Video Streaming
port 2980 => wimd - Instant Messaging Service
port 2981 => mylxamport - MYLXAMPORT
port 2989 => rat - Rat TROJAN
port 2998 => realsecure - Real Secure
port 3000 => hbci - HBCI (or remoteware-cl - RemoteWare Client)
port 3001 => redwood-broker - Redwood Broker
port 3002 => remoteware-srv - RemoteWare Server (or EXLM Agent)
port 3003 => cgms - CGMS
port 3004 => csoftragent - Csoft Agent
port 3005 => geniuslm - Genius License Manager
port 3006 => ii-admin - Instant Internet Admin
port 3007 => lotusmtap - Lotus Mail Tracking Agent Protocol
port 3008 => midnight-tech - Midnight Technologies
port 3009 => pxc-ntfy - PXC-NTFY
port 3010 => gw - Telerate Workstation
port 3011 => trusted-web - Trusted Web
port 3012 => twsdss - Trusted Web Client
port 3013 => gilatskysurfer - Gilat Sky Surfer
port 3014 => broker_service - Broker Service
port 3015 => nati-dstp - NATI DSTP
port 3016 => notify_srvr - Notify Server
port 3017 => event_listener - Event Listener
port 3018 => srvc_registry - Service Registry
port 3019 => resource_mgr - Resource Manager
port 3020 => cifs - CIFS
port 3021 => agriserver - AGRI Server
port 3022 => csregagent - CSREGAGENT
port 3023 => magicnotes - magicnotes
port 3024 => nds_sso - NDS_SSO
port 3025 => arepa-raft - Arepa Raft
port 3026 => agri-gateway - AGRI Gateway
port 3027 => LiebDevMgmt_C - LiebDevMgmt_C
port 3028 => LiebDevMgmt_DM - LiebDevMgmt_DM
port 3029 => LiebDevMgmt_A - LiebDevMgmt_A
port 3030 => arepa-cas - Arepa Cas
port 3031 => agentvu - AgentVU
port 3032 => redwood-chat - Redwood Chat
port 3033 => pdb - PDB
port 3034 => osmosis-aeea - Osmosis AEEA
port 3035 => fjsv-gssagt - FJSV gssagt
port 3036 => hagel-dump - Hagel DUMP
port 3037 => hp-san-mgmt - HP SAN Mgmt
port 3038 => santak-ups - Santak UPS
port 3039 => cogitate - Cogitate, Inc.
port 3040 => tomato-springs - Tomato Springs
port 3041 => di-traceware - di-traceware
port 3042 => journee - journee
port 3043 => brp - BRP
port 3044 => msexch-routing - msexch-routing
port 3045 => responsenet - ResponseNet
port 3046 => di-ase - di-ase
port 3047 => hlserver - Fast Security HL Server
port 3048 => pctrader - Sierra Net PC Trader
port 3049 => nsws - NSWS
port 3050 => gds_db - gds_db
port 3051 => galaxy-server - Galaxy Server
port 3052 => apcpcns - APCPCNS
port 3053 => dsom-server - dsom-server
port 3054 => amt-cnf-prot - AMT CNF PROT
port 3055 => policyserver - Policy Server
port 3056 => cdl-server - CDL Server
port 3057 => goahead-fldup - GoAhead FldUp
port 3058 => videobeans - videobeans
port 3059 => qsoft - qsoft
port 3060 => interserver - interserver
port 3061 => cautcpd - cautcpd
port 3062 => ncacn-ip-tcp - ncacn-ip-tcp
port 3063 => ncadg-ip-udp - ncadg-ip-udp
port 3080 => stm_pproc - stm_pproc
port 3105 => cardbox - Cardbox
port 3106 => cardbox-http - Cardbox HTTP
port 3130 => icpv2 - ICPv2
port 3131 => netbookmark - Net Book Mark
port 3141 => vmodem - VMODEM
port 3142 => rdc-wh-eos - RDC WH EOS
port 3143 => seaview - Sea View
port 3144 => tarantella - Tarantella
port 3145 => csi-lfap - CSI-LFAP
port 3147 => rfio - RFIO
port 3148 => nm-game-admin - NetMike Game Administrator
port 3149 => nm-game-server - NetMike Game Server
port 3150 => nm-asses-admin - NetMike Assessor Administrator
port 3151 => nm-assessor - NetMike Assessor
port 3180 => mc-brk-srv - Millicent Broker Server
port 3181 => bmcpatrolagent - BMC Patrol Agent
port 3182 => bmcpatrolrnvu - BMC Patrol Rendezvous
port 3264 => ccmail - cc:mail/lotus
port 3265 => altav-tunnel - Altav Tunnel
port 3266 => ns-cfg-server - NS CFG Server
port 3267 => ibm-dial-out - IBM Dial Out
port 3268 => msft-gc - Microsoft Global Catalog
port 3269 => msft-gc-ssl - Microsoft Global Catalog with LDAP/SSL
port 3270 => verismart - Verismart
port 3271 => csoft-prev - CSoft Prev Port
port 3272 => user-manager - Fujitsu User Manager
port 3273 => sxmp - Simple Extensible Multiplexed Protocol
port 3274 => ordinox-server - Ordinox Server
port 3275 => samd - SAMD
port 3276 => maxim-asics - Maxim ASICs
port 3277 => awg-proxy - AWG Proxy
port 3278 => lkcmserver - LKCM Server
port 3279 => admind - admind
port 3280 => vs-server - VS Server
port 3281 => sysopt - SYSOPT
port 3282 => datusorb - Datusorb
port 3283 => net-assistant - Net Assistant
port 3284 => 4talk - 4Talk
port 3285 => plato - Plato
port 3286 => e-net - E-Net
port 3287 => directvdata - DIRECTVDATA
port 3288 => cops - COPS
port 3289 => enpc - ENPC
port 3290 => caps-lm - CAPS LOGISTICS TOOLKIT - LM
port 3291 => sah-lm - S A Holditch & Associates - LM
port 3292 => cart-o-rama - Cart O Rama
port 3293 => fg-fps - fg-fps
port 3294 => fg-gip - fg-gip
port 3295 => dyniplookup - Dynamic IP Lookup
port 3296 => rib-slm - Rib License Manager
port 3297 => cytel-lm - Cytel License Manager
port 3298 => transview - Transview
port 3299 => pdrncs - pdrncs
port 3300 => sap r/3 - SAP R/3 (unauthorized use)
port 3301 => sap r/3 - SAP R/3 (unauthorized use)
port 3302 => mcs-fastmail - MCS Fastmail
port 3303 => opsession-clnt - OP Session Client
port 3304 => opsession-srvr - OP Session Server
port 3305 => odette-ftp - ODETTE-FTP
port 3306 => mysql - MySQL
port 3307 => opsession-prxy - OP Session Proxy
port 3308 => tns-server - TNS Server
port 3309 => tns-adv - TNS ADV
port 3310 => dyna-access - Dyna Access
port 3311 => mcns-tel-ret - MCNS Tel Ret
port 3312 => appman-server - Application Management Server
port 3313 => uorb - Unify Object Broker
port 3314 => uohost - Unify Object Host
port 3315 => cdid - CDID
port 3316 => aicc-cmi - AICC/CMI
port 3317 => vsaiport - VSAI PORT
port 3318 => ssrip - Swith to Swith Routing Information Protocol
port 3319 => sdt-lmd - SDT License Manager
port 3320 => officelink2000 - Office Link 2000
port 3321 => vnsstr - VNSSTR
port 3322 => active-net - Active Networks
port 3323 => active-net - Active Networks
port 3324 => active-net - Active Networks
port 3325 => active-net - Active Networks
port 3326 => sftu - SFTU
port 3327 => bbars - BBARS
port 3328 => egptlm - Eaglepoint License Manager
port 3329 => hp-device-disc - HP Device Disc
port 3330 => mcs-calypsoicf - MCS Calypso ICF
port 3331 => mcs-messaging - MCS Messaging
port 3332 => mcs-mailsvr - MCS Mail Server
port 3333 => dec-notes - DEC Notes
port 3334 => directv-web - Direct TV Webcasting
port 3335 => directv-soft - Direct TV Software Updates
port 3336 => directv-tick - Direct TV Tickers
port 3337 => directv-catlg - Direct TV Data Catalog
port 3338 => anet-b - OMF data b
port 3339 => anet-l - OMF data l
port 3340 => anet-m - OMF data m
port 3341 => anet-h - OMF data h
port 3342 => webtie - WebTIE
port 3343 => ms-cluster-net - MS Cluster Net
port 3344 => bnt-manager - BNT Manager
port 3345 => influence - Influence
port 3346 => trnsprntproxy - Trnsprnt Proxy
port 3347 => phoenix-rpc - Phoenix RPC
port 3348 => pangolin-laser - Pangolin Laser
port 3349 => chevinservices - Chevin Services
port 3350 => findviatv - FINDVIATV
port 3351 => btrieve - BTRIEVE
port 3352 => ssql - SSQL
port 3353 => fatpipe - FATPIPE
port 3354 => suitjd - SUITJD
port 3355 => ordinox-dbase - Ordinox Dbase
port 3356 => upnotifyps - UPNOTIFYPS
port 3357 => adtech-test - Adtech Test IP
port 3358 => mpsysrmsvr - Mp Sys Rmsvr
port 3359 => wg-netforce - WG NetForce
port 3360 => kv-server - KV Server
port 3361 => kv-agent - KV Agent
port 3362 => dj-ilm - DJ ILM
port 3363 => nati-vi-server - NATI Vi Server
port 3364 => creativeserver - Creative Server
port 3365 => contentserver - Content Server
port 3366 => creativepartnr - Creative Partner
port 3371 => satvid-datalnk - Satellite Video Data Link
port 3372 => satvid-datalnk - Satellite Video Data Link
port 3373 => satvid-datalnk - Satellite Video Data Link
port 3374 => satvid-datalnk - Satellite Video Data Link
port 3375 => satvid-datalnk - Satellite Video Data Link
port 3372 => tip2 - TIP 2
port 3373 => lavenir-lm - Lavenir License Manager
port 3374 => cluster-disc - Cluster Disc
port 3375 => vsnm-agent - VSNM Agent
port 3376 => cdborker - CD Broker
port 3377 => cogsys-lm - Cogsys Network License Manager
port 3378 => wsicopy - WSICOPY
port 3379 => socorfs - SOCORFS
port 3380 => sns-channels - SNS Channels
port 3381 => geneous - Geneous
port 3382 => fujitsu-neat - Fujitsu Network Enhanced Antitheft function
port 3383 => esp-lm - Enterprise Software Products License Manager
port 3384 => hp-clic - Cluster Management Services
port 3385 => qnxnetman - qnxnetman
port 3386 => gprs-data - GPRS Data
port 3387 => backroomnet - Back Room Net
port 3388 => cbserver - CB Server
port 3389 => ms-wbt-server - MS WBT Server
port 3390 => dsc - Distributed Service Coordinator
port 3391 => savant - SAVANT
port 3392 => efi-lm - EFI License Management
port 3393 => d2k-tapestry1 - D2K Tapestry Client to Server
port 3394 => d2k-tapestry2 - D2K Tapestry Server to Server
port 3395 => dyna-lm - Dyna License Manager (Elam)
port 3396 => printer_agent - Printer Agent
port 3397 => cloanto-lm - Cloanto License Manager
port 3398 => mercantile - Mercantile
port 3399 => csms - CSMS
port 3400 => csms2 - CSMS2
port 3401 => filecast - filecast
port 3421 => bmap - Bull Apprise portmapper
port 3454 => mira - Apple Remote Access Protocol
port 3455 => prsvp - RSVP Port
port 3456 => vat - VAT default data
port 3457 => vat-control - VAT default control
port 3458 => d3winosfi - D3WinOsfi
port 3459 => integral - Integral
port 3460 => edm-manager - EDM Manger
port 3461 => edm-stager - EDM Stager
port 3462 => edm-std-notify - EDM STD Notify
port 3463 => edm-adm-notify - EDM ADM Notify
port 3464 => edm-mgr-sync - EDM MGR Sync
port 3465 => edm-mgr-cntrl - EDM MGR Cntrl
port 3466 => workflow - WORKFLOW
port 3467 => rcst - RCST
port 3468 => ttcmremotectrl - TTCM Remote Controll
port 3469 => pluribus - Pluribus
port 3470 => jt400 - jt400
port 3471 => jt400-ssl - jt400-ssl
port 3563 => watcomdebug - Watcom Debug
port 3672 => harlequinorb - harlequinorb
port 3900 => udt_os - Unidata UDT OS
port 3984 => mapper-nodemgr - MAPPER network node manager
port 3985 => mapper-mapethd - MAPPER TCP/IP server
port 3986 => mapper-ws_ethd - MAPPER workstation server
port 3987 => centerline - Centerline
port 4000 => terabase - Terabase (or ICQ)
port 4001 => newoak - NewOak
port 4002 => pxc-spvr-ft - pxc-spvr-ft
port 4003 => pxc-splr-ft - pxc-splr-ft
port 4004 => pxc-roid - pxc-roid
port 4005 => pxc-pin - pxc-pin
port 4006 => pxc-spvr - pxc-spvr
port 4007 => pxc-splr - pxc-splr
port 4008 => netcheque - NetCheque accounting
port 4009 => chimera-hwm - Chimera HWM
port 4010 => samsung-unidex - Samsung Unidex
port 4011 => altserviceboot - Alternate Service Boot
port 4012 => pda-gate - PDA Gate
port 4013 => acl-manager - ACL Manager
port 4014 => taiclock - TAICLOCK
port 4015 => talarian-mcast1 - Talarian Mcast
port 4016 => talarian-mcast2 - Talarian Mcast
port 4017 => talarian-mcast3 - Talarian Mcast
port 4018 => talarian-mcast4 - Talarian Mcast
port 4019 => talarian-mcast5 - Talarian Mcast
port 4096 => bre - BRE (Bridge Relay Element)
port 4097 => patrolview - Patrol View
port 4098 => drmsfsd - drmsfsd
port 4099 => dpcp - DPCP
port 4132 => nuts_dem - NUTS Daemon
port 4133 => nuts_bootp - NUTS Bootp Server
port 4134 => nifty-hmi - NIFTY-Serve HMI protocol
port 4141 => oirtgsvc - Workflow Server
port 4142 => oidocsvc - Document Server
port 4143 => oidsr - Document Replication
port 4144 => compuserve - Compuserve (UNOFFICIALLY)
port 4160 => jini-discovery - Jini Discovery
port 4200 => vrml-multi-use - VRML Multi User Systems
port 4201 => vrml-multi-use - VRML Multi User Systems
port 4202 => vrml-multi-use - VRML Multi User Systems
port 4203 => vrml-multi-use - VRML Multi User Systems
port 4204 => vrml-multi-use - VRML Multi User Systems
port 4205 => vrml-multi-use - VRML Multi User Systems
port 4206 => vrml-multi-use - VRML Multi User Systems
port 4207 => vrml-multi-use - VRML Multi User Systems
port 4208 => vrml-multi-use - VRML Multi User Systems
port 4209 => vrml-multi-use - VRML Multi User Systems
port 4210 => vrml-multi-use - VRML Multi User Systems
port 4211 => vrml-multi-use - VRML Multi User Systems
port 4212 => vrml-multi-use - VRML Multi User Systems
port 4213 => vrml-multi-use - VRML Multi User Systems
port 4214 => vrml-multi-use - VRML Multi User Systems
port 4215 => vrml-multi-use - VRML Multi User Systems
port 4216 => vrml-multi-use - VRML Multi User Systems
port 4217 => vrml-multi-use - VRML Multi User Systems
port 4218 => vrml-multi-use - VRML Multi User Systems
port 4219 => vrml-multi-use - VRML Multi User Systems
port 4220 => vrml-multi-use - VRML Multi User Systems
port 4221 => vrml-multi-use - VRML Multi User Systems
port 4222 => vrml-multi-use - VRML Multi User Systems
port 4223 => vrml-multi-use - VRML Multi User Systems
port 4224 => vrml-multi-use - VRML Multi User Systems
port 4225 => vrml-multi-use - VRML Multi User Systems
port 4226 => vrml-multi-use - VRML Multi User Systems
port 4227 => vrml-multi-use - VRML Multi User Systems
port 4228 => vrml-multi-use - VRML Multi User Systems
port 4229 => vrml-multi-use - VRML Multi User Systems
port 4230 => vrml-multi-use - VRML Multi User Systems
port 4231 => vrml-multi-use - VRML Multi User Systems
port 4232 => vrml-multi-use - VRML Multi User Systems
port 4233 => vrml-multi-use - VRML Multi User Systems
port 4234 => vrml-multi-use - VRML Multi User Systems
port 4235 => vrml-multi-use - VRML Multi User Systems
port 4236 => vrml-multi-use - VRML Multi User Systems
port 4237 => vrml-multi-use - VRML Multi User Systems
port 4238 => vrml-multi-use - VRML Multi User Systems
port 4239 => vrml-multi-use - VRML Multi User Systems
port 4240 => vrml-multi-use - VRML Multi User Systems
port 4241 => vrml-multi-use - VRML Multi User Systems
port 4242 => vrml-multi-use - VRML Multi User Systems
port 4243 => vrml-multi-use - VRML Multi User Systems
port 4244 => vrml-multi-use - VRML Multi User Systems
port 4245 => vrml-multi-use - VRML Multi User Systems
port 4246 => vrml-multi-use - VRML Multi User Systems
port 4247 => vrml-multi-use - VRML Multi User Systems
port 4248 => vrml-multi-use - VRML Multi User Systems
port 4249 => vrml-multi-use - VRML Multi User Systems
port 4250 => vrml-multi-use - VRML Multi User Systems
port 4251 => vrml-multi-use - VRML Multi User Systems
port 4252 => vrml-multi-use - VRML Multi User Systems
port 4253 => vrml-multi-use - VRML Multi User Systems
port 4254 => vrml-multi-use - VRML Multi User Systems
port 4255 => vrml-multi-use - VRML Multi User Systems
port 4256 => vrml-multi-use - VRML Multi User Systems
port 4257 => vrml-multi-use - VRML Multi User Systems
port 4258 => vrml-multi-use - VRML Multi User Systems
port 4259 => vrml-multi-use - VRML Multi User Systems
port 4260 => vrml-multi-use - VRML Multi User Systems
port 4261 => vrml-multi-use - VRML Multi User Systems
port 4262 => vrml-multi-use - VRML Multi User Systems
port 4263 => vrml-multi-use - VRML Multi User Systems
port 4264 => vrml-multi-use - VRML Multi User Systems
port 4265 => vrml-multi-use - VRML Multi User Systems
port 4266 => vrml-multi-use - VRML Multi User Systems
port 4267 => vrml-multi-use - VRML Multi User Systems
port 4268 => vrml-multi-use - VRML Multi User Systems
port 4269 => vrml-multi-use - VRML Multi User Systems
port 4270 => vrml-multi-use - VRML Multi User Systems
port 4271 => vrml-multi-use - VRML Multi User Systems
port 4272 => vrml-multi-use - VRML Multi User Systems
port 4273 => vrml-multi-use - VRML Multi User Systems
port 4274 => vrml-multi-use - VRML Multi User Systems
port 4275 => vrml-multi-use - VRML Multi User Systems
port 4276 => vrml-multi-use - VRML Multi User Systems
port 4277 => vrml-multi-use - VRML Multi User Systems
port 4278 => vrml-multi-use - VRML Multi User Systems
port 4279 => vrml-multi-use - VRML Multi User Systems
port 4280 => vrml-multi-use - VRML Multi User Systems
port 4281 => vrml-multi-use - VRML Multi User Systems
port 4282 => vrml-multi-use - VRML Multi User Systems
port 4283 => vrml-multi-use - VRML Multi User Systems
port 4284 => vrml-multi-use - VRML Multi User Systems
port 4285 => vrml-multi-use - VRML Multi User Systems
port 4286 => vrml-multi-use - VRML Multi User Systems
port 4287 => vrml-multi-use - VRML Multi User Systems
port 4288 => vrml-multi-use - VRML Multi User Systems
port 4289 => vrml-multi-use - VRML Multi User Systems
port 4290 => vrml-multi-use - VRML Multi User Systems
port 4291 => vrml-multi-use - VRML Multi User Systems
port 4292 => vrml-multi-use - VRML Multi User Systems
port 4293 => vrml-multi-use - VRML Multi User Systems
port 4294 => vrml-multi-use - VRML Multi User Systems
port 4295 => vrml-multi-use - VRML Multi User Systems
port 4296 => vrml-multi-use - VRML Multi User Systems
port 4297 => vrml-multi-use - VRML Multi User Systems
port 4298 => vrml-multi-use - VRML Multi User Systems
port 4299 => vrml-multi-use - VRML Multi User Systems
port 4300 => corelccam - Corel CCam
port 4321 => rwhois - Remote Who Is
port 4343 => unicall - UNICALL
port 4344 => vinainstall - VinaInstall
port 4345 => m4-network-as - Macro 4 Network AS
port 4346 => elanlm - ELAN LM
port 4347 => lansurveyor - LAN Surveyor
port 4348 => itose - ITOSE
port 4349 => fsportmap - File System Port Map
port 4350 => net-device - Net Device
port 4351 => plcy-net-svcs - PLCY Net Services
port 4353 => f5-iquery - F5 iQuery
port 4442 => saris - Saris
port 4443 => pharos - Pharos
port 4444 => krb524 - KRB524 (or nv-video - NV Video default)
port 4445 => upnotifyp - UPNOTIFYP
port 4446 => n1-fwp - N1-FWP
port 4447 => n1-rmgmt - N1-RMGMT
port 4448 => asc-slmd - ASC Licence Manager
port 4449 => privatewire - PrivateWire
port 4450 => camp - Camp
port 4451 => ctisystemmsg - CTI System Msg
port 4452 => ctiprogramload - CTI Program Load
port 4453 => nssalertmgr - NSS Alert Manager
port 4454 => nssagentmgr - NSS Agent Manager
port 4455 => prchat-user - PR Chat User
port 4456 => prchat-server - PR Chat Server
port 4457 => prRegister - PR Register
port 4500 => sae-urn - sae-urn
port 4501 => urn-x-cdchoice - urn-x-cdchoice
port 4545 => worldscores - WorldScores
port 4546 => sf-lm - SF License Manager (Sentinel)
port 4547 => lanner-lm - Lanner License Manager
port 4600 => piranha1 - Piranha1
port 4601 => piranha2 - Piranha2
port 4672 => rfa - remote file access server
port 4800 => iims - Icona Instant Messenging System
port 4801 => iwec - Icona Web Embedded Chat
port 4802 => ilss - Icona License System Server
port 4827 => htcp - HTCP
port 4868 => phrelay - Photon Relay
port 4869 => phrelaydbg - Photon Relay Debug
port 4885 => abbs - ABBS
port 5000 => commplex-main - commplex-main (or Sokets de Trois 1 TROJAN)
port 5001 => commplex-link - commplex-link (or Sokets de Trois 1 TROJAN)
port 5002 => rfe - radio free ethernet
port 5003 => fmpro-internal - FileMaker, Inc. - Proprietary transport
port 5004 => avt-profile-1 - avt-profile-1
port 5005 => avt-profile-2 - avt-profile-2
port 5010 => telelpathstart - TelepathStart
port 5011 => telelpathattack - TelepathAttack
port 5020 => zenginkyo-1 - zenginkyo-1
port 5021 => zenginkyo-2 - zenginkyo-2
port 5042 => asnaacceler8db - asnaacceler8db
port 5050 => mmcc - multimedia conference control tool
port 5051 => ita-agent - ITA Agent
port 5052 => ita-manager - ITA Manager
port 5060 => sip - SIP
port 5069 => i-net-2000-npr - I/Net 2000-NPR
port 5145 => rmonitor_secure - rmonitor_secure
port 5150 => atmp - Ascend Tunnel Management Protocol
port 5151 => esri_sde - ESRI SDE Instance
port 5152 => sde-discovery - ESRI SDE Instance Discovery
port 5165 => ife_icorp - ife_1corp
port 5190 => aol - America-Online
port 5191 => aol-1 - AmericaOnline1
port 5192 => aol-2 - AmericaOnline2
port 5193 => aol-3 - AmericaOnline3
port 5200 => targus-aib1 - Targus AIB 1
port 5201 => targus-aib2 - Targus AIB 2
port 5202 => targus-tnts1 - Targus TNTS 1
port 5203 => targus-tnts2 - Targus TNTS 2
port 5236 => padl2sim - padl2sim
port 5272 => pk - PK
port 5300 => hacl-hb - HA cluster heartbeat
port 5301 => hacl-gs - HA cluster general services
port 5302 => hacl-cfg - HA cluster configuration
port 5303 => hacl-probe - HA cluster probing
port 5304 => hacl-local - HA Cluster Commands
port 5305 => hacl-test - HA Cluster Test
port 5306 => sun-mc-grp - Sun MC Group
port 5307 => sco-aip - SCO AIP
port 5308 => cfengine - CFengine
port 5309 => jprinter - J Printer
port 5310 => outlaws - Outlaws
port 5311 => tmlogin - TM Login
port 5400 => excerpt - Excerpt Search
port 5401 => excerpts - Excerpt Search Secure
port 5402 => mftp - MFTP
port 5403 => hpoms-ci-lstn - HPOMS-CI-LSTN
port 5404 => hpoms-dps-lstn - HPOMS-DPS-LSTN
port 5405 => netsupport - NetSupport
port 5406 => systemics-sox - Systemics Sox
port 5407 => foresyte-clear - Foresyte-Clear
port 5408 => foresyte-sec - Foresyte-Sec
port 5409 => salient-dtasrv - Salient Data Server
port 5410 => salient-usrmgr - Salient User Manager
port 5411 => actnet - ActNet
port 5412 => continuus - Continuus
port 5413 => wwiotalk - WWIOTALK
port 5414 => statusd - StatusD
port 5415 => ns-server - NS Server
port 5416 => sns-gateway - SNS Gateway
port 5417 => sns-agent - SNS Agent
port 5418 => mcntp - MCNTP
port 5419 => dj-ice - DJ-ICE
port 5420 => cylink-c - Cylink-C
port 5454 => apc-tcp-udp-4 - apc-tcp-udp-4
port 5455 => apc-tcp-udp-5 - apc-tcp-udp-5
port 5456 => apc-tcp-udp-6 - apc-tcp-udp-6
port 5500 => fcp-addr-srvr1 - fcp-addr-srvr1
port 5501 => fcp-addr-srvr2 - fcp-addr-srvr2
port 5502 => fcp-srvr-inst1 - fcp-srvr-inst1
port 5503 => fcp-srvr-inst2 - fcp-srvr-inst2
port 5504 => fcp-cics-gw1 - fcp-cics-gw1
port 5555 => personal-agent - Personal Agent (or HP Omniback)
port 5599 => esinstall - Enterprise Security Remote Install
port 5600 => esmmanager - Enterprise Security Manager
port 5601 => esmagent - Enterprise Security Agent
port 5602 => a1-msc - A1-MSC
port 5603 => a1-bs - A1-BS
port 5604 => a3-sdunode - A3-SDUNode
port 5605 => a4-sdunode - A4-SDUNode
port 5631 => pcanywheredata - pcANYWHEREdata
port 5632 => pcanywherestat - pcANYWHEREstat
port 5678 => rrac - Remote Replication Agent Connection
port 5679 => dccm - Direct Cable Connect Manager
port 5713 => proshareaudio - proshare conf audio
port 5714 => prosharevideo - proshare conf video
port 5715 => prosharedata - proshare conf data
port 5716 => prosharerequest - proshare conf request
port 5717 => prosharenotify - proshare conf notify
port 5729 => openmail - Openmail User Agent Layer
port 5741 => ida-discover1 - IDA Discover Port 1
port 5742 => ida-discover2 - IDA Discover Port 2
port 5745 => fcopy-server - fcopy-server
port 5746 => fcopys-server - fcopys-server
port 5755 => openmailg - OpenMail Desk Gateway server
port 5757 => x500ms - OpenMail X.500 Directory Server
port 5766 => openmailns - OpenMail NewMail Server
port 5767 => s-openmail - OpenMail Suer Agent Layer (Secure)
port 5768 => openmailpxy - OpenMail CMTS Server
port 5968 => mppolicy-v5 - mppolicy-v5
port 5969 => mppolicy-mgr - mppolicy-mgr
port 6000 => x11 - X Windows System
port 6001 => x11 - X Windows System
port 6002 => x11 - X Windows System
port 6003 => x11 - X Windows System
port 6110 => softcm - HP SoftBench CM
port 6111 => spc - HP SoftBench Sub-Process Control
port 6112 => dtspcd - dtspcd
port 6123 => backup-express - Backup Express
port 6141 => meta-corp - Meta Corporation License Manager
port 6142 => aspentec-lm - Aspen Technology License Manager
port 6143 => watershed-lm - Watershed License Manager
port 6144 => statsci1-lm - StatSci License Manager - 1
port 6145 => statsci2-lm - StatSci License Manager - 2
port 6146 => lonewolf-lm - Lone Wolf Systems License Manager
port 6147 => montage-lm - Montage License Manager
port 6148 => ricardo-lm - Ricardo North America License Manager
port 6149 => tal-pod - tal-pod
port 6253 => crip - CRIP
port 6389 => clariion-evr01 - clariion-evr01
port 6455 => skip-cert-recv - SKIP Certificate Receive
port 6471 => lvision-lm - LVision License Manager
port 6500 => boks - BoKS Master
port 6501 => boks_servc - BoKS Servc
port 6502 => boks_servm - BoKS Servm
port 6503 => boks_clntd - BoKS Clntd
port 6505 => badm_priv - BoKS Admin Private Port
port 6506 => badm_pub - BoKS Admin Public Port
port 6507 => bdir_priv - BoKS Dir Server, Private Port
port 6508 => bdir_pub - BoKS Dir Server, Public Port
port 6547 => apc-tcp-udp-1 - apc-tcp-udp-1
port 6548 => apc-tcp-udp-2 - apc-tcp-udp-2
port 6549 => apc-tcp-udp-3 - apc-tcp-udp-3
port 6550 => fg-sysupdate - fg-sysupdate
port 6558 => xdsxdm - xdsxdm
port 6665 => ircu - IRCU (IRCD/IRC/Internet Relay Chat)
port 6666 => ircu - IRCU (IRCD/IRC/Internet Relay Chat)
port 6667 => ircu - IRCU (IRCD/IRC/Internet Relay Chat)
port 6668 => ircu - IRCU (IRCD/IRC/Internet Relay Chat)
port 6669 => ircu - IRCU (IRCD/IRC/Internet Relay Chat)
port 6670 => vocaltec-gold - Vocaltec Global Online Directory
port 6672 => vision_server - vision_server
port 6673 => vision_elmd - vision_elmd
port 6701 => kti-icad-srvr - KTI/ICAD Nameserver
port 6790 => hnmp - HNMP
port 6831 => ambit-lm - ambit-lm
port 6841 => netmo-default - Netmo Default
port 6842 => netmo-http - Netmo HTTP
port 6961 => jmact3 - JMACT3
port 6962 => jmevt2 - jmevt2
port 6963 => swismgr1 - swismgr1
port 6964 => swismgr2 - swismgr2
port 6965 => swistrap - swistrap
port 6966 => swispol - swispol
port 6969 => acmsoda - acmsoda
port 6998 => iatp-highpri - IATP-highPri
port 6999 => iatp-normalpri - IATP-normalPri
port 7000 => afs3-fileserver - file server itself
port 7001 => afs3-callback - callbacks to cache managers
port 7002 => afs3-prserver - users & groups database
port 7003 => afs3-vlserver - volume location database
port 7004 => afs3-kaserver - AFS/Kerberos authentication service
port 7005 => afs3-volser - volume managment server
port 7006 => afs3-errors - error interpretation service
port 7007 => afs3-bos - basic overseer process
port 7008 => afs3-update - server-to-server updater
port 7009 => afs3-rmtsys - remote cache manager service
port 7010 => ups-onlinet - onlinet uninterruptable power supplies
port 7011 => talon-disc - Talon Discovery Port
port 7012 => talon-engine - Talon Engine
port 7020 => dpserve - DP Serve
port 7021 => dpserveadmin - DP Serve Admin
port 7070 => arcp - ARCP
port 7099 => lazy-ptop - lazy-ptop
port 7100 => font-service - X Font Service
port 7121 => virprot-lm - Virtual Prototypes License Manager
port 7174 => clutild - Clutild
port 7200 => fodms - FODMS FLIP
port 7201 => dlip - DLIP
port 7300 => netmon - Net Monitor TROJAN (or swx - The Swiss Exchange)
port 7301 => netmon - Net Monitor TROJAN (or swx - The Swiss Exchange)
port 7300 => swx - The Swiss Exchange
port 7301 => swx - The Swiss Exchange
port 7302 => swx - The Swiss Exchange
port 7303 => swx - The Swiss Exchange
port 7304 => swx - The Swiss Exchange
port 7305 => swx - The Swiss Exchange
port 7306 => swx - The Swiss Exchange
port 7307 => swx - The Swiss Exchange
port 7308 => swx - The Swiss Exchange
port 7309 => swx - The Swiss Exchange
port 7310 => swx - The Swiss Exchange
port 7311 => swx - The Swiss Exchange
port 7312 => swx - The Swiss Exchange
port 7313 => swx - The Swiss Exchange
port 7314 => swx - The Swiss Exchange
port 7315 => swx - The Swiss Exchange
port 7316 => swx - The Swiss Exchange
port 7317 => swx - The Swiss Exchange
port 7318 => swx - The Swiss Exchange
port 7319 => swx - The Swiss Exchange
port 7320 => swx - The Swiss Exchange
port 7321 => swx - The Swiss Exchange
port 7322 => swx - The Swiss Exchange
port 7323 => swx - The Swiss Exchange
port 7324 => swx - The Swiss Exchange
port 7325 => swx - The Swiss Exchange
port 7326 => swx - The Swiss Exchange
port 7327 => swx - The Swiss Exchange
port 7328 => swx - The Swiss Exchange
port 7329 => swx - The Swiss Exchange
port 7330 => swx - The Swiss Exchange
port 7331 => swx - The Swiss Exchange
port 7332 => swx - The Swiss Exchange
port 7333 => swx - The Swiss Exchange
port 7334 => swx - The Swiss Exchange
port 7335 => swx - The Swiss Exchange
port 7336 => swx - The Swiss Exchange
port 7337 => swx - The Swiss Exchange
port 7338 => swx - The Swiss Exchange
port 7339 => swx - The Swiss Exchange
port 7340 => swx - The Swiss Exchange
port 7341 => swx - The Swiss Exchange
port 7342 => swx - The Swiss Exchange
port 7343 => swx - The Swiss Exchange
port 7344 => swx - The Swiss Exchange
port 7345 => swx - The Swiss Exchange
port 7346 => swx - The Swiss Exchange
port 7347 => swx - The Swiss Exchange
port 7348 => swx - The Swiss Exchange
port 7349 => swx - The Swiss Exchange
port 7350 => swx - The Swiss Exchange
port 7351 => swx - The Swiss Exchange
port 7352 => swx - The Swiss Exchange
port 7353 => swx - The Swiss Exchange
port 7354 => swx - The Swiss Exchange
port 7355 => swx - The Swiss Exchange
port 7356 => swx - The Swiss Exchange
port 7357 => swx - The Swiss Exchange
port 7358 => swx - The Swiss Exchange
port 7359 => swx - The Swiss Exchange
port 7360 => swx - The Swiss Exchange
port 7361 => swx - The Swiss Exchange
port 7362 => swx - The Swiss Exchange
port 7363 => swx - The Swiss Exchange
port 7364 => swx - The Swiss Exchange
port 7365 => swx - The Swiss Exchange
port 7366 => swx - The Swiss Exchange
port 7367 => swx - The Swiss Exchange
port 7368 => swx - The Swiss Exchange
port 7369 => swx - The Swiss Exchange
port 7370 => swx - The Swiss Exchange
port 7371 => swx - The Swiss Exchange
port 7372 => swx - The Swiss Exchange
port 7373 => swx - The Swiss Exchange
port 7374 => swx - The Swiss Exchange
port 7375 => swx - The Swiss Exchange
port 7376 => swx - The Swiss Exchange
port 7377 => swx - The Swiss Exchange
port 7378 => swx - The Swiss Exchange
port 7379 => swx - The Swiss Exchange
port 7380 => swx - The Swiss Exchange
port 7381 => swx - The Swiss Exchange
port 7382 => swx - The Swiss Exchange
port 7383 => swx - The Swiss Exchange
port 7384 => swx - The Swiss Exchange
port 7385 => swx - The Swiss Exchange
port 7386 => swx - The Swiss Exchange
port 7387 => swx - The Swiss Exchange
port 7388 => swx - The Swiss Exchange
port 7389 => swx - The Swiss Exchange
port 7390 => swx - The Swiss Exchange
port 7391 => swx - The Swiss Exchange
port 7392 => swx - The Swiss Exchange
port 7393 => swx - The Swiss Exchange
port 7394 => swx - The Swiss Exchange
port 7395 => swx - The Swiss Exchange
port 7396 => swx - The Swiss Exchange
port 7397 => swx - The Swiss Exchange
port 7398 => swx - The Swiss Exchange
port 7399 => swx - The Swiss Exchange
port 7395 => winqedit - winqedit
port 7426 => pmdmgr - OpenView DM Postmaster Manager
port 7427 => oveadmgr - OpenView DM Event Agent Manager
port 7428 => ovladmgr - OpenView DM Log Agent Manager
port 7429 => opi-sock - OpenView DM rqt communication
port 7430 => xmpv7 - OpenView DM xmpv7 api pipe
port 7431 => pmd - OpenView DM ovc/xmpv3 api pipe
port 7437 => faximum - Faximum
port 7491 => telops-lmd - telops-lmd
port 7511 => pafec-lm - pafec-lm
port 7544 => nta-ds - FlowAnalyzer DisplayServer
port 7545 => nta-us - FlowAnalyzer UtilityServer
port 7566 => vsi-omega - VSI Omega
port 7570 => aries-kfinder - Aries Kfinder
port 7588 => sun-lm - Sun License Manager
port 7633 => pmdfmgt - PMDF Management
port 7777 => cbt - cbt
port 7781 => accu-lmgr - accu-lmgr
port 7932 => t2-drm - Tier 2 Data Resource Manager
port 7933 => t2-brm - Tier 2 Business Rules Manager
port 7967 => supercell - Supercell
port 7980 => quest-vista - Quest Vista
port 7999 => irdmi2 - iRDMI2
port 8000 => irdmi - iRDMI
port 8001 => vcom-tunnel - VCOM Tunnel
port 8008 => http-alt - HTTP Alternate
port 8032 => pro-ed - ProEd
port 8033 => mindprint - MindPrint
port 8080 => http-alt - HTTP Alternate (see port 80)
port 8160 => patrol - Patrol
port 8161 => patrol-snmp - Patrol SNMP
port 8200 => trivnet1 - TRIVNET
port 8201 => trivnet2 - TRIVNET
port 8204 => lm-perfworks - LM Perfworks
port 8205 => lm-instmgr - LM Instmgr
port 8206 => lm-dta - LM Dta
port 8207 => lm-sserver - LM SServer
port 8351 => server-find - Server Find
port 8376 => cruise-enum - Cruise ENUM
port 8377 => cruise-swroute - Cruise SWROUTE
port 8378 => cruise-config - Cruise CONFIG
port 8379 => cruise-diags - Cruise DIAGS
port 8380 => cruise-update - Cruise UPDATE
port 8400 => cvd - cvd
port 8401 => sabarsd - sabarsd
port 8402 => abarsd - abarsd
port 8403 => admind - admind
port 8450 => npmp - npmp
port 8473 => vp2p - Virtual Point to Point
port 8554 => rtsp-alt - RTSP Alternate (see port 554)
port 8733 => ibus - iBus
port 8765 => ultraseek-http - Ultraseek HTTP
port 8880 => cddbp-alt - CDDBP
port 8888 => ddi-tcp-1 - NewsEDGE server TCP (TCP 1)
port 8889 => ddi-tcp-2 - Desktop Data TCP 1
port 8890 => ddi-tcp-3 - Desktop Data TCP 2
port 8891 => ddi-tcp-4 - Desktop Data TCP 3: NESS application
port 8892 => ddi-tcp-5 - Desktop Data TCP 4: FARM product
port 8893 => ddi-tcp-6 - Desktop Data TCP 5: NewsEDGE/Web application
port 8894 => ddi-tcp-7 - Desktop Data TCP 6: COAL application
port 8900 => jmb-cds1 - JMB-CDS 1
port 8901 => jmb-cds2 - JMB-CDS 2
port 9000 => cslistener - CSlistener
port 9006 => sctp - SCTP
port 9090 => websm - WebSM
port 9160 => netlock1 - NetLOCK1
port 9161 => netlock2 - NetLOCK2
port 9162 => netlock3 - NetLOCK3
port 9163 => netlock4 - NetLOCK4
port 9164 => netlock5 - NetLOCK5
port 9200 => wap-wsp - WAP connectionless session service
port 9201 => wap-wsp-wtp - WAP session service
port 9202 => wap-wsp-s - WAP secure connectionless session service
port 9203 => wap-wsp-wtp-s - WAP secure session service
port 9204 => wap-vcard - WAP vCard
port 9205 => wap-vcal - WAP vCal
port 9206 => wap-vcard-s - WAP vCard Secure
port 9207 => wap-vcal-s - WAP vCal Secure
port 9321 => guibase - guibase
port 9343 => mpidcmgr - MpIdcMgr
port 9374 => fjdmimgr - fjdmimgr
port 9396 => fjinvmgr - fjinvmgr
port 9397 => mpidcagt - MpIdcAgt
port 9500 => ismserver - ismserver
port 9535 => man - man
port 9594 => msgsys - Message System
port 9595 => pds - Ping Discovery Service
port 9876 => sd - Session Director
port 9888 => cyborg-systems - CYBORG Systems
port 9898 => monkeycom - MonkeyCom
port 9992 => palace - Palace
port 9993 => palace - Palace
port 9994 => palace - Palace
port 9995 => palace - Palace
port 9996 => palace - Palace
port 9997 => palace - Palace
port 9998 => distinct32 - Distinct32
port 9999 => distinct - distinct
port 10000 => ndmp - Network Data Management Protocol
port 10007 => mvs-capacity - MVS Capacity
port 10080 => amanda - Amanda
port 10288 => blocks - Blocks
port 11000 => irisa - IRISA
port 11001 => metasys - Metasys
port 11111 => vce - Viral Computing Environment (VCE)
port 11367 => atm-uhas - ATM UHAS
port 12000 => entextxid - IBM Enterprise Extender SNA XID Exchange
port 12001 => entextnetwk - IBM Enterprise Extender SNA COS Network Priority
port 12002 => entexthigh - IBM Enterprise Extender SNA COS High Priority
port 12003 => entextmed - IBM Enterprise Extender SNA COS Medium Priority
port 12004 => entextlow - IBM Enterprise Extender SNA COS Low Priority
port 12076 => gjamer - GJamer TROJAN
port 12345 => netbus - Netbus TROJAN
port 12346 => netbus - Netbus TROJAN
port 12753 => tsaf - tsaf port
port 13160 => i-zipqd - I-ZIPQD
port 13720 => bprd - BPRD Protocol (VERITAS NetBackup)
port 13721 => bpbrm - BPBRM Protocol (VERITAS NetBackup)
port 13722 => bpjava-msvc - BP Java MSVC Protocol
port 13782 => bpcd - VERITAS NetBackup
port 13783 => vopied - VOPIED Protocol
port 13818 => dsmcc-config - DSMCC Config
port 13819 => dsmcc-session - DSMCC Session Messages
port 13820 => dsmcc-passthru - DSMCC Pass-Thru Messages
port 13821 => dsmcc-download - DSMCC Download Protocol
port 13822 => dsmcc-ccp - DSMCC Channel Change Protocol
port 14001 => itu-sccp-ss7 - ITU SCCP (SS7)
port 16360 => netserialext1 - netserialext1
port 16361 => netserialext2 - netserialext2
port 16367 => netserialext3 - netserialext3
port 16368 => netserialext4 - netserialext4
port 17007 => isode-dua - isode-dua
port 17219 => chipper - Chipper
port 18000 => biimenu - Beckman Instruments, Inc.
port 19410 => hp-sco - hp-sco
port 19411 => hp-sca - hp-sca
port 19541 => jcp - JCP Client
port 20000 => dnp - DNP (or Millennium TROJAN)
port 20670 => track - Track
port 21554 => girlfriend - Girlfriend TROJAN
port 21845 => webphone - webphone
port 21846 => netspeak-is - NetSpeak Corp. Directory Services
port 21847 => netspeak-cs - NetSpeak Corp. Connection Services
port 21848 => netspeak-acd - NetSpeak Corp. Automatic Call Distribution
port 21849 => netspeak-cps - NetSpeak Corp. Credit Processing System
port 22000 => snapenetio - SNAPenetIO
port 22001 => optocontrol - OptoControl
port 22273 => wnn6 - wnn6
port 22555 => vocaltec-wconf - Vocaltec Web Conference
port 22800 => aws-brf - Telerate Information Platform LAN
port 22951 => brf-gw - Telerate Information Platform WAN
port 24000 => med-ltp - med-ltp
port 24001 => med-fsp-rx - med-fsp-rx
port 24002 => med-fsp-tx - med-fsp-tx
port 24003 => med-supp - med-supp
port 24004 => med-ovw - med-ovw
port 24005 => med-ci - med-ci
port 24006 => med-net-svc - med-net-svc
port 24386 => intel_rci - Intel RCI
port 25000 => icl-twobase1 - icl-twobase1
port 25001 => icl-twobase2 - icl-twobase2
port 25002 => icl-twobase3 - icl-twobase3
port 25003 => icl-twobase4 - icl-twobase4
port 25004 => icl-twobase5 - icl-twobase5
port 25005 => icl-twobase6 - icl-twobase6
port 25006 => icl-twobase7 - icl-twobase7
port 25007 => icl-twobase8 - icl-twobase8
port 25008 => icl-twobase9 - icl-twobase9
port 25009 => icl-twobase10 - icl-twobase10
port 25793 => vocaltec-hos - Vocaltec Address Server
port 26000 => quake - quake
port 26208 => wnn6-ds - wnn6-ds
port 27000 => flex-lm - FLEX LM (1-10)
port 27001 => flex-lm - FLEX LM (1-10)
port 27002 => flex-lm - FLEX LM (1-10)
port 27003 => flex-lm - FLEX LM (1-10)
port 27004 => flex-lm - FLEX LM (1-10)
port 27005 => flex-lm - FLEX LM (1-10)
port 27006 => flex-lm - FLEX LM (1-10)
port 27007 => flex-lm - FLEX LM (1-10)
port 27008 => flex-lm - FLEX LM (1-10)
port 27009 => flex-lm - FLEX LM (1-10)
port 27999 => tw-auth-key - TW Authentication/Key Distribution and
port 31337 => bo - Back Orifice TROJAN (or Netpatch TROJAN)
port 31338 => deepbo - Deep Back Orifice TROJAN
port 32768 => filenet-tms - Filenet TMS
port 32769 => filenet-rpc - Filenet RPC
port 32770 => filenet-nch - Filenet NCH
port 33434 => traceroute - traceroute use
port 36865 => kastenxpipe - KastenX Pipe
port 40421 => mp - Master's Paradise (hacked) TROJAN
port 40422 => mp - Master's Paradise (hacked) TROJAN
port 40423 => mp - Master's Paradise (hacked) TROJAN
port 40424 => mp - Master's Paradise (hacked) TROJAN
port 40425 => mp - Master's Paradise (hacked) TROJAN
port 43188 => reachout - reachout
port 44818 => rockwell-encap - Rockwell Encapsulation
port 45678 => eba - EBA PRISE
port 47557 => dbbrowse - Databeam Corporation
port 47624 => directplaysrvr - Direct Play Server
port 47806 => ap - ALC Protocol
port 47808 => bacnet - Building Automation and Control Networks
port 48000 => nimcontroller - Nimbus Controller
port 48001 => nimspooler - Nimbus Spooler
port 48002 => nimhub - Nimbus Hub
port 48003 => nimgtw - Nimbus Gateway
port 50505 => sokets - Sokets de Trois 2 TROJAN
port 54320 => bo2k - Back Orifice 2000 TROJAN
port 54321 => bo2k - Back Orifice 2000 TROJAN
port 65000 => devil - Devil TROJAN
-----------------------------------------------------------------------------------------------------
( 4.)
------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------
------------------------------------------SQL 101
------------------------------------------
------------------------------------------------------------------------------------------------------
1. ABOUT SQL
****************************
2. SQL INJECTION
*******************************
3. EXAMPLES OF SQL INJECTIONS
(@version,0x3a,databse)
(user,0x3a,pass)
+union+select+from
+union+select+pass
+union+select+SHOP
+union+select+admin
index.php?id=
trainers.php?id=
buy.php?category=
article.php?ID=
play_old.php?id=
declaration_more.php?decl_id=
pageid=
games.php?id=
page.php?file=
newsDetail.php?id=
gallery.php?id=
article.php?id=
show.php?id=
staff_id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
Stray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
newsone.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
product-item.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
aboutbook.php?id=
ogl_inet.php?ogl_id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
news.php?id=
index.php?id=
faq2.php?id=
show_an.php?id=
preview.php?id=
loadpsb.php?id=
opinions.php?id=
spr.php?id=
pages.php?id=
announce.php?id=
clanek.php4?id=
participant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
prod_detail.php?id=
viewphoto.php?id=
article.php?id=
person.php?id=
productinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gallery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
profile_view.php?id=
category.php?id=
publications.php?id=
fellows.php?id=
downloads_info.php?id=
prod_info.php?id=
shop.php?do=part&id=
productinfo.php?id=
collectionitem.php?id=
band_info.php?id=
product.php?id=
releases.php?id=
ray.php?id=
produit.php?id=
pop.php?id=
shopping.php?id=
productdetail.php?id=
post.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
page.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
product_ranges_view.php?ID=
shop_category.php?id=
transcript.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
top10.php?cat=
newsone.php?id=
event.php?id=
product-item.php?id=
sql.php?id=
aboutbook.php?id=
preview.php?id=
loadpsb.php?id=
pages.php?id=
material.php?id=
clanek.php4?id=
announce.php?id=
chappies.php?id=
read.php?id=
viewapp.php?id=
viewphoto.php?id=
rub.php?idr=
galeri_info.php?l=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
newsone.php?id=
aboutbook.php?id=
material.php?id=
opinions.php?id=
announce.php?id=
rub.php?idr=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
rubp.php?idr=
offer.php?idf=
art.php?idm=
title.php?id=
recruit_details.php?id=
index.php?cPath=
index.php?id=
trainers.php?id=
buy.php?category=
article.php?ID=
lay_old.php?id=
declaration_more.php?decl_id=
ageid=
games.php?id=
age.php?file=
newsDetail.php?id=
gallery.php?id=
article.php?id=
show.php?id=
staff_id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
tray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
newsone.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
roduct-item.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
aboutbook.php?id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
news.php?id=
index.php?id=
faq2.php?id=
show_an.php?id=
review.php?id=
loadpsb.php?id=
pinions.php?id=
spr.php?id=
ages.php?id=
announce.php?id=
clanek.php4?id=
articipant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
rod_detail.php?id=
viewphoto.php?id=
article.php?id=
erson.php?id=
roductinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gallery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
rofile_view.php?id=
category.php?id=
ublications.php?id=
fellows.php?id=
downloads_info.php?id=
rod_info.php?id=
shop.php?do=part&id=
roductinfo.php?id=
collectionitem.php?id=
band_info.php?id=
roduct.php?id=
releases.php?id=
ray.php?id=
roduit.php?id=
op.php?id=
shopping.php?id=
roductdetail.php?id=
ost.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
age.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
roduct_ranges_view.php?ID=
shop_category.php?id=
transcript.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
top10.php?cat=
newsone.php?id=
event.php?id=
roduct-item.php?id=
sql.php?id=
aboutbook.php?id=
review.php?id=
loadpsb.php?id=
ages.php?id=
material.php?id=
clanek.php4?id=
announce.php?id=
chappies.php?id=
read.php?id=
viewapp.php?id=
viewphoto.php?id=
rub.php?idr=
galeri_info.php?l=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
newsone.php?id=
aboutbook.php?id=
material.php?id=
pinions.php?id=
announce.php?id=
rub.php?idr=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
rubp.php?idr=
ffer.php?idf=
art.php?idm=
title.php?id=
index.php?id=
trainers.php?id=
buy.php?category=
article.php?ID=
lay_old.php?id=
declaration_more.php?decl_id=
ageid=
games.php?id=
age.php?file=
newsDetail.php?id=
gallery.php?id=
article.php?id=
show.php?id=
staff_id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
tray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
newsone.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
roduct-item.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
aboutbook.php?id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
news.php?id=
index.php?id=
faq2.php?id=
show_an.php?id=
review.php?id=
loadpsb.php?id=
pinions.php?id=
spr.php?id=
ages.php?id=
announce.php?id=
clanek.php4?id=
articipant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
rod_detail.php?id=
viewphoto.php?id=
article.php?id=
erson.php?id=
roductinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gallery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
rofile_view.php?id=
category.php?id=
ublications.php?id=
fellows.php?id=
downloads_info.php?id=
rod_info.php?id=
shop.php?do=part&id=
roductinfo.php?id=
collectionitem.php?id=
band_info.php?id=
roduct.php?id=
releases.php?id=
ray.php?id=
roduit.php?id=
op.php?id=
shopping.php?id=
roductdetail.php?id=
ost.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
age.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
roduct_ranges_view.php?ID=
shop_category.php?id=
tran******.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
top10.php?cat=
newsone.php?id=
event.php?id=
roduct-item.php?id=
sql.php?id=
aboutbook.php?id=
review.php?id=
loadpsb.php?id=
ages.php?id=
material.php?id=
clanek.php4?id=
announce.php?id=
chappies.php?id=
read.php?id=
viewapp.php?id=
viewphoto.php?id=
rub.php?idr=
galeri_info.php?l=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
newsone.php?id=
aboutbook.php?id=
material.php?id=
pinions.php?id=
announce.php?id=
rub.php?idr=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
rubp.php?idr=
ffer.php?idf=
art.php?idm=
title.php?id=
inurlinfo.php?id=
pro.php?id=
index.php?id=
trainers.php?id=
buy.php?category=
article.php?ID=
lay_old.php?id=
declaration_more.php?decl_id=
ageid=
games.php?id=
age.php?file=
newsDetail.php?id=
gallery.php?id=
article.php?id=
show.php?id=
staff_id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
tray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
newsone.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
roduct-item.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
aboutbook.php?id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
news.php?id=
index.php?id=
faq2.php?id=
show_an.php?id=
review.php?id=
loadpsb.php?id=
pinions.php?id=
spr.php?id=
ages.php?id=
announce.php?id=
clanek.php4?id=
articipant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
rod_detail.php?id=
viewphoto.php?id=
article.php?id=
erson.php?id=
roductinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gallery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
rofile_view.php?id=
category.php?id=
ublications.php?id=
fellows.php?id=
downloads_info.php?id=
rod_info.php?id=
shop.php?do=part&id=
roductinfo.php?id=
collectionitem.php?id=
band_info.php?id=
roduct.php?id=
releases.php?id=
ray.php?id=
roduit.php?id=
op.php?id=
shopping.php?id=
roductdetail.php?id=
ost.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
age.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
roduct_ranges_view.php?ID=
shop_category.php?id=
tran******.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
top10.php?cat=
newsone.php?id=
event.php?id=
roduct-item.php?id=
sql.php?id=
aboutbook.php?id=
review.php?id=
loadpsb.php?id=
ages.php?id=
material.php?id=
clanek.php4?id=
announce.php?id=
chappies.php?id=
read.php?id=
viewapp.php?id=
viewphoto.php?id=
rub.php?idr=
galeri_info.php?l=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
newsone.php?id=
aboutbook.php?id=
material.php?id=
pinions.php?id=
announce.php?id=
rub.php?idr=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
rubp.php?idr=
ffer.php?idf=
art.php?idm=
title.php?id=
shop+php?id+sitefr
admin.asp
login/admin.asp
admin/login.asp
adminlogin.asp
adminhome.asp
admin_login.asp
administratorlogin.asp
login/administrator.asp
administrator_login.asp
id=&intextWarningmysql_fetch_assoc()
id=&intextWarningmysql_fetch_array()
id=&intextWarningmysql_num_rows()
id=&intextWarningsession_start()
id=&intextWarninggetimagesize()
id=&intextWarningis_writable()
id=&intextWarninggetimagesize()
id=&intextWarningUnknown()
id=&intextWarningsession_start()
id=&intextWarningmysql_result()
id=&intextWarningpg_exec()
id=&intextWarningmysql_result()
id=&intextWarningmysql_num_rows()
id=&intextWarningmysql_query()
id=&intextWarningarray_merge()
id=&intextWarningpreg_match()
id=&intextWarningilesize()
id=&intextWarningfilesize()
id=&intextWarningrequire()
index.php?id=
trainers.php?id=
login.asp
indexof/admin/login.asp
buy.php?category=
article.php?ID=
play_old.php?id=
declaration_more.php?decl_id=
pageid=
games.php?id=
page.php?file=
newsDetail.php?id=
gallery.php?id=
article.php?id=
show.php?id=
staff_id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
Stray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
newsone.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
product-item.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
aboutbook.php?id=
ogl_inet.php?ogl_id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
news.php?id=
index.php?id=
faq2.php?id=
show_an.php?id=
preview.php?id=
loadpsb.php?id=
opinions.php?id=
spr.php?id=
pages.php?id=
announce.php?id=
clanek.php4?id=
participant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
prod_detail.php?id=
viewphoto.php?id=
article.php?id=
person.php?id=
productinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gallery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
profile_view.php?id=
category.php?id=
publications.php?id=
fellows.php?id=
downloads_info.php?id=
prod_info.php?id=
shop.php?do=part&id=
productinfo.php?id=
collectionitem.php?id=
band_info.php?id=
product.php?id=
releases.php?id=
ray.php?id=
produit.php?id=
produit.php?id=+sitefr
pop.php?id=
shopping.php?id=
productdetail.php?id=
post.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
page.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
product_ranges_view.php?ID=
shop_category.php?id=
transcript.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
top10.php?cat=
newsone.php?id=
event.php?id=
product-item.php?id=
sql.php?id=
aboutbook.php?id=
preview.php?id=
loadpsb.php?id=
pages.php?id=
material.php?id=
clanek.php4?id=
announce.php?id=
chappies.php?id=
read.php?id=
viewapp.php?id=
viewphoto.php?id=
rub.php?idr=
galeri_info.php?l=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
newsone.php?id=
aboutbook.php?id=
material.php?id=
opinions.php?id=
announce.php?id=
rub.php?idr=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
rubp.php?idr=
offer.php?idf=
art.php?idm=
title.php?id=
index.php?id=
trainers.php?id=
buy.php?category=
article.php?ID=
lay_old.php?id=
declaration_more.php?decl_id=
ageid=
games.php?id=
age.php?file=
newsDetail.php?id=
gallery.php?id=
article.php?id=
show.php?id=
staff_id=
newsitem.php?num=
readnews.php?id=
top10.php?cat=
historialeer.php?num=
reagir.php?num=
tray-Questions-View.php?num=
forum_bds.php?num=
game.php?id=
view_product.php?id=
newsone.php?id=
sw_comment.php?id=
news.php?id=
avd_start.php?avd=
event.php?id=
roduct-item.php?id=
sql.php?id=
news_view.php?id=
select_biblio.php?id=
humor.php?id=
aboutbook.php?id=
fiche_spectacle.php?id=
communique_detail.php?id=
sem.php3?id=
kategorie.php4?id=
news.php?id=
index.php?id=
faq2.php?id=
show_an.php?id=
review.php?id=
loadpsb.php?id=
pinions.php?id=
spr.php?id=
ages.php?id=
announce.php?id=
clanek.php4?id=
articipant.php?id=
download.php?id=
main.php?id=
review.php?id=
chappies.php?id=
read.php?id=
rod_detail.php?id=
viewphoto.php?id=
article.php?id=
erson.php?id=
roductinfo.php?id=
showimg.php?id=
view.php?id=
website.php?id=
hosting_info.php?id=
gallery.php?id=
rub.php?idr=
view_faq.php?id=
artikelinfo.php?id=
detail.php?ID=
index.php?=
rofile_view.php?id=
category.php?id=
ublications.php?id=
fellows.php?id=
downloads_info.php?id=
rod_info.php?id=
shop.php?do=part&id=
roductinfo.php?id=
collectionitem.php?id=
band_info.php?id=
roduct.php?id=
releases.php?id=
ray.php?id=
roduit.php?id=
op.php?id=
shopping.php?id=
roductdetail.php?id=
ost.php?id=
viewshowdetail.php?id=
clubpage.php?id=
memberInfo.php?id=
section.php?id=
theme.php?id=
age.php?id=
shredder-categories.php?id=
tradeCategory.php?id=
roduct_ranges_view.php?ID=
shop_category.php?id=
transcript.php?id=
channel_id=
item_id=
newsid=
trainers.php?id=
news-full.php?id=
news_display.php?getid=
index2.php?option=
readnews.php?id=
top10.php?cat=
newsone.php?id=
event.php?id=
roduct-item.php?id=
sql.php?id=
aboutbook.php?id=
review.php?id=
loadpsb.php?id=
ages.php?id=
material.php?id=
clanek.php4?id=
announce.php?id=
chappies.php?id=
read.php?id=
viewapp.php?id=
viewphoto.php?id=
rub.php?idr=
galeri_info.php?l=
review.php?id=
iniziativa.php?in=
curriculum.php?id=
labels.php?id=
story.php?id=
look.php?ID=
newsone.php?id=
aboutbook.php?id=
material.php?id=
pinions.php?id=
announce.php?id=
rub.php?idr=
galeri_info.php?l=
tekst.php?idt=
newscat.php?id=
newsticker_info.php?idn=
rubrika.php?idr=
rubp.php?idr=
ffer.php?idf=
art.php?idm=
title.php?id=
filetypeincintextmysql_connect
filetypeincmysql_connectORmysql_pconnect
filetypesqlinsertinto{pass|passwd|password}
filetypedql{valuesmd5|values|password
filetypesqlpassword
.asp?bookID=
.asp?cart=
.asp?cartID=
.asp?catalogid=
.asp?category_list=
.asp?CategoryID=
.asp?catID=
.asp?cid=
.asp?code_no=
.asp?code=
.asp?designer=
.asp?framecode=
.asp?id=
.asp?idcategory=
.asp?idproduct=
.asp?intCatalogID=
.asp?intProdId=
.asp?item_id=
.asp?item=
.asp?itemID=
.asp?maingroup=
.asp?misc=
.asp?newsid=
.asp?order_id=
.asp?p=
.asp?pid=
.asp?ProdID=
.asp?product_id=
.asp?product=
.asp?productid=
.asp?showtopic=
.asp?Sku=
.asp?storeid=
.asp?style_id=
.asp?StyleID=
.asp?userID=
about.asp?cartID=
accinfo.asp?cartId=
acclogin.asp?cartID=
add.asp?bookid=
add_cart.asp?num=
addcart.asp?
addItem.asp
add-to-cart.asp?ID=
addToCart.asp?idProduct=
addtomylist.asp?ProdId=
adminEditProductFields.asp?intProdID=
advSearch_h.asp?idCategory=
affiliate.asp?ID=
affiliate-agreement.cfm?storeid=
affiliates.asp?id=
ancillary.asp?ID=
archive.asp?id=
article.asp?id=
aspx?PageID
basket.asp?id=
Book.asp?bookID=
book_list.asp?bookid=
book_view.asp?bookid=
BookDetails.asp?ID=
browse.asp?catid=
browse_item_details.asp
Browse_Item_Details.asp?Store_Id=
buy.asp?
buy.asp?bookid=
bycategory.asp?id=
cardinfo.asp?card=
cart.asp?action=
cart.asp?cart_id=
cart.asp?id=
cart_additem.asp?id=
cart_validate.asp?id=
cartadd.asp?id=
cat.asp?iCat=
catalog.asp
catalog.asp?CatalogID=
catalog_item.asp?ID=
catalog_main.asp?catid=
category.asp
category.asp?catid=
category_list.asp?id=
categorydisplay.asp?catid=
checkout.asp?cartid=
checkout.asp?UserID=
checkout_confirmed.asp?order_id=
checkout1.asp?cartid=
comersus_listCategoriesAndProducts.asp?idCategory=
comersus_optEmailToFriendForm.asp?idProduct=
comersus_optReviewReadExec.asp?idProduct=
comersus_viewItem.asp?idProduct=
comments_form.asp?ID=
contact.asp?cartId=
content.asp?id=
customerService.asp?TextID1=
default.asp?catID=
description.asp?bookid=
details.asp?BookID=
details.asp?Press_Release_ID=
details.asp?Product_ID=
details.asp?Service_ID=
display_item.asp?id=
displayproducts.asp
downloadTrial.asp?intProdID=
emailproduct.asp?itemid=
emailToFriend.asp?idProduct=
events.asp?ID=
faq.asp?cartID=
faq_list.asp?id=
faqs.asp?id=
feedback.asp?title=
freedownload.asp?bookid=
fullDisplay.asp?item=
getbook.asp?bookid=
GetItems.asp?itemid=
giftDetail.asp?id=
help.asp?CartId=
home.asp?id=
index.asp?cart=
index.asp?cartID=
index.asp?ID=
info.asp?ID=
item.asp?eid=
item.asp?item_id=
item.asp?itemid=
item.asp?model=
item.asp?prodtype=
item.asp?shopcd=
item_details.asp?catid=
item_list.asp?maingroup
item_show.asp?code_no=
itemDesc.asp?CartId=
itemdetail.asp?item=
itemdetails.asp?catalogid=
learnmore.asp?cartID=
links.asp?catid=
list.asp?bookid=
List.asp?CatID=
listcategoriesandproducts.asp?idCategory=
modline.asp?id=
myaccount.asp?catid=
news.asp?id=
order.asp?BookID=
order.asp?id=
order.asp?item_ID=
OrderForm.asp?Cart=
page.asp?PartID=
payment.asp?CartID=
pdetail.asp?item_id=
powersearch.asp?CartId=
price.asp
privacy.asp?cartID=
prodbycat.asp?intCatalogID=
prodetails.asp?prodid=
prodlist.asp?catid=
product.asp?bookID=
product.asp?intProdID=
product_info.asp?item_id=
productDetails.asp?idProduct=
productDisplay.asp
productinfo.asp?item=
productlist.asp?ViewType=Category&CategoryID=
productpage.asp
products.asp?ID=
products.asp?keyword=
products_category.asp?CategoryID=
products_detail.asp?CategoryID=
productsByCategory.asp?intCatalogID=
prodView.asp?idProduct=
promo.asp?id=
promotion.asp?catid=
pview.asp?Item=
resellers.asp?idCategory=
results.asp?cat=
savecart.asp?CartId=
search.asp?CartID=
searchcat.asp?search_id=
Select_Item.asp?id=
Services.asp?ID=
shippinginfo.asp?CartId=
shop.asp?a=
shop.asp?action=
shop.asp?bookid=
shop.asp?cartID=
shop_details.asp?prodid=
shopaddtocart.asp
shopaddtocart.asp?catalogid=
shopbasket.asp?bookid=
shopbycategory.asp?catid=
shopcart.asp?title=
shopcreatorder.asp
shopcurrency.asp?cid=
shopdc.asp?bookid=
shopdisplaycategories.asp
shopdisplayproduct.asp?catalogid=
shopdisplayproducts.asp
shopexd.asp
shopexd.asp?catalogid=
shopping_basket.asp?cartID=
shopprojectlogin.asp
shopquery.asp?catalogid=
shopremoveitem.asp?cartid=
shopreviewadd.asp?id=
shopreviewlist.asp?id=
ShopSearch.asp?CategoryID=
shoptellafriend.asp?id=
shopthanks.asp
shopwelcome.asp?title=
show_item.asp?id=
show_item_details.asp?item_id=
showbook.asp?bookid=
showStore.asp?catID=
shprodde.asp?SKU=
specials.asp?id=
store.asp?id=
store_bycat.asp?id=
store_listing.asp?id=
Store_ViewProducts.asp?Cat=
store-details.asp?id=
storefront.asp?id=
storefronts.asp?title=
storeitem.asp?item=
Store********************************************* *******************.asp?ID=
subcategories.asp?id=
tek9.asp?
template.asp?Action=Item&pid=
topic.asp?ID=
tuangou.asp?bookid=
type.asp?iType=
updatebasket.asp?bookid=
updates.asp?ID=
view.asp?cid=
view_cart.asp?title=
view_detail.asp?ID=
viewcart.asp?CartId=
viewCart.asp?userID=
viewCat_h.asp?idCategory=
viewevent.asp?EventID=
viewitem.asp?recor=
viewPrd.asp?idcategory=
ViewProduct.asp?misc=
voteList.asp?item_ID=
whatsnew.asp?idCategory=
WsAncillary.asp?ID=
WsPages.asp?ID=
/access/login.php?path_to_root=
/account.php?action=
/accounts.php?command=
/active/components/xmlrpc/client.php?c[components]=
/addmedia.php?factsfile[$********]=
/admin.php?cal_dir=
/admin.php?page=
/admin/auth.php?xcart_dir=
/admin/doeditconfig.php?thispath=../includes&config[path]=
/admin/inc/change_action.php?format_menue=
/admin/include/header.php?repertoire=
/admincp/auth/checklogin.php?cfgProgDir=
/administrator/components/com_a6mambocredits/admin.a6mambocredits.php?mosConfig_live_site=
/administrator/components/com_comprofiler/plugin.class.php?mosConfig_absolute_path=
/administrator/components/com_cropimage/admin.cropcanvas.php?cropimagedir=
/administrator/components/com_jcs/jcs.function.php?mosConfig_absolute_path=
/administrator/components/com_jcs/view/register.php?mosConfig_absolute_path=
/administrator/components/com_joom12pic/admin.joom12pic.php?mosConfig_live_site=
/administrator/components/com_joomlaradiov5/admin.joomlaradiov5.php?mosConfig_live_site=
/administrator/components/com_linkdirectory/toolbar.linkdirectory.html.php?mosConfig_absolute_ path=
/administrator/components/com_mgm/help.mgm.php?mosConfig_absolute_path=
/administrator/components/com_peoplebook/param.peoplebook.php?mosConfig_absolute_path=
/administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path=
/administrator/components/com_***ring/admin.***ring.docs.php?component_dir=
/afb-3-beta-2007-08-28/_includes/settings.inc.php?approot=
/agendax/addevent.inc.php?agendax_path=
/akocomments.php?mosConfig_absolute_path=
/al_initialize.php?alpath=
/album_portal.php?phpbb_root_path=
/all*/newbb/print.php?forum=*topic_id=*
/all*/newbb_plus/*=
/all*/news/archive.php?op=*year=*month=*
/all*/tsep/include/colorswitch.php?tsep_config[absPath]=*
/all.php?Page_ID=
/all.php?S=
/all.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=
/all.php?a=
/all.php?abrir=
/all.php?act=
/all.php?action=
/all.php?ad=
/all.php?archive=
/all.php?area=
/all.php?article=
/all.php?b=
/all.php?back=
/all.php?base=
/all.php?basedir=
/all.php?bbs=
/all.php?board_no=
/all.php?****=
/all.php?c=
/all.php?cal_dir=
/all.php?cat=
/all.php?category=
/all.php?choice=
/all.php?class=
/all.php?club_id=
/all.php?cod.tipo=
/all.php?cod=
/all.php?conf=
/all.php?configFile=
/all.php?cont=
/all.php?corpo=
/all.php?cvsroot=
/all.php?d=
/all.php?da=
/all.php?date=
/all.php?debug=
/all.php?debut=
/all.php?default=
/all.php?destino=
/all.php?dir=
/all.php?display=
/all.php?east=
/all.php?f=
/all.php?f_content=
/all.php?file=
/all.php?file_id=
/all.php?filepath=
/all.php?flash=
/all.php?folder=
/all.php?for=
/all.php?form=
/all.php?formatword=
/all.php?from=
/all.php?funcao=
/all.php?function=
/all.php?g=
/all.php?get=
/all.php?go=
/all.php?gorumDir=
/all.php?goto=
/all.php?h=
/all.php?headline=
/all.php?i=
/all.php?inc=
/all.php?include=
/all.php?includedir=
/all.php?inter=
/all.php?item_id=
/all.php?itemid=
/all.php?j=
/all.php?join=
/all.php?jojo=
/all.php?l=
/all.php?la=
/all.php?lan=
/all.php?lang=
/all.php?lest=
/all.php?link=
/all.php?load=
/all.php?loc=
/all.php?m=
/all.php?main=
/all.php?meio.php=
/all.php?meio=
/all.php?menu=
/all.php?menuID=
/all.php?mep=
/all.php?mid=
/all.php?month=
/all.php?mostra=
/all.php?my=
/all.php?n=
/all.php?****=
/all.php?nav=
/all.php?new=
/all.php?news=
/all.php?next=
/all.php?nextpage=
/all.php?o=
/all.php?op=
/all.php?open=
/all.php?option=
/all.php?origem=
/all.php?p=
/all.php?pageurl=
/all.php?para=
/all.php?part=
/all.php?perm=
/all.php?pg=
/all.php?pid=
/all.php?place=
/all.php?play=
/all.php?plugin=
/all.php?pm_path=
/all.php?poll****=
/all.php?post=
/all.php?pr=
/all.php?prefix=
/all.php?prefixo=
/all.php?q=
/all.php?redirect=
/all.php?ref=
/all.php?refid=
/all.php?regionId=
/all.php?release=
/all.php?release_id=
/all.php?return=
/all.php?root=
/all.php?searchcode_id=
/all.php?sec=
/all.php?secao=
/all.php?sect=
/all.php?sel=
/all.php?server=
/all.php?servico=
/all.php?sg=
/all.php?shard=
/all.php?show=
/all.php?sid=
/all.php?site=
/all.php?sourcedir=
/all.php?start=
/all.php?storyid=
/all.php?str=
/all.php?subd=
/all.php?subdir=
/all.php?subject=
/all.php?sufixo=
/all.php?systempath=
/all.php?t=
/all.php?task=
/all.php?teste=
/all.php?theme_dir=
/all.php?thread_id=
/all.php?tid=
/all.php?title=
/all.php?to=
/all.php?topic_id=
/all.php?type=
/all.php?u=
/all.php?url=
/all.php?urlFrom=
/all.php?v=
/all.php?var=
/all.php?vi=
/all.php?view=
/all.php?visual=
/all.php?wPage=
/all.php?y=
/all.php?z=
/all.php?zo=
/all/include/init.inc.php?CPG_M_DIR=
/all/includes/mx_functions_ch.php?phpbb_root_path=
/all/modules/AllMyGuests/signin.php?_AMGconfig[cfg_serverpath]=
/allPackages.php?sourcedir=
/all_functions.php?prefix
/all_functions.php?prefix=
/alladdedit.php?root_dir=
/alladdevent.inc.php?agendax_path=
/alladmin.php?cal_dir=
/allaffich.php?base=
/allalbum_portal.php?phpbb_root_path=
/allcom_extended_registration
/allcontacts.php?cal_dir=
/allconvert-date.php?cal_dir=
/alldefault.php?page=
/alldefault/theme.php?THEME_DIR=
/alldisplayCategory.php?basepath=
/alleditor.php?root=
/allexibir.php?abre=
/allexibir.php?get=
/allexibir.php?lang=
/allexibir.php?p=
/allexibir.php?page=
/allexpanded.php?conf=
/allgrademade/index.php?page=
/allheader.php?systempath=
/allinclude.php?gorumDir=
/allindex.php?a=
/allindex.php?acao=
/allindex.php?action=
/allindex.php?b=
/allindex.php?c=
/allindex.php?cal=
/allindex.php?configFile=
/allindex.php?d=
/allindex.php?directfile=
/allindex.php?e=
/allindex.php?f=
/allindex.php?funcion=
/allindex.php?g=
/allindex.php?gorumdir=
/allindex.php?h=
/allindex.php?i=
/allindex.php?include=
/allindex.php?ir=
/allindex.php?j=
/allindex.php?k=
/allindex.php?l=
/allindex.php?ll=
/allindex.php?lng=../../include/main.inc&G_PATH=
/allindex.php?lnk=
/allindex.php?loc=
/allindex.php?lv1=
/allindex.php?m=
/allindex.php?meio.php=
/allindex.php?middle=
/allindex.php?n=
/allindex.php?o=
/allindex.php?open=
/allindex.php?p=
/allindex.php?page=
/allindex.php?pageurl=
/allindex.php?path=
/allindex.php?pg=
/allindex.php?prefix=
/allindex.php?q=
/allindex.php?r=
/allindex.php?root_PATH=
/allindex.php?s=
/allindex.php?secao=
/allindex.php?seite=
/allindex.php?server=
/allindex.php?sub2=
/allindex.php?sub=
/allindex.php?t=
/allindex.php?theme=
/allindex.php?u=
/allindex.php?v=
/allindex.php?visualizar=
/allindex.php?x=
/allindex.php?y=
/allindex.php?z=
/allindex2.php?a=
/allindex2.php?acao=
/allindex2.php?b=
/allindex2.php?c=
/allindex2.php?cal=
/allindex2.php?cont=
/allindex2.php?content=
/allindex2.php?d=
/allindex2.php?directfile=
/allindex2.php?e=
/allindex2.php?f=
/allindex2.php?funcion=
/allindex2.php?g=
/allindex2.php?gorumdir=
/allindex2.php?h=
/allindex2.php?i=
/allindex2.php?j=
/allindex2.php?k=
/allindex2.php?l=
/allindex2.php?lang=
/allindex2.php?********=
/allindex2.php?ll=
/allindex2.php?lnk=
/allindex2.php?lv1=
/allindex2.php?m=
/allindex2.php?n=
/allindex2.php?o=
/allindex2.php?p=
/allindex2.php?pag=
/allindex2.php?path=
/allindex2.php?pg=
/allindex2.php?prefix=
/allindex2.php?q=
/allindex2.php?r=
/allindex2.php?root_PATH=
/allindex2.php?s=
/allindex2.php?server=
/allindex2.php?sub2=
/allindex2.php?sub=
/allindex2.php?t=
/allindex2.php?theme=
/allindex2.php?u=
/allindex2.php?v=
/allindex2.php?x=
/allindex2.php?y=
/allindex2.php?z=
/allindex2php?aa=
/allindex3php?aa=
/allindex5.php?****=
/allindex5.php?cat=
/allindex5.php?configFile=
/allindex5.php?cont=
/allindex5.php?content=
/allindex5.php?do=
/allindex5.php?inc=
/allindex5.php?include=
/allindex5.php?lang=
/allindex5.php?********=
/allindex5.php?lv1=
/allindex5.php?m=
/allindex5.php?main=
/allindex5.php?open=
/allindex5.php?p=
/allindex5.php?pag=
/allindex5.php?page=
/allindex5.php?pagina=
/allindex5.php?pg=
/allindex5.php?root=
/allindex5.php?site=
/allindex5.php?visualizar=
/allindex5.php?x=
/allindex_table.php?root_dir=
/allinit.inc.php?CPG_M_DIR=
/allinit.php?HTTP_POST_VARS=
/allinitdb.php?absolute_path=
/alllib.inc.php?pm_path=
/alllib.php?root=
/allmain.php?page=
/allmain.php?x=
/allmainfile.php?MAIN_PATH=
/allmod_mainmenu.php?mosConfig_absolute_path=
/allmodule_db.php?pivot_path=
/allnew-visitor.inc.php?lvc_include_dir=
/allphpshop/index.php?base_dir=
/allpipe.php?HCL_path=
/allsecure_img_render.php?p=
/allstart_lobby.php?CONFIG[MWCHAT_Libs]=
/allstep_one.php?server_inc=
/allstep_one_tables.php?server_inc=
/alltemplate.php?pagina=
/alltheme.php?THEME_DIR=
/allupgrade_album.php?GALLERY_BASEDIR=
/allview.php?root_dir=
/allviewgantt.php?root_dir=
/allvw_files.php?root_dir=
/allwrite.php?dir=
/amember/plugins/payment/linkpoint/linkpoint.inc.php?config[root_dir]=
/announcements.php?phpraid_dir=
/app/***editor/login.cgi?user****=&command=simple&do=edit&passwor d=&file=
/apps/apps.php?app=
/arg.php?arg=
/args.php?arg=
/arquivo.php?data=
/article.php?sid=
/articles.cgi?a=34&t=
/atom.php5?page=
/auktion.pl?menue=
/auto.php?inc=
/auto.php?page=
/avatar.php?page=
/base.php?*[*]*=
/base.php?abre=
/base.php?adresa=
/base.php?base_dir=
/base.php?basepath=
/base.php?****=
/base.php?category=
/base.php?chapter=
/base.php?choix=
/base.php?cont=
/base.php?disp=
/base.php?doshow=
/base.php?ev=
/base.php?eval=
/base.php?f1=
/base.php?filepath=
/base.php?home=
/base.php?id=
/base.php?incl=
/base.php?include=
/base.php?ir=
/base.php?itemnav=
/base.php?k=
/base.php?ki=
/base.php?l=
/base.php?lang=
/base.php?link=
/base.php?loc=
/base.php?mid=
/base.php?middle=
/base.php?middlePart=
/base.php?module=
/base.php?****=
/base.php?numero=
/base.php?oldal=
/base.php?opcion=
/base.php?pa=
/base.php?pag=
/base.php?page***=
/base.php?panel=
/base.php?path=
/base.php?phpbb_root_path=
/base.php?play=
/base.php?p****=
/base.php?rub=
/base.php?seccion=
/base.php?second=
/base.php?seite=
/base.php?sekce=
/base.php?sivu=
/base.php?str=
/base.php?subject=
/base.php?t=
/base.php?****o=
/base.php?to=
/base.php?v=
/base.php?var=
/base.php?w=
/bb_usage_stats/include/bb_usage_stats.php?phpbb_root_path=
/beacon/********/1/splash.lang.php?********Path=
/becommunity/community/index.php?pageurl=
/big.php?pathtotemplate=
/biznews.cgi?a=33&t=
/blank.php?OpenPage=
/blank.php?abre=
/blank.php?action=
/blank.php?base_dir=
/blank.php?basepath=
/blank.php?****=
/blank.php?category=
/blank.php?channel=
/blank.php?corpo=
/blank.php?destino=
/blank.php?dir=
/blank.php?filepath=
/blank.php?get=
/blank.php?goFile=
/blank.php?goto=
/blank.php?h=
/blank.php?header=
/blank.php?id=
/blank.php?in=
/blank.php?incl=
/blank.php?ir=
/blank.php?itemnav=
/blank.php?j=
/blank.php?ki=
/blank.php?lang=
/blank.php?left=
/blank.php?link=
/blank.php?loader=
/blank.php?menu=
/blank.php?mod=
/blank.php?****=
/blank.php?o=
/blank.php?oldal=
/blank.php?open=
/blank.php?pa=
/blank.php?page=
/blank.php?pagina=
/blank.php?panel=
/blank.php?path=
/blank.php?phpbb_root_path=
/blank.php?p****=
/blank.php?poll****=
/blank.php?pr=
/blank.php?pre=
/blank.php?pref=
/blank.php?qry=
/blank.php?read=
/blank.php?ref=
/blank.php?rub=
/blank.php?section=
/blank.php?sivu=
/blank.php?sp=
/blank.php?strona=
/blank.php?subject=
/blank.php?t=
/blank.php?url=
/blank.php?var=
/blank.php?where=
/blank.php?xlink=
/blank.php?z=
/board.php?see=
/book.php5?page=
/calendar.pl?command=login&fromTemplate=
/canal.php?meio=
/ccbill/whereami.cgi?g=ls
/cgi-bin/1/cmd.cgi
/cgi-bin/acart/acart.pl?&page=
/cgi-bin/awstats.pl?update=1&logfile=
/cgi-bin/awstats/awstats.pl?configdir
/cgi-bin/bbs/read.cgi?file=
/cgi-bin/bp/bp-lib.pl?g=
/cgi-bin/hinsts.pl?
/cgi-bin/ikonboard.cgi
/cgi-bin/index.cgi?page=
/cgi-bin/jammail.pl?job=showoldmail&mail=
/cgi-bin/probe.cgi?olddat=
/cgi-bin/quikstore.cgi?category=
/cgi-bin/telnet.cgi
/cgi-bin/ubb/ubb.cgi?g=
/cgi-sys/guestbook.cgi?user=cpanel&template=
/claroline/inc/claro_init_header.inc.php?includePath=
/classes/core/********.php?rootdir=
/cmd.php?arg=
/common/func.php?CommonAbsDir=
/components/com_artlinks/artlinks.dispnew.php?mosConfig_absolute_path=
/components/com_colorlab/admin.color.php?mosConfig_live_site=
/components/com_extcalendar/admin_events.php?CONFIG_EXT[********S_DIR]=
/components/com_extended_registration/registration_detailed.inc.php?mosConfig_absolute_p ath=
/components/com_forum/download.php?phpbb_root_path=
/components/com_galleria/galleria.html.php?mosConfig_absolute_path=
/components/com_mp3_allopass/allopass.php?mosConfig_live_site=
/components/com_mtree/Savant2/Savant2_Plugin_stylesheet.php?mosConfig_absolute_p ath=
/components/com_performs/performs.php?mosConfig_absolute_path=
/components/com_phpshop/toolbar.phpshop.html.php?mosConfig_absolute_path=
/components/com_rsgallery/rsgallery.html.php?mosConfig_absolute_path=
/components/com_simpleboard/image_upload.php?sbp=
/config.inc.php?_path=
/config.php?fpath=
/config.php?path_to_root=
/config.php?xcart_dir=
/contacts.php?cal_dir=
/contenido.php?sec=
/content.php?inc=
/content.php?page=
/content.php?seite=
/content/article.php?ide=
/content/modify_go.php?pwfile=
/contrib/mx_glance_sdesc.php?mx_root_path=
/convert-date.php?cal_dir=
/convert/mvcw.php?step=1&vwar_root=
/convert/mvcw.php?vwar_root=
/coppercop/theme.php?THEME_DIR=
/csv_db/csv_db.cgi?fil
/customer/product.php?xcart_dir=
/cyberfolio/portfolio/msg/view.php?av=
/data/compatible.php?module_****=
/database.php?mosConfig_absolute_path=
/db.php?path_local=
/dbase.php?action=
/dbmodules/DB_adodb.class.php?PHPOF_INCLUDE_PATH=
/default.php?*root*=
/default.php?abre=
/default.php?arquivo=
/default.php?base_dir=
/default.php?basepath=
/default.php?****=
/default.php?channel=
/default.php?chapter=
/default.php?choix=
/default.php?cmd=
/default.php?cont=
/default.php?destino=
/default.php?e=
/default.php?eval=
/default.php?f=
/default.php?goto=
/default.php?header=
/default.php?id=
/default.php?inc=
/default.php?incl=
/default.php?include=
/default.php?index=
/default.php?ir=
/default.php?itemnav=
/default.php?k=
/default.php?ki=
/default.php?l=
/default.php?left=
/default.php?load=
/default.php?loader=
/default.php?loc=
/default.php?m=
/default.php?menu=
/default.php?menue=
/default.php?mid=
/default.php?mod=
/default.php?module=
/default.php?n=
/default.php?****=
/default.php?nivel=
/default.php?oldal=
/default.php?opcion=
/default.php?option=
/default.php?p=
/default.php?pa=
/default.php?pag=
/default.php?page=
/default.php?page***=
/default.php?panel=
/default.php?param=
/default.php?play=
/default.php?pr=
/default.php?pre=
/default.php?read=
/default.php?ref=
/default.php?rub=
/default.php?secao=
/default.php?secc=
/default.php?seccion=
/default.php?seite=
/default.php?showpage=
/default.php?sivu=
/default.php?sp=
/default.php?str=
/default.php?strona=
/default.php?t=
/default.php?thispage=
/default.php?tipo=
/default.php?to=
/default.php?type=
/default.php?v=
/default.php?var=
/default.php?vis=
/default.php?x=
/default.php?y=
/define.php?term=
/deportes.cgi?a=latest&t=
/detail.php?prod=
/details.php?loc=
/dfd_cart/app.lib/product.control/core.php/customer.area/customer.browse.list.php?set_depth=
/dfd_cart/app.lib/product.control/core.php/customer.area/customer.browse.search.php?set_depth=
/dfd_cart/app.lib/product.control/core.php/product.control.config.php?set_depth=
/direct.php?loc=
/directions.php?loc=
/display.php?f=
/display.php?file=
/display.php?l=
/display.php?lang=
/display.php?ln=
/display.php?p=
/display.php?pag=
/display.php?page=
/display.php?page=&lang=
/display.php?pg=
/display.php?s=
/display.php?table=
/dotproject/modules/files/index_table.php?root_dir=
/dotproject/modules/projects/addedit.php?root_dir=
/dotproject/modules/projects/view.php?root_dir=
/dotproject/modules/projects/vw_files.php?root_dir=
/dotproject/modules/tasks/addedit.php?root_dir=
/dotproject/modules/tasks/viewgantt.php?root_dir=
/down*.php?OpenPage=
/down*.php?action=
/down*.php?addr=
/down*.php?channel=
/down*.php?choix=
/down*.php?cmd=
/down*.php?corpo=
/down*.php?disp=
/down*.php?doshow=
/down*.php?ev=
/down*.php?filepath=
/down*.php?goFile=
/down*.php?home=
/down*.php?in=
/down*.php?inc=
/down*.php?incl=
/down*.php?include=
/down*.php?ir=
/down*.php?lang=
/down*.php?left=
/down*.php?nivel=
/down*.php?oldal=
/down*.php?open=
/down*.php?pa=
checkout.asp?UserID=
checkout.asp?cartid=
checkout.cfm?UserID=
checkout.cfm?cartid=
checkout.php?UserID=
checkout.php?cartid=
checkout1.asp?cartid=
checkout1.cfm?cartid=
checkout1.php?cartid=
checkout_confirmed.asp?order_id=
checkout_confirmed.cfm?order_id=
checkout_confirmed.php?order_id=
db/CART/product_details.asp?product_id=
db/CART/product_details.php?product_id=
eshop.php?id=
estore/products.php?cat=
garden_equipment/Fruit-Cage/product.asp?pr=
garden_equipment/Fruit-Cage/product.php?pr=
garden_equipment/pest-weed-control/product.asp?pr=
garden_equipment/pest-weed-control/product.php?pr=
getbook.asp?bookid=
getbook.cfm?bookid=
getbook.php?bookid=
giftDetail.asp?id=
giftDetail.cfm?id=
giftDetail.php?id=
giftshop/product.php?proid=
global/product/product.asp?gubun=
global/product/product.php?gubun=
goods_detail.asp?data=
goods_detail.php?data=
goods_detail.php?goodsIdx=
inurl: prod_detail.php?id=
inurl: prod_detail.php?id=
inurl: prod_info.php?id=
inurl: prod_info.php?id=
inurl: product-item.php?id=
inurl: product-item.php?id=
inurl: product.php?id=
inurl: product.php?id=
inurl: product_ranges_view.php?ID=
inurl: product_ranges_view.php?id=
inurl: productdetail.php?id=
inurl: productdetail.php?id=
inurl: productinfo.php?id=
inurl: productinfo.php?id=
inurl: produit.php?id=
inurl: produit.php?id=
inurl:shop.php?do=part&id=
inurl:shop.php?do=part&id=
inurl:shop_category.php?id=
inurl:shopping.php?id=
inurl:shopping.php?id=
inurl:view_product.php?id=
inurl:view_product.php?id=
irbeautina/product_detail.asp?product_id=
irbeautina/product_detail.php?product_id=
item.asp?eid=
item.asp?id=
item.asp?iid=
item.asp?item_id=
item.asp?itemid=
item.asp?model=
item.asp?prodtype=
item.asp?shopcd=
item.asp?sub_id=
item.cfm?eid=
item.cfm?item_id=
item.cfm?itemid=
item.cfm?model=
item.cfm?prodtype=
item.cfm?shopcd=
item.php?SKU=
item.php?cat=
item.php?code=
item.php?eid=
item.php?id=
item.php?iid=
item.php?item=
item.php?item_id=
item.php?itemid=
item.php?model=
item.php?prodtype=
item.php?shopcd=
item.php?sub_id=
item/detail.php?num=
item/wpa-storefront-the-ultimate-wpecommerce-theme/discussion/61891?page=
itemDesc.asp?CartId=
itemDesc.cfm?CartId=
itemDesc.php?CartId=
item_book.asp?CAT=
item_book.php?CAT=
item_details.asp?catid=
item_details.cfm?catid=
item_details.php?catid=
item_id=
item_list.asp?cat_id=
item_list.asp?maingroup
item_list.cfm?maingroup
item_list.php?cat_id=
item_list.php?maingroup
item_show.asp?code_no=
item_show.asp?id=
item_show.asp?lid=
item_show.cfm?code_no=
item_show.php?code_no=
item_show.php?id=
item_show.php?itemID=
item_show.php?lid=
itemdetail.asp?item=
itemdetail.cfm?item=
itemdetail.php?item=
itemdetails.asp?catalogid=
itemdetails.cfm?catalogid=
itemdetails.php?catalogid=
itemlist.php?categoryID=
kr/product/product.php?gubun=
kshop/home.php?cat=
kshop/product.asp?productid=
kshop/product.php?productid=
order-now.php?prodid=
order.asp?BookID=
order.asp?id=
order.asp?item_ID=
order.asp?lotid=
order.cfm?BookID=
order.cfm?id=
order.cfm?item_ID=
order.php?BookID=
order.php?id=
order.php?item_ID=
order.php?l= order.php?l=
order.php?lang= order.php?lang=
order.php?list= order.php?list=
order.php?ln= order.php?ln=
order.php?p= order.php?p=
order.php?pag= order.php?pag=
order.php?page= order.php?page=
order.php?pg= order.php?pg=
order.php?wp= .php?wp=
order.php?wp= order.php?wp=
order/cart/index.php?maincat_id=
prod.asp?cat=
prod.php?cat=
prod.php?prod= .php?prod=”
prodView.asp?idProduct=
prodView.cfm?idProduct=
prodView.php?idProduct=
prod_detail.php?id=
prod_details.php?id=
prod_details.php?products_id=
prod_indiv.php?groupid=
prod_info.php?id=
prod_show.asp?id=
prod_show.asp?prodid=
prodbycat.asp?intCatalogID=
prodbycat.cfm?intCatalogID=
prodbycat.php?intCatalogID=
proddetail.php?prod=
proddetail.php?prod= .php?prod=”
proddetails_print.php?prodid=
prodetails.asp?prodid=
prodetails.cfm?prodid=
prodetails.php?prodid=
prodlist.asp?catid=
prodlist.cfm?catid=
prodlist.php?catid=
prodotti.asp?id_cat=
prodotti.php?id_cat=
prodrev.php?cat=
product-detail.php?prodid=
product-details.php?prodID=
product-info.php?cat=
product-item.php?id=
product-list.asp?category_id=
product-list.asp?cid=
product-list.asp?id=
product-list.php?category_id=
product-list.php?cid=
product-list.php?id=
product-range.asp?rangeID=
product-range.php?rangeID=
product.asp?****=
product.asp?ItemID=
product.asp?bid=
product.asp?bookID=
product.asp?cat=
product.asp?id=
product.asp?id_h=
product.asp?intProdID=
product.asp?intProductID=
product.asp?pid=
product.asp?prd=
product.asp?prodid=
product.asp?product=
product.asp?product_id=
product.asp?productid=
product.asp?shopprodid=
product.asp?sku=
product.cfm?bookID=
product.cfm?intProdID=
product.php?****=
product.php?ItemId=
product.php?bid=
product.php?bookID=
product.php?brand=
product.php?c=
product.php?cat=
product.php?cat_id=
product.php?fdProductId=
product.php?id=
product.php?id_h=
product.php?inid=
product.php?intProdID=
product.php?intProductID=
product.php?lang=
product.php?par=
product.php?pcid=
product.php?pid=
product.php?pl=
product.php?prd=
product.php?prod_num=
product.php?prodid=
product.php?product=
product.php?product_id=
product.php?product_no=
product.php?productid=
product.php?products_id=
product.php?proid=
product.php?rangeid=
product.php?shopprodid=
product.php?sku=
product.search.php?proid=
product/detail.asp?id=
product/detail.php?id=
product/list.asp?pid=
product/list.php?pid=
product/product.asp?cate=
product/product.asp?product_no=
product/product.php?cate=
product/product.php?product_no=
product2.php?id=
product3.php?id=
productDetail.php?prodId=
productDetails.asp?idProduct=
productDetails.cfm?idProduct=
productDetails.php?idProduct=
productDisplay.asp
productDisplay.cfm
productDisplay.php
productList.asp?cat=
productList.php?cat=
productList.php?id=
product_customed.php?pid=
product_detail.asp?product_id=
product_detail.cfm?id=
product_detail.php?id=
product_detail.php?prodid=
product_detail.php?product_id=
product_details.asp?id=
product_details.asp?prodid=
product_details.asp?product_id=
product_details.php?id=
product_details.php?prodID=
product_details.php?product_id=
product_guide/company_detail.php?id=
product_info.asp?id=
product_info.asp?item_id=
product_info.asp?products_id=
product_info.cfm?item_id=
product_info.php?id=
product_info.php?item_id=
product_info.php?products_id=
product_page.php?id=
product_ranges_view.asp?ID=
product_ranges_view.php?ID=
product_reviews.php?feature_id=
productdetail.php?id=
productdetails.php?prodId=
productinfo.asp?item=
productinfo.cfm?item=
productinfo.php?id=
productinfo.php?item=
productlist.asp?ViewType=Category&CategoryID=
productlist.asp?fid=
productlist.asp?grpid=
productlist.asp?id=
productlist.asp?tid=
productlist.cfm?ViewType=Category&CategoryID=
productlist.php?ViewType=Category&CategoryID=
productlist.php?fid=
productlist.php?grpid=
productlist.php?tid=
productpage.asp
productpage.cfm
productpage.php
productpage.php?ID=
products-display-details.asp?prodid=
products-display-details.php?prodid=
products.asp?DepartmentID=
products.asp?ID=
products.asp?act=
products.asp?cat=
products.asp?cat_id=
products.asp?categoryID=
products.asp?catid=
products.asp?groupid=
products.asp?keyword=
products.asp?openparent=
products.asp?p=
products.asp?rub=
products.asp?type=
products.cfm?ID=
products.cfm?keyword=
products.html?file=
products.php?DepartmentID=
products.php?act=
products.php?area_id=
products.php?cat=
products.php?catId=
products.php?cat_id=
products.php?categoryID=
products.php?cid=
products.php?groupid=
products.php?id=
products.php?keyword=
products.php?mainID=
products.php?openparent=
products.php?p=
products.php?page=
products.php?parent=
products.php?prod= .php?prod=”
products.php?req=
products.php?rub=
products.php?*******=
products.php?sku=
products.php?sub=
products.php?subgroupid=
products.php?type=
products/?catID=
products/Blitzball.htm?id=
products/card.asp?prodID=
products/card.php?prodID=
products/category.php?id=
products/display_product.php?product_id=
products/index.asp?rangeid=
products/index.php?cat=
products/index.php?rangeid=
products/item_show.php?itemId=
products/model.php?id=
products/parts/detail.asp?id=
products/parts/detail.php?id=
products/product-list.asp?id=
products/product-list.php?id=
products/product.asp?id=
products/product.asp?pid=
products/product.php?article=
products/product.php?id=
products/product.php?pid=
products/productdetails.php?prodID=
products/products.asp?p=
products/products.php?cat=
products/products.php?p=
products/testimony.php?id=
products/treedirectory.asp?id=
productsByCategory.asp?intCatalogID=
productsByCategory.cfm?intCatalogID=
productsByCategory.php?intCatalogID=
products_category.asp?CategoryID=
products_category.cfm?CategoryID=
products_category.php?CategoryID=
products_connections_detail.php?cat_id=
products_detail.asp?CategoryID=
products_detail.cfm?CategoryID=
products_detail.php?CategoryID=
products_detail.php?id=
productsview.asp?proid=
productsview.php?proid=
productview.php?id=
produit.php?id=
produit.php?prod= .php?prod=”
produkt.php?prod= .php?prod=”
shop.asp?a=
shop.asp?action=
shop.asp?bookid=
shop.asp?cartID=
shop.asp?id=
shop.cfm?a=
shop.cfm?action=
shop.cfm?bookid=
shop.cfm?cartID=
shop.php?a=
shop.php?action=
shop.php?bookid=
shop.php?cartID=
shop.php?do=part&id=
shop.php?id_cat=
shop.php?prod= .php?prod=”
shop.pl/page=
shop.pl/page= shop.pl/page=
shop/books_detail.asp?bookID=
shop/books_detail.php?bookID=
shop/category.asp?cat_id=
shop/category.php?cat_id=
shop/eventshop/product_detail.asp?itemid=
shop/eventshop/product_detail.php?itemid=
shop/home.php?cat=
shop/index.asp?cPath=
shop/index.php?cPath=
shop/index.php?cat_id=
shop/pages.php?page=
shop/product.php?id=
shop/product_details.php?ProdID=
shop/products.php?cat=
shop/products.php?cat_id=
shop/products.php?p=
shop/shop.php?id=
shop_category.php?id=
shop_details.asp?prodid=
shop_details.cfm?prodid=
shop_details.php?prodid=
shop_display_products.asp?cat_id=
shop_display_products.php?cat_id=
shopaddtocart.asp
shopaddtocart.asp?catalogid=
shopaddtocart.cfm
shopaddtocart.cfm?catalogid=
shopaddtocart.php
shopaddtocart.php?catalogid=
shopbasket.asp?bookid=
shopbasket.cfm?bookid=
shopbasket.php?bookid=
shopbycategory.asp?catid=
shopbycategory.cfm?catid=
shopbycategory.php?catid=
shopcafe-shop-product.asp?bookId=
shopcafe-shop-product.php?bookId=
shopcart.asp?title=
shopcart.cfm?title=
shopcart.php?title=
shopcreatorder.asp
shopcreatorder.cfm
shopcreatorder.php
shopcurrency.asp?cid=
shopcurrency.cfm?cid=
shopcurrency.php?cid=
shopdc.asp?bookid=
shopdc.cfm?bookid=
shopdc.php?bookid=
shopdisplaycategories.asp
shopdisplaycategories.cfm
shopdisplaycategories.php
shopdisplayproduct.asp?catalogid=
shopdisplayproduct.cfm?catalogid=
shopdisplayproduct.php?catalogid=
shopdisplayproducts.asp
shopdisplayproducts.cfm
shopdisplayproducts.php
shopexd.asp
shopexd.asp?catalogid=
shopexd.cfm
shopexd.cfm?catalogid=
shopexd.php
shopexd.php?catalogid=
shopping.php?id=
shopping/index.php?id=
shopping_article.php?id=
shopping_basket.asp?cartID=
shopping_basket.cfm?cartID=
shopping_basket.php?cartID=
shopprojectlogin.asp
shopprojectlogin.cfm
shopprojectlogin.php
shopquery.asp?catalogid=
shopquery.cfm?catalogid=
shopquery.php?catalogid=
shopremoveitem.asp?cartid=
shopremoveitem.cfm?cartid=
shopremoveitem.php?cartid=
shopreviewadd.asp?id=
shopreviewadd.cfm?id=
shopreviewadd.php?id=
shopreviewlist.asp?id=
shopreviewlist.cfm?id=
shopreviewlist.php?id=
shoptellafriend.asp?id=
shoptellafriend.cfm?id=
shoptellafriend.php?id=
shopthanks.asp
shopthanks.cfm
shopthanks.php
shopwelcome.asp?title=
shopwelcome.cfm?title=
shopwelcome.php?title=
shoutbox/expanded.php filetypep:hp
shoutbox/expanded.php?conf=
shoutbox/expanded.php?conf=
show-book.asp?id=
show-book.php?id=
show.asp?id=
show.php?*root*=
show.php?abre=
show.php?adresa=
show.php?b=
show.php?base_dir=
show.php?channel=
show.php?chapter=
show.php?cmd=
show.php?corpo=
show.php?d=
show.php?disp=
show.php?filepath=
show.php?get=
show.php?go=
show.php?header=
show.php?home=
show.php?id=
show.php?inc=
show.php?incl=
show.php?include=
show.php?index=
show.php?ir=
show.php?item=
show.php?j=
show.php?ki=
show.php?l=
show.php?left=
show.php?loader=
show.php?m=
show.php?mid=
show.php?middlePart=
show.php?modo=
show.php?module=
show.php?my=
show.php?n=
show.php?nivel=
show.php?oldal=
show.php?page1= .php?page1=”
show.php?page=
show.php?pageweb=
show.php?pagina=
show.php?param=
show.php?path=
show.php?play=
show.php?pname=
show.php?pre=
show.php?product= .php?product=
show.php?product= show.php?product=
show.php?qry=
show.php?r=
show.php?read=
show.php?recipe=
show.php?redirect=
show.php?seccion=
show.php?second=
show.php?sp=
show.php?thispage=
show.php?to=
show.php?type=
show.php?x=
show.php?xlink=
show.php?z=
showPage.php?type=
showStore.asp?catID=
showStore.cfm?catID=
showStore.php?catID=
show_an.php?id=
show_bug.cgi?id=
show_cv.php?id=
show_item.asp?id=
show_item.cfm?id=
show_item.php?id=
show_item_details.asp?item_id=
show_item_details.cfm?item_id=
show_item_details.php?item_id=
show_news.php?cutepath=
show_news.php?id=
show_prod.php?p=
show_upload.php?id=
showbook.asp?bookid=
showbook.cfm?bookid=
showbook.php?bookid=
showfeature.asp?id=
showfeature.php?id=
showimg.php?id=
showmedia.php?id=
showproduct.asp?cat=
showproduct.asp?prodid=
showproduct.asp?productId=
showproduct.php?cat=
showproduct.php?prodid=
showproduct.php?productId=
showproducts.php?cid=
stockists_list.asp?area_id=
stockists_list.php?area_id=
store-detail.php?ID=
store-details.asp?id=
store-details.cfm?id=
store-details.php?id=
store.asp?cat_id=
store.asp?id=
store.cfm?id=
store.php?cat_id=
store.php?id=
store/customer/product.php?productid=
store/default.asp?cPath=
store/default.php?cPath=
store/description.asp?iddesc=
store/description.php?iddesc=
store/detail.php?prodid=
store/home.asp?cat=
store/home.php?cat=
store/index.asp?cat_id=
store/index.php?cat_id=
store/item.php?id=
store/mcart.php?ID=
store/news_story.php?id=
store/product.asp?productid=
store/product.php?productid=
store/products.php?cat_id=
store/showcat.php?cat_id=
store/store.php?cat_id=
store/store_detail.php?id=
store/view_items.asp?id=
store/view_items.php?id=
store_bycat.asp?id=
store_bycat.cfm?id=
store_bycat.php?id=
store_listing.asp?id=
store_listing.cfm?id=
store_listing.php?id=
store_prod_details.php?ProdID=
storefront.asp?id=
storefront.cfm?id=
storefront.php?id=
storefronts.asp?title=
storefronts.cfm?title=
storefronts.php?title=
storeitem.asp?item=
storeitem.cfm?item=
storeitem.php?item=
storemanager/contents/item.asp?page_code=
storemanager/contents/item.php?page_code=
viewCart.asp?userID=
viewCart.cfm?userID=
viewCart.php?userID=
viewcart.asp?CartId=
viewcart.cfm?CartId=
viewcart.php?CartId=
x/product.php?productid=
xcart/home.php?cat=
xcart/product.php?productid
checkout.asp?UserID=
checkout.asp?cartid=
checkout.cfm?UserID=
checkout.cfm?cartid=
checkout.php?UserID=
checkout.php?cartid=
checkout1.asp?cartid=
checkout1.cfm?cartid=
checkout1.php?cartid=
checkout_confirmed.asp?order_id=
checkout_confirmed.cfm?order_id=
checkout_confirmed.php?order_id=
db/CART/product_details.asp?product_id=
db/CART/product_details.php?product_id=
eshop.php?id=
estore/products.php?cat=
garden_equipment/Fruit-Cage/product.asp?pr=
garden_equipment/Fruit-Cage/product.php?pr=
garden_equipment/pest-weed-control/product.asp?pr=
garden_equipment/pest-weed-control/product.php?pr=
getbook.asp?bookid=
getbook.cfm?bookid=
getbook.php?bookid=
giftDetail.asp?id=
giftDetail.cfm?id=
giftDetail.php?id=
giftshop/product.php?proid=
global/product/product.asp?gubun=
global/product/product.php?gubun=
goods_detail.asp?data=
goods_detail.php?data=
goods_detail.php?goodsIdx=
inurl: prod_detail.php?id=
inurl: prod_detail.php?id=
inurl: prod_info.php?id=
inurl: prod_info.php?id=
inurl: product-item.php?id=
inurl: product-item.php?id=
inurl: product.php?id=
inurl: product.php?id=
inurl: product_ranges_view.php?ID=
inurl: product_ranges_view.php?id=
inurl: productdetail.php?id=
inurl: productdetail.php?id=
inurl: productinfo.php?id=
inurl: productinfo.php?id=
inurl: produit.php?id=
inurl: produit.php?id=
inurl:shop.php?do=part&id=
inurl:shop.php?do=part&id=
inurl:shop_category.php?id=
inurl:shopping.php?id=
inurl:shopping.php?id=
inurl:view_product.php?id=
inurl:view_product.php?id=
irbeautina/product_detail.asp?product_id=
irbeautina/product_detail.php?product_id=
item.asp?eid=
item.asp?id=
item.asp?iid=
item.asp?item_id=
item.asp?itemid=
item.asp?model=
item.asp?prodtype=
item.asp?shopcd=
item.asp?sub_id=
item.cfm?eid=
item.cfm?item_id=
item.cfm?itemid=
item.cfm?model=
item.cfm?prodtype=
item.cfm?shopcd=
item.php?SKU=
item.php?cat=
item.php?code=
item.php?eid=
item.php?id=
item.php?iid=
item.php?item=
item.php?item_id=
item.php?itemid=
item.php?model=
item.php?prodtype=
item.php?shopcd=
item.php?sub_id=
item/detail.php?num=
item/wpa-storefront-the-ultimate-wpecommerce-theme/discussion/61891?page=
itemDesc.asp?CartId=
itemDesc.cfm?CartId=
itemDesc.php?CartId=
item_book.asp?CAT=
item_book.php?CAT=
item_details.asp?catid=
item_details.cfm?catid=
item_details.php?catid=
item_id=
item_list.asp?cat_id=
item_list.asp?maingroup
item_list.cfm?maingroup
item_list.php?cat_id=
item_list.php?maingroup
item_show.asp?code_no=
item_show.asp?id=
item_show.asp?lid=
item_show.cfm?code_no=
item_show.php?code_no=
item_show.php?id=
item_show.php?itemID=
item_show.php?lid=
itemdetail.asp?item=
itemdetail.cfm?item=
itemdetail.php?item=
itemdetails.asp?catalogid=
itemdetails.cfm?catalogid=
itemdetails.php?catalogid=
itemlist.php?categoryID=
kr/product/product.php?gubun=
kshop/home.php?cat=
kshop/product.asp?productid=
kshop/product.php?productid=
order-now.php?prodid=
order.asp?BookID=
order.asp?id=
order.asp?item_ID=
order.asp?lotid=
order.cfm?BookID=
order.cfm?id=
order.cfm?item_ID=
order.php?BookID=
order.php?id=
order.php?item_ID=
order.php?l= order.php?l=
order.php?lang= order.php?lang=
order.php?list= order.php?list=
order.php?ln= order.php?ln=
order.php?p= order.php?p=
order.php?pag= order.php?pag=
order.php?page= order.php?page=
order.php?pg= order.php?pg=
order.php?wp= .php?wp=
order.php?wp= order.php?wp=
order/cart/index.php?maincat_id=
prod.asp?cat=
prod.php?cat=
prod.php?prod= .php?prod=”
prodView.asp?idProduct=
prodView.cfm?idProduct=
prodView.php?idProduct=
prod_detail.php?id=
prod_details.php?id=
prod_details.php?products_id=
prod_indiv.php?groupid=
prod_info.php?id=
prod_show.asp?id=
prod_show.asp?prodid=
prodbycat.asp?intCatalogID=
prodbycat.cfm?intCatalogID=
prodbycat.php?intCatalogID=
proddetail.php?prod=
proddetail.php?prod= .php?prod=”
proddetails_print.php?prodid=
prodetails.asp?prodid=
prodetails.cfm?prodid=
prodetails.php?prodid=
prodlist.asp?catid=
prodlist.cfm?catid=
prodlist.php?catid=
prodotti.asp?id_cat=
prodotti.php?id_cat=
prodrev.php?cat=
product-detail.php?prodid=
product-details.php?prodID=
product-info.php?cat=
product-item.php?id=
product-list.asp?category_id=
product-list.asp?cid=
product-list.asp?id=
product-list.php?category_id=
product-list.php?cid=
product-list.php?id=
product-range.asp?rangeID=
product-range.php?rangeID=
product.asp?****=
product.asp?ItemID=
product.asp?bid=
product.asp?bookID=
product.asp?cat=
product.asp?id=
product.asp?id_h=
product.asp?intProdID=
product.asp?intProductID=
product.asp?pid=
product.asp?prd=
product.asp?prodid=
product.asp?product=
product.asp?product_id=
product.asp?productid=
product.asp?shopprodid=
product.asp?sku=
product.cfm?bookID=
product.cfm?intProdID=
product.php?****=
product.php?ItemId=
product.php?bid=
product.php?bookID=
product.php?brand=
product.php?c=
product.php?cat=
product.php?cat_id=
product.php?fdProductId=
product.php?id=
product.php?id_h=
product.php?inid=
product.php?intProdID=
product.php?intProductID=
product.php?lang=
product.php?par=
product.php?pcid=
product.php?pid=
product.php?pl=
product.php?prd=
product.php?prod_num=
product.php?prodid=
product.php?product=
product.php?product_id=
product.php?product_no=
product.php?productid=
product.php?products_id=
product.php?proid=
product.php?rangeid=
product.php?shopprodid=
product.php?sku=
product.search.php?proid=
product/detail.asp?id=
product/detail.php?id=
product/list.asp?pid=
product/list.php?pid=
product/product.asp?cate=
product/product.asp?product_no=
product/product.php?cate=
product/product.php?product_no=
product2.php?id=
product3.php?id=
productDetail.php?prodId=
productDetails.asp?idProduct=
productDetails.cfm?idProduct=
productDetails.php?idProduct=
productDisplay.asp
productDisplay.cfm
productDisplay.php
productList.asp?cat=
productList.php?cat=
productList.php?id=
product_customed.php?pid=
product_detail.asp?product_id=
product_detail.cfm?id=
product_detail.php?id=
product_detail.php?prodid=
product_detail.php?product_id=
product_details.asp?id=
product_details.asp?prodid=
product_details.asp?product_id=
product_details.php?id=
product_details.php?prodID=
product_details.php?product_id=
product_guide/company_detail.php?id=
product_info.asp?id=
product_info.asp?item_id=
product_info.asp?products_id=
product_info.cfm?item_id=
product_info.php?id=
product_info.php?item_id=
product_info.php?products_id=
product_page.php?id=
product_ranges_view.asp?ID=
product_ranges_view.php?ID=
product_reviews.php?feature_id=
productdetail.php?id=
productdetails.php?prodId=
productinfo.asp?item=
productinfo.cfm?item=
productinfo.php?id=
productinfo.php?item=
productlist.asp?ViewType=Category&CategoryID=
productlist.asp?fid=
productlist.asp?grpid=
productlist.asp?id=
productlist.asp?tid=
productlist.cfm?ViewType=Category&CategoryID=
productlist.php?ViewType=Category&CategoryID=
productlist.php?fid=
productlist.php?grpid=
productlist.php?tid=
productpage.asp
productpage.cfm
productpage.php
productpage.php?ID=
products-display-details.asp?prodid=
products-display-details.php?prodid=
products.asp?DepartmentID=
products.asp?ID=
products.asp?act=
products.asp?cat=
products.asp?cat_id=
products.asp?categoryID=
products.asp?catid=
products.asp?groupid=
products.asp?keyword=
products.asp?openparent=
products.asp?p=
products.asp?rub=
products.asp?type=
products.cfm?ID=
products.cfm?keyword=
products.html?file=
products.php?DepartmentID=
products.php?act=
products.php?area_id=
products.php?cat=
products.php?catId=
products.php?cat_id=
products.php?categoryID=
products.php?cid=
products.php?groupid=
products.php?id=
products.php?keyword=
products.php?mainID=
products.php?openparent=
products.php?p=
products.php?page=
products.php?parent=
products.php?prod= .php?prod=”
products.php?req=
products.php?rub=
products.php?*******=
products.php?sku=
products.php?sub=
products.php?subgroupid=
products.php?type=
products/?catID=
products/Blitzball.htm?id=
products/card.asp?prodID=
products/card.php?prodID=
products/category.php?id=
products/display_product.php?product_id=
products/index.asp?rangeid=
products/index.php?cat=
products/index.php?rangeid=
products/item_show.php?itemId=
products/model.php?id=
products/parts/detail.asp?id=
products/parts/detail.php?id=
products/product-list.asp?id=
products/product-list.php?id=
products/product.asp?id=
products/product.asp?pid=
products/product.php?article=
products/product.php?id=
products/product.php?pid=
products/productdetails.php?prodID=
products/products.asp?p=
products/products.php?cat=
products/products.php?p=
products/testimony.php?id=
products/treedirectory.asp?id=
productsByCategory.asp?intCatalogID=
productsByCategory.cfm?intCatalogID=
productsByCategory.php?intCatalogID=
products_category.asp?CategoryID=
products_category.cfm?CategoryID=
products_category.php?CategoryID=
products_connections_detail.php?cat_id=
products_detail.asp?CategoryID=
products_detail.cfm?CategoryID=
products_detail.php?CategoryID=
products_detail.php?id=
productsview.asp?proid=
productsview.php?proid=
productview.php?id=
produit.php?id=
produit.php?prod= .php?prod=”
produkt.php?prod= .php?prod=”
shop.asp?a=
shop.asp?action=
shop.asp?bookid=
shop.asp?cartID=
shop.asp?id=
shop.cfm?a=
shop.cfm?action=
shop.cfm?bookid=
shop.cfm?cartID=
shop.php?a=
shop.php?action=
shop.php?bookid=
shop.php?cartID=
shop.php?do=part&id=
shop.php?id_cat=
shop.php?prod= .php?prod=”
shop.pl/page=
shop.pl/page= shop.pl/page=
shop/books_detail.asp?bookID=
shop/books_detail.php?bookID=
shop/category.asp?cat_id=
shop/category.php?cat_id=
shop/eventshop/product_detail.asp?itemid=
shop/eventshop/product_detail.php?itemid=
shop/home.php?cat=
shop/index.asp?cPath=
shop/index.php?cPath=
shop/index.php?cat_id=
shop/pages.php?page=
shop/product.php?id=
shop/product_details.php?ProdID=
shop/products.php?cat=
shop/products.php?cat_id=
shop/products.php?p=
shop/shop.php?id=
shop_category.php?id=
shop_details.asp?prodid=
shop_details.cfm?prodid=
shop_details.php?prodid=
shop_display_products.asp?cat_id=
shop_display_products.php?cat_id=
shopaddtocart.asp
shopaddtocart.asp?catalogid=
shopaddtocart.cfm
shopaddtocart.cfm?catalogid=
shopaddtocart.php
shopaddtocart.php?catalogid=
shopbasket.asp?bookid=
shopbasket.cfm?bookid=
shopbasket.php?bookid=
shopbycategory.asp?catid=
shopbycategory.cfm?catid=
shopbycategory.php?catid=
shopcafe-shop-product.asp?bookId=
shopcafe-shop-product.php?bookId=
shopcart.asp?title=
shopcart.cfm?title=
shopcart.php?title=
shopcreatorder.asp
shopcreatorder.cfm
shopcreatorder.php
shopcurrency.asp?cid=
shopcurrency.cfm?cid=
shopcurrency.php?cid=
shopdc.asp?bookid=
shopdc.cfm?bookid=
shopdc.php?bookid=
shopdisplaycategories.asp
shopdisplaycategories.cfm
shopdisplaycategories.php
shopdisplayproduct.asp?catalogid=
shopdisplayproduct.cfm?catalogid=
shopdisplayproduct.php?catalogid=
shopdisplayproducts.asp
shopdisplayproducts.cfm
shopdisplayproducts.php
shopexd.asp
shopexd.asp?catalogid=
shopexd.cfm
shopexd.cfm?catalogid=
shopexd.php
shopexd.php?catalogid=
shopping.php?id=
shopping/index.php?id=
shopping_article.php?id=
shopping_basket.asp?cartID=
shopping_basket.cfm?cartID=
shopping_basket.php?cartID=
shopprojectlogin.asp
shopprojectlogin.cfm
shopprojectlogin.php
shopquery.asp?catalogid=
shopquery.cfm?catalogid=
shopquery.php?catalogid=
shopremoveitem.asp?cartid=
shopremoveitem.cfm?cartid=
shopremoveitem.php?cartid=
shopreviewadd.asp?id=
shopreviewadd.cfm?id=
shopreviewadd.php?id=
shopreviewlist.asp?id=
shopreviewlist.cfm?id=
shopreviewlist.php?id=
shoptellafriend.asp?id=
shoptellafriend.cfm?id=
shoptellafriend.php?id=
shopthanks.asp
shopthanks.cfm
shopthanks.php
shopwelcome.asp?title=
shopwelcome.cfm?title=
shopwelcome.php?title=
shoutbox/expanded.php filetypep:hp
shoutbox/expanded.php?conf=
shoutbox/expanded.php?conf=
show-book.asp?id=
show-book.php?id=
show.asp?id=
show.php?*root*=
show.php?abre=
show.php?adresa=
show.php?b=
show.php?base_dir=
show.php?channel=
show.php?chapter=
show.php?cmd=
show.php?corpo=
show.php?d=
show.php?disp=
show.php?filepath=
show.php?get=
show.php?go=
show.php?header=
show.php?home=
show.php?id=
show.php?inc=
show.php?incl=
show.php?include=
show.php?index=
show.php?ir=
show.php?item=
show.php?j=
show.php?ki=
show.php?l=
show.php?left=
show.php?loader=
show.php?m=
show.php?mid=
show.php?middlePart=
show.php?modo=
show.php?module=
show.php?my=
show.php?n=
show.php?nivel=
show.php?oldal=
show.php?page1= .php?page1=”
show.php?page=
show.php?pageweb=
show.php?pagina=
show.php?param=
show.php?path=
show.php?play=
show.php?pname=
show.php?pre=
show.php?product= .php?product=
show.php?product= show.php?product=
show.php?qry=
show.php?r=
show.php?read=
show.php?recipe=
show.php?redirect=
show.php?seccion=
show.php?second=
show.php?sp=
show.php?thispage=
show.php?to=
show.php?type=
show.php?x=
show.php?xlink=
show.php?z=
showPage.php?type=
showStore.asp?catID=
showStore.cfm?catID=
showStore.php?catID=
show_an.php?id=
show_bug.cgi?id=
show_cv.php?id=
show_item.asp?id=
show_item.cfm?id=
show_item.php?id=
show_item_details.asp?item_id=
show_item_details.cfm?item_id=
show_item_details.php?item_id=
show_news.php?cutepath=
show_news.php?id=
show_prod.php?p=
show_upload.php?id=
showbook.asp?bookid=
showbook.cfm?bookid=
showbook.php?bookid=
showfeature.asp?id=
showfeature.php?id=
showimg.php?id=
showmedia.php?id=
showproduct.asp?cat=
showproduct.asp?prodid=
showproduct.asp?productId=
showproduct.php?cat=
showproduct.php?prodid=
showproduct.php?productId=
showproducts.php?cid=
stockists_list.asp?area_id=
stockists_list.php?area_id=
store-detail.php?ID=
store-details.asp?id=
store-details.cfm?id=
store-details.php?id=
store.asp?cat_id=
store.asp?id=
store.cfm?id=
store.php?cat_id=
store.php?id=
store/customer/product.php?productid=
store/default.asp?cPath=
store/default.php?cPath=
store/description.asp?iddesc=
store/description.php?iddesc=
store/detail.php?prodid=
store/home.asp?cat=
store/home.php?cat=
store/index.asp?cat_id=
store/index.php?cat_id=
store/item.php?id=
store/mcart.php?ID=
store/news_story.php?id=
store/product.asp?productid=
store/product.php?productid=
store/products.php?cat_id=
store/showcat.php?cat_id=
store/store.php?cat_id=
store/store_detail.php?id=
store/view_items.asp?id=
store/view_items.php?id=
store_bycat.asp?id=
store_bycat.cfm?id=
store_bycat.php?id=
store_listing.asp?id=
store_listing.cfm?id=
store_listing.php?id=
store_prod_details.php?ProdID=
storefront.asp?id=
storefront.cfm?id=
storefront.php?id=
storefronts.asp?title=
storefronts.cfm?title=
storefronts.php?title=
storeitem.asp?item=
storeitem.cfm?item=
storeitem.php?item=
storemanager/contents/item.asp?page_code=
storemanager/contents/item.php?page_code=
viewCart.asp?userID=
viewCart.cfm?userID=
viewCart.php?userID=
viewcart.asp?CartId=
viewcart.cfm?CartId=
viewcart.php?CartId=
x/product.php?productid=
xcart/home.php?cat=
xcart/product.php?productid
-----------------------------------------------------------------------------------------------------
( 5.)
-----------------------GOOGLE----------------------------
--------------DORKS AND DORKS AND DORKS AND DORKS AND ...----------------
-----------------------------------------------------------------------------------------------------
Google dorks
-----------------------------------
All of us have used Google for searching answers for our queries. What most of don’t realize is the advantage of forming
the search queries in Google to reveal sensitive information that we require to perform a successful attack. This can be
accomplished by using the advanced operator features of Google. The basic syntax for using advanced operator in Google is
as follows.
Operator_name:keyword
The syntax as shown above is a Google advanced operator followed by a colon, which is again followed by the keyword without
any space in the string. This put together becomes an advanced query to Google. The usage of advanced operators in Google
is termed as dorking. The strings are called Google Dorks a.k.a Google hacks. Dorks come in two forms vis-à-vis Simple
dorks and complex dorks. Using a single advanced operator as your search string is called as simple dork whereas multiple
advanced operators put together in a single search string is called as advanced dork. Each keyword/advance operator has a
special meaning to the Google engine. It helps you filter out the unwanted results and narrows your searches by a great
margin when these dorks are used. Let’s take few examples of simple dorks.
--------------------------------------------------------------------------------------
Simple Google Dorks:
Allintext Searches for occurrences of all the keywords given
Intext Searches for the occurrences of keywords all at once or one at a time
Inurl Searches for a URL matching one of the keywords
Allinurl Searches for a URL matching all the keywords in the query
Intitle Searches for occurrences of keywords in URL all or one
Allintitle Searches for occurrences of keywords all at a time
Site Specifically searches that particular site and lists all the results for that site
filetype Searches for a particular filetype mentioned in the query
Link Searches for external links to pages
Numrange Used to locate specific numbers in your searches
Daterange Used to search within a particular date range
-----------------------------------------------------------------------------------------
A single query can be used to get a particular result. But many single queries can be put in to one monster query and
higher degree of filtration can be achieved resulting in the same particular page in your search results.
what can we find out using Google?
Admin login pages
Username and passwords
Vulnerable entities
Sensitive documents
Govt/military data
Email lists
Bank account details and lots more
The list goes never ending. We shall try to explore few of these possibilities in this article. In the screenshot below, we
are seeing an admin catalog with detailed information of the customer names, payment methods, and order amounts. This
information can be handy when performing social engineering on random targets.
Dork: filetype:php inurl:catalog/admin/
This is an example of a simple query. Next, let’s see some juicy stuff, which comes in handy due to the efficiency of
Google crawlers.
Dork: inurl:group_concat(username, filetype:php intext:admin
---------------------
http://2we26u4fam7n16rz3a44uhbe1bq2.wpengine.netdna-cdn.com/wp-content/uploads/042513_0200_GoogleHacki4.png
-------------------------
In the above screenshot, we were able to tap in to some of the SQL injection results done by somebody else on the sites.
Unfortunately, the residue is still left in the search results. We happened to get our hands on username and password
combinations, one of the accounts listed with the md5 hashes had the hash cracked, and the following combination was
uncovered. The combination is bcheramy : 130270
http://2we26u4fam7n16rz3a44uhbe1bq2.wpengine.netdna-cdn.com/wp-content/uploads/042513_0200_GoogleHacki5.png
The search results took, 0.25 Google seconds to appear. Does this mean we hacked an account in 0.25 seconds Google time? ;)
By now, I am sure; you would have got an idea as to how dangerous a tool Google can be. The usernames and passwords got
from here can be used to strengthen our dictionary attacks by adding these used passwords to the list we already have. This
can also be used in user profiling which seems to be in demand in the underground market. The above queries where just
simple dorks which gave out sensitive information.
By now, I am sure; you would have got an idea as to how dangerous a tool Google can be. The usernames and passwords got
from here can be used to strengthen our dictionary attacks by adding these used passwords to the list we already have. This
can also be used in user profiling which seems to be in demand in the underground market. The above queries where just
simple dorks which gave out sensitive information.
When testing a target we would like to test it from all perspectives and try to gather information from all possible means.
In this section, we shall see how Google can be used to troll email addresses across the internet. This gives spammers a
huge list of emails that they need in succeeding their goals. In 0.21 seconds Google time, I was able to get a excel sheet
with 1000 email ids. This was just one of the results. Imagine if I had checked all the results or if I had automated this
process then I would have million email ids listed in no time!
http://2we26u4fam7n16rz3a44uhbe1bq2.wpengine.netdna-cdn.com/wp-content/uploads/042513_0200_GoogleHacki6.png
Dork: intext:@gmail.com filetype:xls
Other capabilities of Google include site crawling/Network mapping. We use few other keywords to achieve this feat. What is
so special about site crawling/Network mapping i.e. enumerating domain and hostnames? Well, all this is done without any
probing at the target. The target that you are trying to enumerate cannot get a hint that you have already started plotting
your attack against it. Google APIs used with a script combined with search results can give a big boost in this part of
your attack. Let’s see some example for the same.
http://2we26u4fam7n16rz3a44uhbe1bq2.wpengine.netdna-cdn.com/wp-content/uploads/042513_0200_GoogleHacki7.png
Dork:
site:wipro.com -site:www.wipro.com -site:careers.wipro.com
In the above example, you can see the usage of multiple simple dorks. Well, this is the negation operator provided by
Google. The negation operator helps you subtract unwanted results from the search. The explanation for the above dork is as
follows: Search the site wipro.com excluding the main site (www.wipro.com) and also exclude the subdomain
(careers.wipro.com). In the search results, we are able to see few login pages. As every one of us is aware that, an
organization’s security is as strong as its weakest link (quoted from a blackhat-euro presentation), finding these third
party logins and links allows an attacker to gain trusted entry into the target if these have some loopholes in them!
Another key word that I want you to try would be the Link operator whose usage is similar to that of site. A link to a site
doesn’t really carry much importance to an attacker, but a link from a site would mean that there is some form of trust
connection between the two sites. Link command in Google can be used for finding external links to a site from another
site.
The possibilities for automation and network mapping using Google are infinite. Once you get used to using Google for
mapping your targets I bet you will be amazed at the possibilities you have given birth to. :D
Crude port scanning by Google can be done by intelligent use of dorks in the search string. The following screenshots gives
a fair idea as to how it can be achieved.
http://2we26u4fam7n16rz3a44uhbe1bq2.wpengine.netdna-cdn.com/wp-content/uploads/042513_0200_GoogleHacki8.png
Google has been used ever since its beginning to find answers for most if not all of our questions from the beginning of
the universe to even finding cure for common ailments. A BBC expert was found commenting that Google has the capability of
finding your divorce lawyer to even the details of if you are pregnant. With so much intelligence built in to their
systems, Google is surely a great information-gathering tool. As security analysts let’s try to find out the proficiency of
Google as a hacking tool in this article.
All of us have used Google for searching answers for our queries. What most of don’t realize is the advantage of forming
the search queries in Google to reveal sensitive information that we require to perform a successful attack. This can be
accomplished by using the advanced operator features of Google. The basic syntax for using advanced operator in Google is
as follows.
Operator_name:keyword
The syntax as shown above is a Google advanced operator followed by a colon, which is again followed by the keyword without
any space in the string. This put together becomes an advanced query to Google. The usage of advanced operators in Google
is termed as dorking. The strings are called Google Dorks a.k.a Google hacks. Dorks come in two forms vis-à-vis Simple
dorks and complex dorks. Using a single advanced operator as your search string is called as simple dork whereas multiple
advanced operators put together in a single search string is called as advanced dork. Each keyword/advance operator has a
special meaning to the Google engine. It helps you filter out the unwanted results and narrows your searches by a great
margin when these dorks are used. Let’s take few examples of simple dorks.
Simple Google Dorks:
Allintext Searches for occurrences of all the keywords given
Intext Searches for the occurrences of keywords all at once or one at a time
Inurl Searches for a URL matching one of the keywords
Allinurl Searches for a URL matching all the keywords in the query
Intitle Searches for occurrences of keywords in URL all or one
Allintitle Searches for occurrences of keywords all at a time
Site Specifically searches that particular site and lists all the results for that site
filetype Searches for a particular filetype mentioned in the query
Link Searches for external links to pages
Numrange Used to locate specific numbers in your searches
Daterange Used to search within a particular date range
Let’s see an illustration as to what this really means. The following screenshot shall explain things in a better way
showing a live example.
A single query can be used to get a particular result. But many single queries can be put in to one monster query and
higher degree of filtration can be achieved resulting in the same particular page in your search results.
The above two diagrams illustrate few of the dorks in a pictorial manner. The same can be analogous to other advanced
operators. So what can we find out using Google?
Admin login pages
Username and passwords
Vulnerable entities
Sensitive documents
Govt/military data
Email lists
Bank account details and lots more
The list goes never ending. We shall try to explore few of these possibilities in this article. In the screenshot below, we
are seeing an admin catalog with detailed information of the customer names, payment methods, and order amounts. This
information can be handy when performing social engineering on random targets.
Dork: filetype:php inurl:catalog/admin/
This is an example of a simple query. Next, let’s see some juicy stuff, which comes in handy due to the efficiency of
Google crawlers.
Dork: inurl:group_concat(username, filetype:php intext:admin
In the above screenshot, we were able to tap in to some of the SQL injection results done by somebody else on the sites.
Unfortunately, the residue is still left in the search results. We happened to get our hands on username and password
combinations, one of the accounts listed with the md5 hashes had the hash cracked, and the following combination was
uncovered. The combination is bcheramy : 130270
The search results took, 0.25 Google seconds to appear. Does this mean we hacked an account in 0.25 seconds Google time? ;)
By now, I am sure; you would have got an idea as to how dangerous a tool Google can be. The usernames and passwords got
from here can be used to strengthen our dictionary attacks by adding these used passwords to the list we already have. This
can also be used in user profiling which seems to be in demand in the underground market. The above queries where just
simple dorks which gave out sensitive information.
When testing a target we would like to test it from all perspectives and try to gather information from all possible means.
In this section, we shall see how Google can be used to troll email addresses across the internet. This gives spammers a
huge list of emails that they need in succeeding their goals. In 0.21 seconds Google time, I was able to get a excel sheet
with 1000 email ids. This was just one of the results. Imagine if I had checked all the results or if I had automated this
process then I would have million email ids listed in no time!
Dork: intext:@gmail.com filetype:xls
Other capabilities of Google include site crawling/Network mapping. We use few other keywords to achieve this feat. What is
so special about site crawling/Network mapping i.e. enumerating domain and hostnames? Well, all this is done without any
probing at the target. The target that you are trying to enumerate cannot get a hint that you have already started plotting
your attack against it. Google APIs used with a script combined with search results can give a big boost in this part of
your attack. Let’s see some example for the same.
Dork:
site:wipro.com -site:www.wipro.com -site:careers.wipro.com
In the above example, you can see the usage of multiple simple dorks. Well, this is the negation operator provided by
Google. The negation operator helps you subtract unwanted results from the search. The explanation for the above dork is as
follows: Search the site wipro.com excluding the main site (www.wipro.com) and also exclude the subdomain
(careers.wipro.com). In the search results, we are able to see few login pages. As every one of us is aware that, an
organization’s security is as strong as its weakest link (quoted from a blackhat-euro presentation), finding these third
party logins and links allows an attacker to gain trusted entry into the target if these have some loopholes in them!
Another key word that I want you to try would be the Link operator whose usage is similar to that of site. A link to a site
doesn’t really carry much importance to an attacker, but a link from a site would mean that there is some form of trust
connection between the two sites. Link command in Google can be used for finding external links to a site from another
site.
The possibilities for automation and network mapping using Google are infinite. Once you get used to using Google for
mapping your targets I bet you will be amazed at the possibilities you have given birth to. :D
Crude port scanning by Google can be done by intelligent use of dorks in the search string. The following screenshots gives
a fair idea as to how it can be achieved.
Dork: inurl:8443 -intext:8443
This dork lists all the sites running on port 8443. The query calls for sites with 8443 in the URL but excludes the
redundant occurrence of 8443 in the text body thereby giving us URLs with respective ports. An automated scan on important
ports can give interesting results.
NOW we have seen a few common uses and some uncommon uses of Google dorks in getting some sensitive information. As said
earlier the possibilities with Google are limitless. The limit is given by your creativity. There are lots more interesting
details that Google can provide you. But i'll leave some for the rest of yall to find yourself. That half the fun is that
new discovery done all on your own. these words are but mearly placed to help guide others along in there quest of
knowledge.
These search techniques were first made famous, and were documented by, Johnny Long, owner of the ‘Johnny I Hack Stuff’
website which is now dead but still currently hosts the Google Hacking Database (GHDB).1 He’s also author of a two-volume
book on Google hacking.2
The GHDB has been little updated since 2006 but still carries the most complete list of so-called ‘Google Dorks’ — the
search terms used to discover vulnerabilities. These make extensive use of Google’s special search operators — terms that
refine or modify the search and the reason why Google is so effective at this task. For example, searching with:
allintext: admin user password restricted list
This means that Google will return searches only where the pages contains all of those words in the text. Similary, the
site: operator restricts the search to a specific site or domain — handy for testing your own website.
The GoogleGuide.com site has a useful quick reference sheet for these operators.3
For our purposes, the most important categories of Google dorks are: discovering vulnerable software; finding files and
directories that shouldn’t be visible; and exploiting error messages or system failures.
Vulnerable software
Google hacking provides a number of basic footprinting methods to profile a website — server software, operating system and
so on. But much of that information is more easily found through sites such as Netcraft.com. Where Google dorks really come
into their own is when the software you’re running is know to have vulnerabilities.
Software often uses easily identifiable filenames that will turn up in URLs. For example, one Google dork from 2004
targeted the Comersus APS-based e-commerce package which had an XSS flaw in the file comersus_message.asp. This could be
exploited with a specially crafted URL.
To find sites running this package all a hacker had to do was type the following into Google:
inurl:comersus_message.asp
Software identifies itself in other ways, too. There’s often a credit along the lines of “Powered by…”. Worse, some
packages even include the version number. The second that version is known to contain a flaw, hackers worldwide will scour
the web for vulnerable sites.
These credit lines are typically part of default installations and many publicly available templates or themes. It’s
generally fairly easy to remove them, especially if you develop your own theme. Go through the code and remove everything
that identifies the software, including any HTML comments or meta tags. But remember to check each time you upgrade the
software that these lines haven’t been reintroduced.
Software credits also find they way into <title> tags sometimes. And even when they don’t say “powered by…”, the page title
is often enough to identify your site — using Google’s intitle: operator — as running on a vulnerable version of the
software because the text is so specific to that page. There is little you can do about that other than ensure that your
software is always up to date.
Open directories
There is nothing a hacker loves more than an unprotected directory. If web server software receives a request that contains
a directory name, rather than a specific file, it will look for a default ‘index’ file — called ‘index.html’ or any one of
a number of other standard files depending on the server configuration. If it doesn’t find one, it will helpfully present a
list of files and sub-directories in that directory, with each filename clickable.
Web servers use standard terms in the page or title when they does this, so such open directories are easily found. Here’s
one way to find .txt, doc and .pdf files on the site www.example.com. The first section uses the negation modifier (‘-’)
with the inurl: operator to tell the search to ignore .html, .htm and .php files.
-inurl:(htm|html|php) intitle:"index of" +"last modified" +"parent directory" +description +size +(.txt|.doc|.pdf)
That will find examples across the web. Add "site:www.example.com" to search a specific site.
It’s surprising how often such directories contain text files with configuration, even password, information. (Beware,
however, if you experiment with this: the results generated by Google dorks aimed at password files often lead to honey
traps.) Even if the directory contains only harmless files — images, for example — the fact that your site has an
unprotected directory will draw hackers to it, who will have assumed that your security is shoddy. That’s not good.
It helps an attacker map the topography of your system. Some of those sub-directories, for example, might contain files
that you don’t want people to know about (although keeping such files in a publicly accessible part of the directory tree
is a bad idea to start with).
Google won’t necessarily find such directories if they are not referenced anywhere in your website, but that hardly counts
as protection.
This problem is very easily fixed. Always have an index file in every directory. A simple index.html or index.htm
(depending on server settings) will do it. It doesn’t even have to contain anything — so long as the server has something
to grab and serve up, it won’t provide a directory listing. A sensible solution, though, is to have index.html contain a
very basic web page, perhaps with a link to your home page.
Sensitive scripts
Some of the files left publicly available are there by mistake. Bizarrely, others are deliberate. Webmasters often allow
scripts to output logs. For instance, the following gives interesting information about a specific piece of bulletin board
software (just click through any messages that pop up):
inurl:CrazyWWWBoard.cgi intext:"detailed debugging information"
If you have administration software that reports on, perhaps, network performance, ask yourself if those reports need to be
available online. If so, make the pages that contain the output of any scripts password-protected directory.
Error messages
Hackers really hit paydirt when your site goes wrong. Error messages often contain useful data for the hacker. Not long
ago, The Register reported on a website that displayed a huge amount of PHP information due to an error. Google, of course,
duly indexed this. It’s not unknown for some site developers to enable a debugging mode that displays the output of the
phpinfo() function if there’s a problem. That function prints out a vast amount of information useful to a hacker. To see
some sites with this issue, try:
intitle:phpinfo "PHP Version"
Various kinds of software display standard (and thus searchable) messages when they hit a problem. For example, try
searching with:
"mySQL error with query"
These error messages may include database, table and field names — invaluable for SQL injection attacks — and even user
names. PHP, ASP and other scripting systems may produce errors that reveal directory structures, names of otherwise obscure
script files and other useful detail.
Even if the admin has since fixed the problem, so that the error message is no longer displayed, the fact that you’ve found
this site with a search means that the problem page, including the error message, is still in Google’s cache. So, on the
Google results page, you simply opt for the ‘Cached’ link.
Certain Google dorks will find default pages that might suggest a poorly installed or maintained site. Some of these will
reveal interesting information, for example:
intitle:"Apache Status" "Apache Server Status for"
This can reveal data about virtual hosts, directory structure and files.
It’s therefore wise to turn off error reporting for live sites — in the database, scripting language, CMS and any other
software you’re using. And to make sure that you have completed configuration for all installed software.
Security through obscurity
What Google dorks teach us is that there is no security through obscurity on the web — simply because there is no
obscurity. You might think that you’re the only one that knows where the login page is for your CMS, or that a certain file
is not linked from anywhere else and will not, therefore, be found by Google. But it’s a mistake to rely on this.
Even when a Google dork doesn’t reveal specific information, it can tell a hacker where to strat looking. For example,
there are dorks that reveal the login pages for administrators — pages that may not be linked ordinarily from the public
side of the site.
inurl:/admin/login.asp
Tools
This is just a taste of what Google dorks can achieve. Helpfully, there are tools available to automate Google hacking. One
of them is produced by Google itself: GoogleHacks.4 It’s somewhat basic, but script kiddies will love it.
The Cult of the Dead Cow group — notorious for the Back Orifice trojan — has released a Windows-only tool, Goolag.5 This is
rather more sophisticated. It comes with a database of Google Dorks, supplied in XML format, so it’s easily readable and
amendable. You can also specify your own searches.
By automating groups of Google Dorks, Goolag is a useful first step in penetration testing of your own sites. But there’s
no real substitute for working through the Google Dorks yourself, given that you will have some idea of where weaknesses
may lie.
Countermeasures
We’ve already outlined some of the measures you can take to protect yourself. The best approach is to Google hack your own
site, identify all those flaws that can be picked up by Google and fix them. Skilled hackers may still be able to use some
of these tricks to survey your site if they have already targeted it. But at least you won’t be advertising your problems.
To Google Hacking, you have to know the advanced Google search operators, which can include in the standard box searches
combined together or individually. Then I will put real examples of this, do not worry if you do not understand now. You
also have more information on Google guide on their advanced search commands . Here are the main commands Google Advanced
search:
"" (Quotation marks): Find exact phrase
and or not: logical operators "and" or "no"
+ And -: include and exclude. Ex: jaguar-cars: search for the word "jaguar", but omits the websites with the word "car"
* (Asterisk) wildcard, any word, but a single word
. (Dot): joker, any word, one or many
intitle or allintitle: a search term in the title
inurl and allinurl: the sought expression is in the url
site: searches only results in the web that goes behind "site:"
filetype: just looking for a type files (doc, xls, txt ...)
link: searches only pages that have a link to a web determined
inanchor: searches only pages that have anchor text in a search term
cache: displays the result in the Google cache of a website
related: looking websites related to a particular
Combining these operators, the hacker can get 7 types of information. Below I describe groups of information and I
italicize the codes to be put into the Google search box:
1) files with users and passwords: allowing the hacker to enter directly into your website. Examples:
ext: pwd inurl: (service | authors | the administrators | users) "-FrontPage-" Users and administrators keys to modify
the web. They look directly into Google, without going on the page. There are well over 1,100 key in Google
filetype: sql "# Dumping data for table" "` PASSWORD` varchar "Bases sql full dunks have user data and passwords. You can
make changes to the search string, to get other information. Here is an example of passwords at the University of Vigo.
Passwords are encrypted in md5, but just search Google and password hacker will find a forum where someone has decrypted
and leaves the original.
intitle: "index of" "Index of /" password.txt Servers with a file called password.txt. You can focus on countries with
site: .com or educational sites with site: .edu
filetype: inc intext: mysql_connect password -please -could -port Google gives more than 2,000 users and passwords for
MySQL
filetype: sql "MySQL dump" (pass | password | passwd | pwd) More passwords available in databases
"There are not the administrators accounts yet" "create the Super User" inurl: admin.php php nuke plants midway, asking
us to choose the administrator password.
2) pages with forms of access (typical window asking you username and password to enter): allowing them to perform a
dictionary attack (with lists of users and passwords more frequently combined). And if you can not get out there will use
brute force passwords with a testing program to get into. The hacker can use Brutus or other similar programs, to remove
passwords. Have more about this at: How to steal passwords wifi, windows, hotmail, gmail, Tuenti, msn, facebook, twitter or
yahoo? . Examples:
"You have Requested access to a restricted area of our website. Please authenticate yourself to continue. "Gateway to
the administration of the website. Almost 7,000 webs depart on Google when you search.
inurl: "10000" webmin Webmin is a program that allows you to manage remotely via a linux web server on port 10000, this
search gives over 5,000 servers that are enabled. Clicking calls us and password
"VNC Desktop" inurl "5800" VNC is a program that allows you to remotely administer the site and runs on port 5800 by
default. Similar to above.
intitle: "vnc viewer for java" another way to access people who have installed VNC. Google shows 4000 ordenarodres
ready to manage remotely.
inurl: /admin/login.asp gives the hacker 8 million different pages where you login
allintitle: Outlook Web Access Logon Login, which allows the hacker to view mails of a company
"Best concept is to create the super user" "now by clicking here" Installing php nuke half, which asks us administrator
password and carried login form. More than 100,000 are available on Google.
And the hacker can get millions of logins on WordPress sites by going to the / wp-admin or Joomla going to the folder /
administrator, which are the folders one by default and almost no changes
3) Files with usernames or error messages that reveal the username: this is what makes easier the hacker to attack with
dictionaries or Brutus , and simply take out the password to enter because sabem the user. Examples:
"Access denied for user" "using password" "general error" -inurl: phpbb "sql error" phpbb forums that give errors. They
give the user name and sometimes the server IP. In Google over 340,000 vulnerable forums appear.
4) Detecting web server version or versions vulnerable products: If the web server, or any of the programs installed on the
same, are not the latest version, almost always have security holes. The versions usually go to upgrade security holes.
Just Google the exploit, to enter the server. An exploit is a "program" or a way to exploit the vulnerability: there are
millions on the internet. The hacker can find searching Google exploits in Exploit Database or letting Metasploit Framework
discover them and run directly. Examples:
"SquirrelMail version 1.4.4" inurl: src ext: php A very bad and fáclmente jaqueable the mailer version. In 1940 Goolge
listed companies with the mailer, it's like they say: "hackéame, see my post"
"Powered by MercuryBoard [v1" ancient and security holes of this software for sending newsletters version. 188,000
Google results gives us.
intitle: "Welcome to Windows Small Business Server 2003" Google shows 17,000 servers with this outdated version of
Windows Server, the hacker does not know how to start ...
intitle: index.of "Apache / *" "server at" Da more than 500 million results on Google. Looking for Apache servers. *
Putting in place of a version with vulnerabilities, the hacker knows which servers can enter.
intitle: index.of "Microsoft-IIS / * server at" Same as above, but this shows "only" 600,000 servers, with their
corresponding versions.
5) online hardware devices (see webcams and surveillance cameras or remotely manage printers). With them you can spy
remotely (examples in How to spy webcams remotely? 6 reales cases And how do you protect yourself? ), give scares printing
files in non printers, see what is printed on a business, managing the systems of heating remotely to your whim, etc.
Examples:
linksys camera inurl: main.cgi 700 cameras available for a hacker to see us. Needless password to enter
inurl: "ViewerFrame Mode =" 83,000 available cameras to spy without a password
"Active webcam page" inurl: 8080 More cameras available on port 8080
intitle: "toshiba network camera - User Login" 15,000 more cameras
intitle: "ivista main page" more cameras
intitle: "i-catcher console" "please visit" and yet
inurl: WEBARCH / mainframe.cgi Printers lists to manage remotely
intitle: "network print server" filetype: shtm and printers waiting for hackers
6) files with sensitive information or sensitive directories on a server. Examples:
"Phone * * *" "address *" "e-mail" intitle: "curriculum vitae" We get phone, name, email and postal address over more
than 573,000 people. You could also do the equivalent in Spanish.
filetype: ctt files with lists of e-mails. Over 4,000 files available on Google.
"Robots.txt" "disallow:" filetype: txt in the robots.txt file the webmaster says what parts of your site that Google
does not want to show, ie the confidential information of the web, which is what you want to watch 1 a hacker. Making a
previous search, Google shows over 2 million websites with robots.txt file, which tell the hacker their most sensitive
information.
allintitle: restricted filetype: doc site: gov Find "interesting" information sites governments. You can change
"restricted" to "top secret" or "confidential". And "doc" for "pdf" or "txt". O "gov" for "thousand" to military sites ...
passwords | passwords | login | password filetype: txt site: web.com Search passwords and logins to web documents txt
web.com. You can go changing the filetype or web, to have different results.
inurl: intranet filetype: doc confidential Like the previous two, admits variations
"Index of" / "chat / logs" chat logs stored on servers
index.of.dcim 300,000 pages folders with photos for download. DCIM stands for Digital Camera Image Dumps, and is the
name that comes by default in the folders of photos from digital cameras. This search displays people who have uploaded
photo folders such a web which, without even changing the name.
intitle: index.of "parent directory" List of directories on a server, to see the folders and explore. They are the
classics. Others with similar functions are:
intitle: "index of" "Index of /"
intitle: "index of" inurl: "admin"
intitle: index.of passwd can browse and find the server password files. Often does not work, because people have made
websites with virus to exit up in that search and that "lammers" bite and prick the links, so I do not put it in paragraph
1 of this collection ...
7) Supporting information access. Examples:
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext: log Processes running on the server so you know
what antivirus is, if you have firewall ...
inurl: ": 8080" -intext: 8080 Servers that run services on port 8080. Sometimes just click the url is entered directly,
sometimes asks login, sometimes it is "confidential" or sometimes information are normal websites. There are more than 1
million results on Google.
intitle: index.of ws_ftp.log FTP access logs, including local file paths that are uploaded and hours of climbing. More
than 1 million logs available on Google.
site: sitio.com -site: www.sitio.com used to know subdomains, intranets, domains for mail management, etc. Usually
produce several windows login.
intitle: "the page can not be found" "please * * following" "Internet * Services" lets you know the server type.
This was only a summary, not intended to be exaustivo. There are databases of Google dorks, as they are called these
"failures" of Google in: Exploit Database Google Dorks and Google Hacking Database . There Google Dorks for each plugin or
WordPress or Joomla module that have vulnerabilities. The Google Dorks let them down and hack websites with outdated
plugins.
Finally, there are programs that allow you to automatically test all vulnerabilities in a website that displays Google, to
not have to go looking for one. Some of the programs that do this are:
Site Digger: recommended,
Wikto
SearchDiggit
Athena (from snakeoillabs.com): warning!!! it violates Google policy, because it uses GoogleApi for requests
Gooscan: not recommended for the same reason as above
**********
References
------------
1. http://johnny.ihackstuff.com/ghdb.php
2. Google Hacking for Penetration Testers (Syngress, 2005, 2007) — available from Amazon. Volume 1, co-written with Ed
Skoudis and Alrik van Eijkelenborg seems to be out of print.
3. GoogleGuide.com — a handy reference for making the most from Google searches, including a two-page cheat sheet at:
http://www.googleguide.com/print/adv_op_ref.pdf
4. GoogleHacks — Google’s own hacking tool for Windows, Linux and Mac OS X can be found here:
http://code.google.com/p/googlehacks/
5. Goolag – http://www.goolag.org/download.html
(
6.)
---------------------------------------------------------------------------------------------------------------------------
---------------
---------------------------------------------------------------------------------------------------------------------------
----------------
--------------------------------------------------------ASCII Character
Codes----------------------------------------------------------------
==================================================================================================================
ASCII Character
Codes
Use these ASCII codes when you need to enter an escape value for specific characters. The escape code for the ASCII
character you want from the table below, should be entered as
'&#xx;' where the xx is replaced with the number for the character. For example, to enter the code for the ® character,
you would enter ®
Use these ASCII codes whenever you need an escape code, for HTML or JavaScript.
33 = !
34 = "
35 = #
36 = $
37 = %
38 = &
39 = '
40 = (
41 = )
42 = *
43 = +
44 = ,
45 = -
46 = .
47 = /
48 = 0
49 = 1
50 = 2
51 = 3
52 = 4
53 = 5
54 = 6
55 = 7
56 = 8
57 = 9
58 = :
59 = ;
60 = <
61 = =
62 = >
63 = ?
64 = @
65 = A
66 = B
67 = C
68 = D
69 = E
70 = F
71 = G
72 = H
73 = I
74 = J
75 = K
76 = L
77 = M
78 = N
79 = O
80 = P
81 = Q
82 = R
83 = S
84 = T
85 = U
86 = V
87 = W
88 = X
89 = Y
90 = Z
91 = [
92 = \
93 = ]
94 = ^
95 = _
96 = `
97 = a
98 = b
99 = c
100 = d
101 = e
102 = f
103 = g
104 = h
105 = i
106 = j
107 = k
108 = l
109 = m
110 = n
111 = o
112 = p
113 = q
114 = r
115 = s
116 = t
117 = u
118 = v
119 = w
120 = x
121 = y
122 = z
123 = {
124 = |
125 = }
126 = ~
127 =
128 = €
129 =
130 = ‚
131 = ƒ
132 = „
133 = …
134 = †
135 = ‡
136 = ˆ
137 = ‰
138 = Š
139 = ‹
140 = Œ
141 =
142 = Ž
143 =
144 =
145 = ‘
146 = ’
147 = “
148 = ”
149 = •
150 = –
151 = —
152 = ˜
153 = ™
154 = š
155 = ›
156 = œ
157 =
158 = ž
159 = Ÿ
160 =
161 = ¡
162 = ¢
163 = £
164 = ¤
165 = ¥
166 = ¦
167 = §
168 = ¨
169 = ©
170 = ª
171 = «
172 = ¬
173 =
174 = ®
175 = ¯
176 = °
177 = ±
178 = ²
179 = ³
180 = ´
181 = µ
182 = ¶
183 = ·
184 = ¸
185 = ¹
186 = º
187 = »
188 = ¼
189 = ½
190 = ¾
191 = ¿
192 = À
193 = Á
194 = Â
195 = Ã
196 = Ä
197 = Å
198 = Æ
199 = Ç
200 = È
201 = É
202 = Ê
203 = Ë
204 = Ì
205 = Í
206 = Î
207 = Ï
208 = Ð
209 = Ñ
210 = Ò
211 = Ó
212 = Ô
213 = Õ
214 = Ö
215 = ×
216 = Ø
217 = Ù
218 = Ú
219 = Û
220 = Ü
221 = Ý
222 = Þ
223 = ß
224 = à
225 = á
226 = â
227 = ã
228 = ä
229 = å
230 = æ
231 = ç
232 = è
233 = é
234 = ê
235 = ë
236 = ì
237 = í
238 = î
239 = ï
240 = ð
241 = ñ
242 = ò
243 = ó
244 = ô
245 = õ
246 = ö
247 = ÷
248 = ø
249 = ù
250 = ú
251 = û
252 = ü
253 = ý
254 = þ
------------------------------------------------------------------------------------------------
--------------------------------------------------------------------------------------------------
( 7.) COMMAND LINE TOOLS AND THEIR REFERENCES
----------------------------------------------------------------
1. sqlcmd
The sqlcmd utility lets you enter Transact-SQL statements, system procedures, and script files at the command prompt, in
Query Editor in SQLCMD mode, in a Windows script file or in an operating system (Cmd.exe) job step of a SQL Server Agent
job. This utility uses ODBC to execute Transact-SQL batches.
-a packet_size
-A (dedicated administrator connection)
-b (terminate batch job if there is an error)
-c batch_terminator
-C (trust the server certificate)
-d db_name
-e (echo input)
-E (use trusted connection)
-f codepage | i:codepage[,o:codepage] | o:codepage[,i:codepage]
-h rows_per_header
-H workstation_name
-i input_file
-I (enable quoted identifiers)
-k[1 | 2] (remove or replace control characters)
-K application_intent
-l login_timeout
-L[c] (list servers, optional clean output)
-m error_level
-M multisubnet_failover
-N (encrypt connection)
-o output_file
-p[1] (print statistics, optional colon format)
-P password
-q "cmdline query"
-Q "cmdline query" (and exit)
-r[0 | 1] (msgs to stderr)
-R (use client regional settings)
-s col_separator
-S [protocol:]server[\instance_name][,port]
-t query_timeout
-u (unicode output file)
-U login_id
-v var = "value"
-V error_severity_level
-w column_width
-W (remove trailing spaces)
-x (disable variable substitution)
-X[1] (disable commands, startup script, environment variables and optional exit)
-y variable_length_type_display_width
-Y fixed_length_type_display_width
-z new_password
-Z new_password (and exit)
-? (usage)
----------------------------------------------
2. The CUM Security Toolkit
The CUM Security Toolkit contains two tools: a script scanner, and a port
scanner - both are written in Java. You need a
Java runtime environment to
run them, check http://java.sun.com/ for one (look for j2se or a Java virtual
machine).
The script
scanner has various anti-IDS options, supports multiple proxy
servers and comes with big editable script databases.
The port
scanner is a simple TCP scanner with banner output (so it shows what
reply comes from an open port) and has the ability to
send custom strings to
the open ports, so it's more like an enumeration / stress tool.
1) The CST scriptscanner:
-------------------------
To scan a server, start cst_cgis.class like this:
java cst_cgis -db:<scandb> -d:<dir> -h:<host>
-
db:<scandb>
------------
<scandb> is the database with scripts to scan for - in this release, there
are 3 that come
standard: cst_unx.db , cst_win.db and big.db
cst_unx.db is best suited for all types of Apache, NCSA etc. webservers
cst_win.db is best suited for IIS, Lotus-Domino, Netscape etc. webservers
big.db when you're not sure, or really want
to test *alot* - this one
contains over 1600 files/dirs to check - not recommended to scan a host
that's not
yours since it will make alot of noise in the logs
If you think the scanner should scan for an extra directory or file,
you
can add the directory/file into one of the two databases with a texteditor
of your choice (vi, pico, notepad...), or
you can create a new database.
Suppose you want to add a check for "newscript.cgi", which is normally found
in the bin
directory, you can add this in the cst_unx.db as:
/$CSTBINDIR$/newscript.cgi
When supplied to the scriptscanner, this
will scan for the script
"newscript.cgi" in the scriptdir supplied on the command line.
If you want to add a certain
script that always gets installed in the same
directory, for example /secretfiles/password.pl, you can add this on a new
line in a database:
/secretfiles/password.pl
If you have a good custom database, or know some extra directories/files
to scan for, please let us know via email: webmaster@blackhat.be or go to
our site ( http://www.blackhat.be/ ) - in the
cst section we have a form
where you can submit new scripts to check, and there you can also download
the latest scan
databases
-d:<dir>
--------
With this option, you can specify in which scriptdir the scanner should scan
for certain
standard scripts -- for an Apache Unix webserver, you would
normally use the flag:
-d:cgi-bin
The scriptscanner will
then substitute all "$CSTBINDIR$" strings in the db
with the directory supplied, and scan them on the target server.
-
h:<host>
---------
With this flag, you can specify which server to scan, so if you want to scan
www.test.net , you would
add the flag:
-h:www.test.net
If you want to scan for scripts on another port than the standard port 80
on the target
server, you can supply an extra :<port> after this flag, so
if you want to scan www.test.net for scripts on port 81, you
would add the
flag:
-h:www.test.net:81
-H:<hostfile>
-------------
With this flag, you can specify a list with
servers to scan. If you have a
file "serverlist" with in it a list of servers, you would add the flag:
-H:serverlist
In this file, each server needs to be on a new line. You can still use the
":<port>" option after a server to specify a
port different from the
standard port 80.
sample hostfile:
www.test.net
www.test.com:81
www.test.org
Notes: -
both names and IP's can be used (for the hostfile and single host).
- if you specify a hostfile, you can still add
1 more server on the
commandline with the -h:<host> flag - so both flags can be used
together.
- the CST scriptscanner sends a "Host:" header along with the request
so it can successfully scan virtual
domains.
These first three arguments are mandatory - if you do not supply them, you
will get the following errorscreen:
<-- START ERRORSCREEN--
cst_cgis -db:<scandb> -d:<dir> [-h:<host> or -H:<hostfile>]
-db:<scandb> = The database with
files to scan [+]
-d:<dir> = The scriptdir to use (cgi-bin, bin, scripts, ...) [+]
-h:<host>
[:<port>] = Server to scan (+ port [standard 80]) [+]
-H:<hostfile> = File with hosts to scan
[+]
-p:<proxy>[:<port>] = Proxyserver (+ port [standard 8080])
-P:<proxylist> = File with proxyservers + ports to
use
-l:<logfile> = Logfile to use (standard cst_cgis.log)
-ai1 = Anti-IDS 1 - Hexadecimal values
-ai2 = Anti-
IDS 2 - Double slashes
-ai3 = Anti-IDS 3 - Self-reference directories
-ai4 = Anti-IDS 4 - Session splicing
-ai5
= Anti-IDS 5 - Parameter hiding
-ai6 = Anti-IDS 6 - HTTP misformatting
-ai7 = Anti-IDS 7 - DOS/Win directory syntax
-ai8 = Anti-IDS 8 - Case sensitivity
-ai9 = Anti-IDS 9 - NULL method processing
-ai10 = Anti-IDS 10 - Long URLs
-ai11 = Anti-IDS 11 - Premature request ending
-go = Use google searchstring referer
-nf = Don't show 403
(forbidden) answers
-sc:<x>[,<y>,<z>] = Show answers starting with <x>
-get = Use GET instead of HEAD
-
w:<seconds> = Waittime between 2 downloads (standard 0 sec)
-t:<seconds> = Specify timeout (standard 30 sec)
<-- END
ERRORSCREEN--
As you can see, you can also scan a server using a proxyserver, this with
the option -p:<proxy>
-p:<proxy>
----------
This option let's you specify a proxyserver to use for the scan, for example
if you want to use www.proxy.net
to scan the Apache 1.3.27 webserver
www.test.net , you would start the scriptscanner like this:
java cst_cgis
cst_unx.db -d:cgi-bin -h:www.test.net -p:www.proxy.net
This will use the server www.proxy.net on port 8080 for the scan.
If you
want to use another port for the proxyserver, you can supply one by adding
:<port> to the -p:<proxy> flag, so
suppose the proxyserver on www.proxy.net
resides on port 81, you would start the scriptscanner like this:
java cst_cgis
cst_unx.db -d:cgi-bin -h:www.test.net -p:www.proxy.net:81
-P:<proxylist>
--------------
This option let's you specify a
list with proxyservers to use for the scan.
Each proxy needs to be on a new line, and you can optionally specify the
proxyport with a ":<port>" after the proxy (if no port is specified, port
8080 will be used).
an example of a valid
proxylist:
www.proxy1.com
www.proxy2.com:81
www.proxy3.com
www.proxy4.com:8181
www.proxy5.com:9001
...
you get the point. (Note that the proxy needs to be put in the beginning of
a new line -- the example here has spaces in
front - you'll have to get rid
of them.)
You don't need as much proxies as you have scripts in your scandb (but that
would be optimal ofcourse). If the scanner reaches the end of the proxylist
before it reaches the end of the scriptdb, it
will cycle through the list
again from the beginning.
-l:<logfile>
------------
The scriptscanner saves (appends) the
full screen output to a file called
cst_cgis.log in the same directory as the scriptscanner. If you wish to
save the
results in another file, you can use the -l:<logfile> option to
specify another file. If the file you specify already
exists, the result
will be appended to the file.
-t:<seconds>
------------
With this option you can specify the I/O
timeout to use for the scan.
Without this option, the scanner uses a 30 second timeout.
-w:<seconds>
------------
With
this option, you can supply a certain ammount of seconds to wait
between each script fetch - if you do not use this
option, the scriptscanner
will scan for all scripts/dirs as fast as possible (so without waiting
between the downloads) -
so if you want to be a bit more "undercover", you
can supply a waittime to spread the scan a bit in the target logs.
So,
if you want to use the proxyserver www.proxy.net to scan the
Apache 1.3.27 webserver www.test.net , using a waittime of 20
seconds
between each download, you would start the scriptscanner like this:
java cst_cgis cst_unx.db -d:cgi-bin -
h:www.test.net -p:www.proxy.net -w:20
To hide your scan even more, the CST scriptscanner has +11 different
Anti Intrusion
Detection Systems:
-ai1
----
When supplying this option, the scriptscanner will substitute certain
characters of the
script/dir to scan with their corresponding hexadecimal
value, so scanning for /cgi-bin/test-cgi will look like this:
/cg%69-b%69n/t%65st-cg%69
-ai2
----
When supplying this option, the scriptscanner will substitute each slash
with a
double slash - so /cgi-bin/test-cgi will become:
//cgi-bin//test-cgi
Note: - This option does not work for scanning
Lotus-Domino (4.6.3) and
Netscape-Enterprise (3.5.1) webservers.
-ai3
----
When supplying this option, the
scriptscanner will substitute each slash
with a slash-dot-slash - so /cgi-bin/test-cgi will become:
/./cgi-bin/./test-
cgi
Note: - This option does not work for scanning Lotus-Domino (4.6.3) and
Netscape-Enterprise (3.5.1)
webservers.
-ai4
----
When supplying this option, the scriptscanner will split the request in
smaller packets (2 to 4
byte), and send those to the target.
Note: - This option can't be used with a proxyserver, since a proxyserver
reassembles the packets, and sends that to the target - so when
supplying this option, NO proxy is used, even if
you do supply one
on the command line.
-ai5
----
When supplying this option, the scriptscanner will "hide" the
script/dir
request in a html parameter - so /cgi-bin/test-cgi will become:
/index.html%3Fparam=/../cgi-bin/test-cgi
Note: - This option does not work for scanning Netscape-Enterprise (3.5.1)
webservers.
-ai6
----
When supplying
this option, the scriptscanner will "misformat" the HTTP
request. A request must look like this (according to the RFC
standards):
method<space>URI<space>HTTP/<version><CRLF><CRLF>
This option will send a <tab> instead of a <space>
Note:
- This option does not work for scanning Netscape-Enterprise (3.5.1),
IIS or Lotus-Domino (4.6.3) webservers. It
does work for Apaches.
- If you're using a proxy server, the proxy needs to support this,
and this isn't
always the case.
-ai7
----
When supplying this option, the scriptscanner will substitute any "/"
with a "\" (starting
from the second "/").
For example /scripts/secretfiles/password.lst will become:
/scripts\secretfiles\password.lst
Note: - This option works for most DOS/Windows based webservers.
-ai8
----
When supplying this option, the scriptscanner
will turn the script into
uppercase. For example /scripts/secretfiles/password.lst will become:
/SCRIPTS/SECRETFILES/PASSWORD.LST
Note: - This option works for most webservers running on a case insensitive
operating system (Windows, DOS, Novell).
-ai9
----
When supplying this option, the scriptscanner will add a NULL
character
before the script-to-scan. A request for /data/secretfile.mdb will look
like this:
HEAD
/data/secretfile.mdb HTTP/1.0
Note: - This option only works for IIS webservers (it sometimes does work
for
Apaches but only when the response is 403, so it's quite
useless then).
-ai10
-----
When supplying this option,
the scriptscanner will add about 2K of chars
before the actual script. So /cgi-bin/test-cgi will become:
/dsfjkgdjfg...[around2kofgarbage]...sdfkjsd/../cgi-bin/test-cgi
-ai11
-----
When supplying this option, the
scriptscanner will send a request for the
target index page, and request the script in one of the Headers.
A request for
/cgi-bin/test-cgi will look like this:
GET / HTTP/1.0%0d%0aHeader:%20/../../cgi-bin/test-cgi HTTP/1.0%0d%0a%0d%0a
These
11 options all try to hide the scan in the target logs (the requests
will still be in their logs, but if they use certain
"grep"-style log-
analysers, or even some smart Intrusion Detection System (IDS), they won't
notice the scan).
Please
note that you can supply more than one anti-IDS at a time, supplying
-ai1 , -ai3 and -ai5 at the same time will change
/cgi-bin/test-cgi to:
/index.html%3Fparam=/.././cg%69-b%69n/./t%65st-cg%69
although not all combinations will work.
Note: - When supplying both -ia2 and -ia3, the first substitution will be
/ -> // and then / -> /./ -- so /
becomes /.//./ and not //.//
For further anonimity, the scriptscanner also sends a fake
"X-Forwarded-For:" header with a
random IP, generated every time you
start the scriptscanner, and a fake browser version, taken out of the
file
cst_agents.db (cst cycles through the cst_agent.db - so when it
reaches the end, it starts from the beginning again).
If
wanted, you can also let cst send a fake "Referer:" header, showing
a Google search query ("how to install <scriptname>"),
you can do
that by supplying the flag "-go" on the command line.
-get
----
When requesting the scripts/dirs, the CST
scriptscanner uses standard a HTTP
HEAD instead of a GET (because HEAD is faster). If you want to use a GET
instead of
HEAD, you can supply this option.
-nf
---
When you supply this option, the scriptscanner won't show files returning
a
403 (forbidden) return code. This can be usefull for scanning servers that
always return a 403, even if the file doesn't
exist (like most IIS servers).
-sc:<x>[,<y>,<z>]
-----------------
This version shows a message when the HTTP return
code for the script/dir
is either 200, 201, 202, 204, 403 or 401.
If you want the scriptscanner to output other HTTP
return codes, you can
use this option. <x> is either a full return code (like 500) or a part
of a code.
If you want the
scriptscanner to output the return code 500 too, you use
the flag -sc:500
If you want the scriptscanner to output the
codes 500 and 400 too, you use
the flag -sc:500,400
Partial codes are also allowed, so if you want the scanner to output
the
400 return code and all codes starting with a 5, you would use the flag:
-sc:5,400
2) The CST port scanner:
------------------------
To portscan a server, start cst_ports.class like this:
java cst_ports [-h:<host> or -H:<hostfile>]
-p:<port1>[-<port2>,<port3>,...]
-h:<host>
---------
This is the address/IP of a single server you want to portscan
-
H:<hostfile>
-------------
With this flag, you can specify a list with servers to portscan. If you
have a file
"serverlist" with in it a list of servers, you would add the
flag:
-H:serverlist
In this file, each server needs to be
on a new line.
-p:<port1>[-<port2>,<port3>,...]
--------------------------------
You can use two ways to supply which
ports to scan:
<port> - a single port, ex: 22
<porta>-<portb> - a portrange, ex: 20-1024 or 1000-800
You
aren't limited to 1 port or portrange, suppose you want to portscan
www.test.net on the ports 21, 22, 23, 25, 80, 110, and
200 to 1024, start
the portscanner like this:
java cst_ports -h:www.test.net -p:21-23,25,80,110,200-1024
Note: if you
supply a portrange in descending order, these ports will also
get scanned in that order.
-s:<string>
-----------
Standard the portscanner sends the string "HELP\n\n\n" (without the quotes)
to each open port. If you want it to send a
different string, you can supply
one on the command line with the -s: option. It supports all characters,
and the
following escape sequences: \n, \t, \b, \r, \f, \0
If you're running the portscanner in a windows environment, you can
just use
the escape sequences as is, for example to send "\nHELP\n" you would use:
java cst_ports -h:www.test.net -p:22
-s:\nHELP\n
In a unix environment you'll have to escape the escape sequences, otherwise
they get interpreted by the
shell, so te send "\nHELP\n" then you would use:
java cst_ports -h:www.test.net -p:22 -s:\\nHELP\\n
If you know any
interesting strings to send, let us know.
-l:<logfile>
------------
The portscanner saves (appends) the full screen
output to a file called
cst_ports.log in the same directory as the scanner. If you wish to save the
results in another
file, you can use the -l:<logfile> option to specify
another file. If the file you specify already exists, the result will
be
appended to the file.
At the moment, the CST portscanner isn't really advanced - it can only
perform full-connection
TCP scans, no UDP yet, and no threads either (this
will be improved in some next version of CST).
If you forget an
option, you'll get an errorscreen:
<-- START ERRORSCREEN--
cst_ports [-h:<host> or -H:<hostfile>] -p:<port1>[-
<port2>,<port3>,...]
-h:<host> = Host to scan [+]
-H:<hostfile> = File with
hosts to scan [+]
-p:<port>,<porta>-<portb> = Single port or range to scan [+]
-
s:<string> = String to send to open port
-l:<logfile> = Logfile to use (standard cst_ports.log)
<-- END ERRORSCREEN--
3)
(
Z.)
------------------------------------------------------------------------------------------------------
-----------------------------------------------------------------------------------------------------
-----------------Random potluck- CHECK BACK TO CATCH NEW ADDITIONS!!
...----------------
------------------------------------------------------------------------------------------------------
( A.)
===============================================================
Voucher Shell Protocol - rev 0.9.9 14th March, 2014
o Connect to a Jabber server (anonymous login to OFS):
connect <host> <port> [xmppdomain]
The <host> and <port> refer to the OFS.
The optional [xmppdomain] should be specified whenever the XMPP domain of the
OFS is not the same as the host.
example:
vsh> connect ofs.comoro.net 5233 test.comoro.net
Note that this can also be specified via the -h, -p, and -x arguments passed
to the CLI on the command line. Connection is automatic on startup;
hence this command is meant for switching between OFSen.
o Log in to a voucher safe:
login [-a] [ -v <vsnum> -p <pin> -l <long-phrase> -h <passphrase> ]
example:
vsh> login -v foobar-123 -p 0007 -l JamesBond -h LiveAndLetDie
If the VS number does not contain a domain, the value of prefPublisher in
the ~/.vouchers/.vshrc properties file is assumed. Anything not supplied
will be prompted for; long-phrases may be specified in full using -l, else
3 specific characters will be requested rather than the full phrase.
The -a flag indicates that the CLI should auto-login to the VS whose number
and login credentials are specified in the properties file
$HOME/.vouchers/.vshlogin. Any other arguments passed will override the
corresponding setting in that file. (This mechanism is chiefly intended for
use in cases where the CLI is invoked by a web server processing an incoming
payment on a merchant website.)
Note: a system file-locking mechanism is utilized as a semaphore to prevent
simultaneous logins into the same VS, even by separate instances of the CLI.
If a duplicate login is attempted, it will block waiting for the lock to be
released. If this does not occur within 30 seconds, the waiting login will
timeout and fail.
o Log out of a voucher safe:
vsh> logout
Purges any tokens spent at the SDS or DHT, and destroys data structures.
Releases system login lock on the VS. Does not disconnect from the OFS.
o Disconnect from an OFS:
vsh> disconnect
Terminates the XMPP server connection. Performs implicit logout if
presently logged in.
o Terminate the voucher shell:
quit|bye|exit
Performs implicit logout and disconnect if needed, and exits the CLI.
example:
vsh> quit
o Display the CLI build version and date:
vsh> version
o List voucher safe contents following login:
For vouchers:
ls vouchers [-t] [-s <serial>] [-u <units>] [-a <asset>] [-e <expiration>]
[-i <issuer>]
Retrieves, decodes, and displays vouchers in safe. The -t flag shows a
value total in the user's currency preference. The -s flag lists only
vouchers matching the indicated serial number. The -u and -a flags
restrict the listing to vouchers denominated in the given units or asset
type. The -e flag shows only vouchers expiring before a given date,
which must be in yyyy-MM-dd format. The -i flag restricts the listing
to vouchers from the particular Issuer.
For tokens:
ls tokens [-l] [-i <issuer>]
The -l flag shows the actual tokens rather than just the count of tokens
available. The -i flag restricts the count or listing to tokens from
the particular Issuer.
For receipts:
ls receipts [-t <vsnum>] [-f <vsnum>]
Retrieves, decodes, and displays receipts in safe. The -t flag
restricts listing to receipts TO the indicated VS. The -f flag
restricts listing to receipts FROM the indicated VS.
For pending payments:
ls pend[ing|pay]
Retrieves, decodes, and displays payments outstanding (awaiting pickup)
made to other safes.
Examples:
vsh> ls vouchers -a USV -e 2014-11-30
vsh> ls tokens -l
vsh> ls receipts -f somebody-1234
vsh> ls pendpay
o To make a payment:
pay -v <vsnum> -q <quantity> [-u <units>] [-a <asset>] [-t <ttl>]
[-b <cnt> k1=v1 k2=v2 ...] [-B <filename>] [serial#1 serial#2 ...]
The payee VS and quantity (amount) are required. The payee must be in
the same publisher domain. Optional arguments are as follows:
-u specify the units of the quantity
-a specify the asset type
-b specify a count followed by a list of "baggage field" name=value pairs
-t specify the number of days for payment pickup (integral 1-7)
serial# stipulate which voucher(s) are to be used to fund payment
(if none are specified, vouchers will be auto-selected oldest first)
OR:
-B filename read payees and amounts from an external file, and perform
multiple payments
examples:
vsh> pay -v buddy-9876 -q 100 -a EUROS
vsh> pay -v merchant-8765 -q 29.95 -u USD -t 4 -b 1 orderId:123456
vsh> pay -v buddy-9876 -q 1000 87384390 37483974 23237289
Note that asset types and units may imply one another, e.g. asset type
of EUROS implies units=EUR. However, an asset may support multiple
units, e.g. -a GOLD -u OUNCES can be valid even if vouchers are denominated
in GRAMS.
A payment operation automatically picks up the confirmation record off
the DHT, and stores a pendpay record on the SDS. Note this operation performs
implicit refreshes of vouchers and tokens.
For batch payments, each line of the lines in the file must look like this:
payeeVS::amount:units:asset[:message]
subject to these rules:
- If the payeeVS omits the @publisher, this will be inferred from login.
All payments in the batch must utilize the same publisher, whether stated
or implied.
- The amount, units, and asset must all be provided explicitly. However,
the units field may be a voucher unit, or any supported currency code.
The units and asset fields are case-insensitive.
- The -t flag, if provided together with -B, applies to all payments.
- Only a single baggage field is supported, which will be used as Message.
- All other "pay" options are ignored.
Some sample batch file entries:
bob-1234::1.0:GAU:GOLD
alice-2345::0.5:GAU:gold:thanks
joecustomer-3456::19.95:USD:USDOLLARS:"refund on order #54321"
foobar-4567@vouchi.com::99.95:usd:EUROS:"purchase order ABC9876"
IMPORTANT NOTE: while the above four lines are all valid examples of a
payment batch file entry, it is not possible to perform payments involving
vouchers from different Issuers, with differing asset types, in the same batch.
Therefore, when doing batch payments, make sure that:
1. All payments in the file pertain to a single voucher asset type.
2. Your source voucher safe contains ONLY vouchers from an Issuer which
supports that voucher asset type, of sufficient value to perform all of
the indicated payments.
o To perform housekeeping (pickup of payments and receipts):
refresh|housekeeping|fetch
This retrieves, decodes, and processes all unmarked records on the DHT.
It also attempts to recover any outstanding payments whose TTL has
expired. A non-automatic mode, where the user lists and specifies
individual items to process, is possible but not yet implemented. Note
this operation performs implicit refresh of vouchers, tokens, and pendpays.
example:
vsh> refresh
o Receive an expected incoming voucher payment
receive [-v VS# ] [-b field:value]
This operation is a kind of special case for housekeeping, which will search
for an incoming payment matching the search criteria and pick up that payment
*only*, ignoring any other housekeeping tasks. It is intended for use when
the CLI is being invoked by a webserver on a merchant web site. The payment
search criteria can be specified as follows:
-v <VS number> retrieve the first payment found from the indicated VS
-b <field:value> retrieve the first payment found having a baggage field
named <field> whose value is <value>
(It is valid to specify both criteria.)
example:
receive -b orderId:123456
This command performs an implicit "login -a" if the CLI is not presently logged
in when the receive is executed. Tokens will be auto-purchased as needed, in
the lot size specified by the value of tokenLotSize in the properties file
$HOME/.vouchers/.vshrc. The CLI will auto-logout, disconnect from the OFS,
and exit following completion. One of the following will be returned, as
the last line of CLI output:
NOT FOUND - if no payment matching the search criteria was found on the DHT
JSON string - if the payment was picked up successfully
err message - if an error occurred
The JSON string returned on successful pickup is of the following form:
{ "PAYER":"<VS number>",
"AMOUNT":<amount of voucher>,
"UNITS":"<units of voucher>",
"ASSET":"<voucher asset type>",
"ISSUER":"<voucher issuer>",
"<bagfield1>",<baggage value>,
"<bagfield2>",<baggage value>,
"<bagfield3>",<baggage value>
}
where the 0-3 baggage fields are optional, and will be included only if present
in the voucher payment. By checking e.g. orderId value, a web server can
parse the JSON output and determine what back-end processing should be done.
A copy of the receipt sent to the payer is also stored in the VS. (Receipts
contain copies of all baggage fields.)
The CLI can be triggered to perform just a single receive operation by passing
it the "-w" (or "--web") argument on the command line, immediately followed by
the -v or -b flag search criteria.
example:
<?php
$json = exec("java -jar ./voucher-cli.jar -w -b orderId:9876");
?>
Following successful pickup, if the newly added voucher brings the total number
of vouchers from that Issuer to 10 or more, an implicit merge will be performed
before the CLI logs out. This is to ensure that processing time does not
increase linearly with the number of successful payments received (since all
vouchers must be decoded following each login).
o Manual token purchase:
buy -n <count> [serial#1 serial#2 ...]
This performs a purchase of the indicated number of tokens. The type of
tokens is inferred either from defaults or from the payment voucher(s)
whose serial number(s) were provided. Note that token purchases are
always performed automatically on an as-needed basis, in a lot size
specified in the preferences file (see below). The count must be between
10 and 200.
example:
vsh> buy -n 100
o Remove unwanted receipts:
rm receipts [index#] [-a]
This is meant to be used following a "ls receipts" command. An
individual receipt may be deleted by specifying its index number in the
listing. The -a flag purges all receipts in the safe at once.
example:
vsh> rm receipts -a
o Purge an expired voucher:
rm voucher <serial#>
The voucher to be removed must be past its expiration date.
It would also be a good idea to attempt to redeem it first.
example:
vsh> rm voucher 8454973904
o Merge two or more vouchers together:
merge -i <issuer> <serial1> <serial2> [serial3 ... serial25]
The vouchers designated must be of consistent Issuer, asset, and unit types.
The maximum number of vouchers which can be merged in a single operation is 25.
example:
vsh> merge 234832 374830 293841
****The following commands are defined but not yet implemented:****
* Split a voucher into smaller vouchers:
split <serial#> val1 [val2 val3 ...]
The given values must sum to an amount less than or equal to the value
of the voucher. Any difference may be left implied as the value of the
final voucher.
* Revalidate a voucher nearing its expiration:
validate <serial#>
* Verify the signature on a receipt using the signer's key:
verify <index#> [-x]
The index number refers to the receipt's label in the output of "ls
receipts". The -x flag also causes the receipt's XML text to be emitted.
* Manually pick up an incoming payment or receipt:
pickup <index#> [-a] [-m "message"]
The index number refers to the label in the housekeeping list. The -a
flag triggers automatic processing of the entire list. The -m flag
allows the user to specify a message to be sent back to the payer on an
incoming payment (ignored for a receipt).
* Manually recover an expired pending payment:
recover <index#>
The index number refers to the label of the payment in the output of "ls
pending".
* Attempt to redeem an expired voucher:
redeem <serial#> [-r]
The voucher to be redeemed/renewed must be past its expiration date.
In addition, the Issuer of the voucher must support either renewal or
redemption into an associated account. Issuers may support either, both,
or neither of these policies for handling expired vouchers.
To use redemption, the Issuer may require you to have an account which is
associated with your VS number. Said account may be subject to KYC.
The -r flag attempts a simple renewal (for a fresh voucher), similar to the
validate command, except that it acts on expired vouchers (which cannot
be revalidated).
Since this functionality is not yet implemented, if deletion of an expired
voucher (see rm voucher) is to be avoided, attempt to renew or redeem using
a graphical client first.
example:
vsh> redeem 9454273904 -r
* Show the current values of various settings:
show [vs|sds|pks|dht|jid|pubkey|privkey|caps|all]
vs - the VS# the shell is currently logged into
sds - the hostname:port of the SDS
pks - the hostname:port of the PKS
dht - the hostname:port of the DHT
jid - the JabberId of the user's anon login at the OFS
pubkey - the safe's public key in PEM format
privkey - the safe's private key in PEM format
caps - the safe's folder hashes, read capability, and encrypted
read-write capability
all - all of the above
* Obtain online help for a command:
vsh> help [<command>]
Note that most commands display usage strings on entry of improper syntax.
* Open a new voucher safe:
create -v <prefix> -p <publisher>
Generates and initializes a new VS. The user will be prompted for all
other details, including recovery questions. (I.e. this is not meant to
be used in a script.)
* Close a voucher safe:
close -v <vsnum> -p <publisher>
Close a safe, creating a successor safe for the vouchers and tokens if
the safe is non-empty. The VS# and VP specified must match the ones the
user is currently logged into. The user must manually confirm
acceptance of the transfer agreement.
* Recover a lost voucher safe:
recovery -v <vsnum>
The VS number must include the publisher domain. The user will be
prompted for answers to the 5 recovery questions for that publisher.
* Obtain the public key for another (or any) voucher safe:
getkey <vsnum>
Retrieves the public key for the indicated safe off of the PKS, and
displays it in PEM format. The VS# must be in the same domain as the
user's safe.
* Display asset prices downloaded from the OFS:
prices [-c <currencyCode>] [-a <asset>]
The -c flag causes pricing in the indicated currency (e.g. EUR, AUD,
CAD). The -a flag allows stipulation of the asset type (only GOLD is
supported presently, with relative fiat prices available by
interpolation). Note that the CLI automatically maintains a current
list of prices for the sake of performing payments, but the table is not
shown.
* Specify user defaults:
set [ host <hostname> | port <port#> | xmpp <domain> | pub <publisher>
| vs <default> | asset <type> | units <units> | curr <code> | issuer <issuer> |
mintokens <count> ]
Where:
host - sets the default XMPP server (OFS) host
port - sets the default XMPP server (OFS) port
xmpp - sets the default XMPP server (OFS) domain
pub - sets the default voucher publisher network
vs - sets the default voucher safe for login
asset - sets the default voucher asset type
units - sets the default payment quantity units
curr - sets the display currency preference
issuer - sets the default voucher Issuer
mintokens - sets the token purchase lot size
At present, these settings can be changed manually by editing the file
$HOME/.vouchers/.vshrc.
=============================================================================================================
( B.)
----------------------------------------------------------------
===============================================================================================================
spRemoveLogin
A stored procedure written by Clinton Herring that can be used to remove SQL logins from multiple databases.
Removing login from a SQL server can be a tedious, manual process, checking for database access in each database, object
ownership in each database, granted permissions (the login is the grantor), jobs & packages owned by the login.
This procedure automates the process as much as possible. The following rules are applied when issues are encountered:
1) If the login owns databases (as will occur when a restore is done manually) the ownership is changed to sa.
2) If the login is a user in a particlar db and owns objects, then the proc attempts to reassign ownership to dbo.
If an object by the same name is already owned by dbo a message is displayed and manual intervention is required.
3) If this login as a user in a db has granted permissions then those permissions are removed.
4) Once object ownership is taken care and grants are dropped then the user can be removed from the db.
5) If the user is aliased it is dropped.
6) This process continues for each db.
Once all databases are processed if there were any objects that could not be handled without manual intervention a message
is displayed to that effect.
7) If the login owns jobs or packages in msdb those are changed to sa.
8) Any open connections the login has are killed and finally the login is removed from the SQL Server.
9) If a session could not be killed a message is displayed to that effect.
Use master
if exists (select *
from dbo.sysobjects
where id = object_id(N'[dbo].[spRemoveLogin]')
and OBJECTPROPERTY(id, N'IsProcedure') = 1)
drop procedure [dbo].[spRemoveLogin]
Go
Create procedure spRemoveLogin
@name sysname = null
As
/***5***10***15***20***25***30***35***40***45***50***55***60***65***70***75**/
--Name : spRemoveLogin for SQL 7.0 & 2K
--
--Description : Attempts to remove a login from a SQL Server whether STD or NT.
--
--Parameters : @name - the login to be removed, i.e, login or domain\login
--
--Date : 07/02/2001
--Author : Clinton Herring
--
--History : 07/10/2002 Added code to change the db owner to sa if the
-- login owns databases.
--
/***5***10***15***20***25***30***35***40***45***50***55***60***65***70***75**/
-- Create a temp holding table
If (Select object_id('tempdb.dbo.#Parm')) > 0
Exec ('Drop table #Parm')
Create table #Parm(value int null)
-- Declare variables
Declare @sid varbinary(85),
@dbname sysname,
@cmd varchar(4096),
@spid int
-- Check for master db
If db_name() <> 'master'
Begin
Print 'This stored procedure must be run from the master database.'
Return
End
-- Check for a null parameter
IF @name is null
Begin
Print 'This stored procedure requires a valid login as a parameter.'
Return
End
-- Check for logins not allowed to be dropped using this procedure
IF @name in ('BUILTIN\Administrators', 'distributor_admin', 'sa', 'repl_publisher', 'repl_subscriber')
Begin
Print 'You may not drop the following logins using this stored procedure:'
Print ' BUILTIN\Administrators, distributor_admin, sa, repl_publisher, repl_subscriber'
Return
End
-- Check to see if the login exists.
If exists (select * from master.dbo.syslogins where loginname = @name)
Begin
-- Display a message
Print 'Attempting to find and drop ''' + @name + ''' from each database...'
-- retrieve the sid of the login
Set @sid = suser_sid(@name)
-- Check for database ownership
-- Here dynamic sql is required to use the 'Use command'.
If exists(select * from sysdatabases where sid = @sid)
Begin
Select @dbname = min(name) from master.dbo.sysdatabases where name <> 'master' and sid = @sid
While @dbname is not null and exists(select * from sysdatabases where sid = @sid)
Begin
Select @cmd = 'use ' + @dbname + ' exec sp_changedbowner ''sa'''
Exec (@cmd)
Select @dbname = min(name) from master.dbo.sysdatabases where name <> 'master' and sid = @sid
End
End
-- If the login exists begin checking each database for this login as a user in
-- that database.
Select @dbname = min(name) from master.dbo.sysdatabases
-- Loop through each database.
While @dbname is not null
Begin
-- Here dynamic sql is required to use the 'Use command'.
-- This loop checks for db and msdb ownership issues & granted permissions.
-- Build a command.
Select @cmd = 'use ' + @dbname + ' declare @uid int, @cmd varchar(512), @name sysname ' +
'If exists (select * from sysusers where sid = suser_sid(''' + @name + ''') and isaliased = 0) ' +
'Begin Print '' Processing db ' + @dbname + '...'' Select @uid = uid, @name = name from ' +
'sysusers where sid = suser_sid(''' + @name + ''') If exists (select * from sysobjects ' +
'where uid = 1 and name in (select name from sysobjects where uid = @uid)) ' +
'Begin Print '' The following objects are owned by the user in database ' + @dbname + '.'' ' +
'Print '' Objects with the same name owned by dbo already exist. Please decide '' ' +
'Print '' what to do with these objects before attempting to drop this user.'' Print '''' ' +
'Select convert(varchar(50), name) ''name'', type from sysobjects where uid = @uid ' +
'Insert into #parm values(1) End ' +
'Else Begin Exec sp_configure ''allow updates'', 1 Reconfigure with override ' +
'waitfor delay ''00:00:01'' select @cmd = ''update sysobjects set uid = 1 where uid = '' ' +
'+ convert(varchar(5),@uid) + ' +
''' Delete from syspermissions where grantor = '' + convert(varchar(5),@uid) ' +
'Print '' Fixing object ownership issues in '' + db_name() + ''...'' Exec (@cmd) ' +
'Exec sp_configure ''allow updates'', 0 Reconfigure with override ' +
'Exec sp_revokedbaccess @name End Print '''' End ' +
'If exists(select * from sysusers where sid = suser_sid(''' + @name + ''') and isaliased = 1) ' +
'Begin Exec sp_dropalias ''' + @name + ''' Print '''' End'
-- Execute the command
Exec (@cmd)
-- If the database is msdb then fix any job or package onwership issues.
If @dbname = 'msdb' and
(exists(select * from msdb.dbo.sysjobs where owner_sid = @sid) or
exists(select * from msdb.dbo.sysdtspackages where owner_sid = @sid))
Begin
Select @cmd = 'use msdb declare @cmd varchar(512) ' +
'Exec sp_configure ''allow updates'', 1 Reconfigure with override ' +
'waitfor delay ''00:00:01'' select @cmd = ' +
'''update sysdtspackages set owner = ''''sa'''', owner_sid = ' +
'0x01 where owner_sid = suser_sid(''''' + @name + ''''') ' +
'update sysjobs set owner_sid = 0x01 where owner_sid = suser_sid(''''' + @name+ ''''')'' ' +
'Print '' Fixing job &/or package ownership issues in msdb.'' ' +
'Exec (@cmd) Exec sp_configure ''allow updates'', 0 Reconfigure with override '
Exec (@cmd)
End
Select @dbname = min(name) from master.dbo.sysdatabases where name > @dbname
End
-- Did we have any issues that could not be resolved?
If exists(select * from #parm where value = 1)
Print 'Cannot drop the login at this time.'
Else
Begin
Truncate table #parm
-- Check for any connection by this login and attempt to kill them.
If exists (Select * from master.dbo.sysprocesses where loginame = @name and sid <> 0x01 and sid is not null)
Begin
Insert into #parm Select spid from master.dbo.sysprocesses where loginame = @name and sid <> 0x01 and sid is not null
Select @spid = min(value) from #parm
While @spid is not null
Begin
Select @cmd = 'Kill ' + convert(varchar(5),@spid)
Exec (@cmd)
Select @spid = min(value) from #parm where value > @spid
End
End
-- Not all kill commands succeed; check again
If exists (Select * from master.dbo.sysprocesses where loginame = @name and sid <> 0x01 and sid is not null)
Begin
Print 'Could not kill all active sessions for this login.'
Print 'Cannot drop the login at this time.'
End
Else
Begin
If charindex('\', @name) > 0
Exec sp_revokelogin @name
Else
Exec sp_droplogin @name
End
End
End
Else
Begin
Print 'The login ''' + @name + ''' does not exist on SQL Server ''' + @@servername + '''.'
End
go
Example
spRemovelogin "JaneDoe"
---------------------------------------------
Instances
A PowerShell script to enumerate the SQL instances across multiple servers.
##
# Read in a list of Server Names from a file.
# For each server, query the services to find the SQL server instance names.
# List all the SQL instances found to a log file.
##
$servers = get-content "C:\batch\servers.txt"
$logfile = "C:\batch\sql-instances.txt"
$logerrs = "C:\batch\sql-failures.txt"
Echo "Server, Instance" >> $logfile
ForEach ($server in $servers) {
$instances = Get-WmiObject -ComputerName $server win32_service | where {$_.name -like "MSSQL*"}
if (!$?) {
Echo "$server - No SQL instance found" >> $logerrs
Echo "$server - No SQL instance found"
}
Else {
ForEach ($instance in $instances) {
if (($instance.name -eq "MSSQLSERVER") -or ($instance.name -like "MSSQL$*")) {
Echo "$server, $($instance.name)" >> $logfile
Echo "$server, $($instance.name)"
}
}
}
}
# SS64.com/sql/syntax-instances.html
---------------------------------------------
Database field sizes
Some popular best practices on length and data type for common database fields.
Title Max 35 chars (Mr,Mrs,Miss,Ms,Dr,Rev,Sir,Lady,Lord,Captain,Major,Professor,Dame,Colonel.)
Gender Unknown(0), Male(1), Female(2), Indeterminate:Male+Female(3),
Male from Female(4), Female from Male(5), Not Applicable(9)
First Name Max 35 chars (no spaces)
Last Name Max 35 chars
Display name Max 70 chars
NameSuffix Max 35 chars (OBE, MBE, BSc etc)
Address
Flat Number/Name Max 35 chars
Building Number Max 35 chars
Street Max 35 chars
Town Max 35 chars
State/County Max 35 chars (Optional)
Postcode/Zipcode Min 6 chars Max 9 chars (some countries use non numeric codes)
Country Max 70 chars (ISO 3166)
Email Min 7 Chars, Max 255 chars A full validated email address
Phone Number Max 15 chars (no spaces) ITU E.164Setting sensible maximum sizes improves data quality by minimising
copy/paste errors, if First_Name accepts 2000 characters then sooner or later somebody will paste the entire contents of an
HTML email into that field.
Some of the recommendations above are somewhat larger than real data samples might suggest is necessary but they provide
space to accomodate possible future changes e.g. the formation of a new country with a very long name.
Splitting address into several fields will simplify the design of automated letters & mail merge.
Use unicode, other text encoding schemes will not prevent users from entering carets or umlauts, they just make displaying
the text difficult.
The 'Display name' can default to a concatenation of Title+ First + Last name, display names are often used for unofficial
'known as' names , e.g. William Helkathhazzurim is known to everyone as Bill Helka.
------------------------------------------
------------------------------------------
ShellExecute method
Run a script or application in the Windows Shell.
Syntax
.ShellExecute "application", "parameters", "dir", "verb", window
.ShellExecute 'some program.exe', '"some parameters with spaces"', , "runas", 1Key
application The file to execute (required)
parameters Arguments for the executable
dir Working directory
verb The operation to execute (runas/open/edit/print)
window View mode application window (normal=1, hide=0)Note the different (double " and single ' ) quotes that can
be used to delimit paths with spaces.
The runas verb is undocumented but can be used to elevate permissions. When a script is run with elevated permissions
several aspects of the user environment may change: The current directory, the current TEMP folder and any mapped drives
will be disconnected.
runas will fail if you are running in WOW64 (a 32 bit process on 64 bit windows) for example %systemroot%\syswow64\cmd.exe
...
The ShellExecute method is a member of the IShellDispatch2 object.
Examples
Run a batch script with elevated permissions, flag=runas:
Set objShell = CreateObject("Shell.Application")
objShell.ShellExecute "E:\demo\batchScript.cmd", "", "", "runas", 1
Run a VBScript with elevated permissions, flag=runas:
Set objShell = CreateObject("Shell.Application")
objShell.ShellExecute "cscript", "E:\demo\vbscript.vbs", "", "runas", 1
“If you don't execute your ideas, they die” ~ Roger Von Oech
-------------------------------------
--------------------------------------
( SS64 )CMDSyntax User Shell Folders
In Windows 7/2008 the main User Profile folder (%USERPROFILE%) has moved from C:\Documents and Settings\ to C:\Users\ and
many profile folders have also changed name or location:
Windows XP/2003 Windows 7/2008
%USERPROFILE%\Application Data %USERPROFILE%\AppData\Roaming
%USERPROFILE%\Cookies %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Cookies
%USERPROFILE%\History %USERPROFILE%\AppData\Local\Microsoft\Windows\History
%USERPROFILE%\Local Settings %USERPROFILE%\AppData\Local
%USERPROFILE%\My Documents %USERPROFILE%\Documents
%USERPROFILE%\NetHood %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Network Shortcuts
%USERPROFILE%\PrintHood %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Printer Shortcuts
%USERPROFILE%\Recent %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Recent
%USERPROFILE%\SendTo %USERPROFILE%\AppData\Roaming\Microsoft\Windows\SendTo
%USERPROFILE%\Start Menu %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Start Menu
%USERPROFILE%\Templates %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Templates
%USERPROFILE%\Temporary Internet Files %USERPROFILE%\AppData\Local\Microsoft\Windows\Temporary Internet FilesThe values
above can be found in the registry (as REG_EXPAND_SZ values)
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
The following HKCU registry subkeys are common to Windows XP/2003/7/2008 :
AppData, Cache, Cookies, Desktop, Favorites, History, LocalAppData, My Pictures, NetHood, Personal, PrintHood, Programs,
Recent, SendTo, Start Menu, Startup, Templates.
In summary - the registry locations have stayed the same, but the files and folders are in different places. Some
applications read the registry to determine where to save things, others may have hard coded the file paths.
To provide backwards compatibility, in Windows 7/2008 the old locations under C:\Documents and Settings contain junction
points (hidden, protected operating system files) which point to the new user-accessible folders.
'All Users' Shell Folders
The folders for All Users settings have also moved:
Windows XP/2003 Windows 7/2008
%ALLUSERSPROFILE%\Application Data %ProgramData%
%ALLUSERSPROFILE%\Desktop %PUBLIC%\Desktop
%ALLUSERSPROFILE%\Documents %PUBLIC%\Documents
%ALLUSERSPROFILE%\Start Menu\Programs %ProgramData%\Microsoft\Windows\Start Menu\Programs
%ALLUSERSPROFILE%\Start menu %ProgramData%\Microsoft\Windows\Start Menu
%ALLUSERSPROFILE%\Start Menu\Programs\Startup %ProgramData%\Microsoft\Windows\Start Menu\Programs\Startup
%ALLUSERSPROFILE%\Templates %ProgramData%\Microsoft\Windows\Templates
The values above can be found in the registry (as REG_EXPAND_SZ values)
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders
The following HKLM registry subkeys are common to Windows XP/2003/7/2008 :
Common AppData, Common Desktop, Common Docume
nts, Common Programs, Common Start Menu, Common Startup, Common templates
Examples
Find the location of the Start Menu folder:
REG QUERY "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" /v "Start Menu"
REG QUERY "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" /v "Common Start Menu"
For /f "tokens=3*" %%G in ('REG QUERY "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" /v
"Start Menu" ^|Find "REG_"') do Call Set _startmenu=%%H
Echo %_startmenu%
PowerShell function to open the Start menu:
function Open-StartMenu {
$drive = dir env:SystemDrive
$w7path = $drive.value + "\ProgramData\Microsoft\Windows\Start Menu"
$xppath = $drive.value + "\Documents and Settings\All Users\Start Menu"
if (test-path $w7path)
{explorer $w7path}
elseif (test-path $xppath) {explorer $xppath}
Related:
Windows Environment Variables - XP and Windows 7
RoamingProfile.vbs - Cleardown files to improve logon and logoff times.
Managing Roaming User Data Deployment Guide - TechNet (html and .doc)
Q886549 - User Shell Folders
--------------------------------------------------------------------------------
DEFAULT USERNAMES AND PASSWORDS FOR VARIOUS DEVICES
Manufacturer - Model - OS - Version - Login - Password
--------------------------------------------------------------------------
3com 3comCellPlex7000 tech tech
3com Cable Managment System SQL Database (DOSCIC DHCP) Win2000 & MS DOCSIS_APP 3com
3Com CoreBuilder 6000 - debug tech
3Com CoreBuilder 7000 - tech tech
3Com HiPer ARC Card v4.1.x of HA adm none
3com Home Connect - User Password
3Com Linkbuilder 3500 - administer administer
3Com LinkSwitch and CellPlex - tech tech
3Com LinkSwitch and CellPlex - debug synnet
3Com NAC (Network Access Card) - adm none
3com NBX100 2.8 administrator 0
3Com Office Connect Remote 812 - root !root
3com Super Stack 2 Switch Any manager manager
3com Superstack II Dual Speed 500 - security security
3Com SuperStack II Switch 1100 - manager manager
3Com SuperStack II Switch 1100 - security security
3Com SuperStack II Switch 2200 - debug synnet
3Com SuperStack II Switch 2700 - tech tech
3Com SuperStack II Switch 3300 - manager manager
3Com Switch 3000/3300 - manager manager
3Com Switch 3000/3300 - admin admin
3Com Switch 3000/3300 - security security
3com Switch 3000/3300 - Admin 3com
3Com Switch 3000/3300 - monitor monitor
3-COM - 1.25 root letmein
ACC Routers - netman netman
Acc/Newbridge Congo/Amazon/Tigris All versions netman netman
Adaptec RAID Storage Manager Pro All Administrator adaptec
Alcatel/Newbridge/Timestep VPN Gateway 15xx/45xx/7xxx Any root permit
Allied Telesyn All Routers Any Manager Friend
Allied Tenysin R130 - Manager friend
Alteon ACEswitch 180e (telnet) - admin blank
Alteon Web Systems All hardware releases Web OS 5.2 none admin
APC Any Firmware Pri apcuser apc
APC MasterSwitches - apc apc
Apple Airport 1.1 none public
Apple Network Assistant 3.X None xyzzy
Arrowpoint any? - admin system
Ascend All TAOS models all admin Ascend
AT&T Starlan SmartHUB 9.9 N/A manager
AWARD Any BIOS - AWARD_SW -
Axent NetProwler manager WinNT administrator admin
AXIS 200 V1.32 - admin -
Axis 2100 Network Camera Linux (ETRAX root pass
Axis NPS 530 5.02 root pass
AXIS StorPoint CD100 4.28 root pass
Bay Networks ASN / ARN Routers Any Manager Manager
Bay/Nortel Networks Accelar 1xxx switches Any rwa rwa
Bay/Nortel Networks Remote Annex 2000 Any admin IP address
BEA Weblogic 5.1 system weblogic
Bintec all Routers Any admin bintec
Borland Interbase Any politcally correct
Borland/Inprise Interbase any SYSDBA masterkey
Brocade Silkworm - admin password
Buffalo/MELCO AirStation WLA-L11 - root (cannot be changed) (no password by default)
Cabletron routers and switches * * blank blank
Cayman 3220-H DSL Router GatorSurf 5. Any -
cisco 3600 12 bumhole sniffer
cisco - 12 turd burgular
Cisco any aany IOS no default login no default password
Cisco Any Router and Switch 10 thru 12 cisco cisco
Cisco ConfigMaker Software any? n/a cmaker
Cisco IDS (netranger) - root attack
Cisco MGX * superuser superuser
Cisco N\A N\A prixadmin prixadmin
Cisco Net Ranger 2.2.1 Sol 5.6 root attack
CISCO Network Registrar 3 ADMIN changeme
Cisco VPN 3000 Concentrator - admin admin
cisco xxxx 12 rob's knob
Cobalt RaQ * Qube* Any admin admin
Comersus Shopping Cart 3.2 Win 95/98/NT admin dmr99
Compaq Insight Manager - Administrator administrator
Compaq Insight Manager - operator operator
Compaq Management Agents All administrator none
Coyote-Point Equaliser 4 Free BSD eqadmin - Serial port only equalizer
Coyote-Point Equaliser 4 Free BSD root - Serial port only -
Coyote-Point Equaliser 4 Free BSD look - Web Browser only (Read a look
Coyote-Point Equaliser 4 Free BSD touch - Web Browser only (Write touch
Cyclades MP/RT - super surt
Dell Powerapp Web 100 Linux RedHat 6.2 root powerapp
Dell PowerVault 35F - root calvin
Dell PowerVault 50F WindRiver (E root calvin
Digiboard Portserver 8 & 16 any root dbps
DLink DI 106 winnt administrator @*nigU^D.ha,;
DLink DI-206 ISDN router 1.* Admin Admin
Dupont Digital Water Proofer Sun Sparc any root par0t
Elron Firewall 2.5c hostname/ip address sysadmin
Ericsson ACC - netman netman
Ericsson (formerly ACC) Any router all netman netman
Extended Systems ExtendNet 4000 / Firewall all Versions admin admin
Extended Systems Print Servers - admin extendnet
General Instruments SB2100D Cable Modem - test test
gonet - - fast abd234
Hewlett Packard HP Jetdirect (All Models) Any none none
Hewlett Packard MPE-XL - HELLO MANAGER.SYS
Hewlett Packard MPE-XL - HELLO MGR.SYS
Hewlett Packard MPE-XL - HELLO FIELD.SUPPORT
Hewlett Packard MPE-XL - MGR CAROLIAN
Hewlett Packard MPE-XL - MGR CCC
Hewlett Packard MPE-XL - OPERATOR COGNOS
Hewlett Packard MPE-XL - MANAGER HPOFFICE
IBM 2210 RIP def trade
IBM - OS/400 QSECOFR QSECOFR
IBM AS/400 - qsysopr qsysopr
IBM AS/400 - qpgmr qpgmr
IBM AS/400 OS/400 QUSER QUSER
IBM AS400 Any QSECOFR QSECOFR
IBM AS400 - QSRVBAS QSRVBAS
IBM AS400 - QSRV QSRV
IBM DB2 WinNT db2admin db2admin
IBM LAN Server / OS/2 2.1, 3.0, 4. username password
IBM Lotus Domino Go WebServer (net.commerce edition) ANY ? webadmin webibm
IBM NetCommerce PRO 3.2 ncadmin ncadmin
IBM RS/6000 AIX root ibm
Imperia Software Imperia Content Managment System Unix/NT superuser superuser
Ipswitch Whats up Gold 6.0 Windows 9x a admin admin
janta sales 254 compaq janta sales janta211
Juniper All Junos 4.4 root none
Lantronix LPS1-T Print Server j11-16 any system
Lantronix LSB4 any any system
LGIC Goldstream 2.5.1 LR-ISDN LR-ISDN
Linksys BEFSR41 - (blank) admin
Linksys BEFSR7(1) OR (4) Standalone R blank admin
Livingston Livingston_officerouter - !root blank
Livingston Livingston_portmaster2/3 - !root blank
Lucent AP-1000 - public public
Lucent Cajun Family - root root
Lucent Packetstar (PSAX) - readwrite lucenttech1
Lucent Portmaster 2 - !root none
lucent Portmaster 3 unknown !root !ishtar
MacSense X-Router Pro - admin admin
microcom hdms unknowen system hdms
Microsoft NT - - start
MICROSOFT NT 4 free user user
MICROSOFT NT 4 free user user
Microsoft SQL Server - sa -
Microsoft Windows NT All Administrator -
Microsoft Windows NT All Guest -
Microsoft Windows NT All Mail -
Microsoft Windows NT 4 pkoolt pkooltPS
Motorola Motorola-Cablerouter - cablecom router
Multi-Tech RASExpress Server 5.30a guest none
Nanoteq NetSeq firewall * admin NetSeq
NetApp NetCache any admin NetCache
Netgear RT311 Any Admin 1234
Netgear RT311/RT314 - admin 1234
Netgear RT314 Any Admin 1234
Netopia R7100 4.6.2 admin admin
Netscreen - - netscreen netscreen
Netscreen NS-5, NS10, NS-100 2 netscreen netscreen
Nokia - Telecom NZ M10 - Telecom Telecom
Nortel Contivity Extranet Switches 2.x admin setup
Nortel Meridian 1 PBX OS Release 2 0 0
Nortel Norstar Modular ICS Any **ADMIN (**23646) ADMIN (23646)
Nortel Norstar Modular ICS Any **CONFIG (266344) CONFIG (266344)
Nortel Shasta any admin admin
Novell NetWare Any guest -
Novell NetWare any PRINT -
Novell NetWare Any LASER -
Novell NetWare Any HPLASER -
Novell NetWare Any PRINTER -
Novell NetWare Any LASERWRITER -
Novell NetWare Any POST -
Novell NetWare Any MAIL -
Novell NetWare Any GATEWAY -
Novell NetWare Any GATE -
Novell NetWare Any ROUTER -
Novell NetWare Any BACKUP -
Novell NetWare Arcserve CHEY_ARCHSVR WONDERLAND
Novell NetWare Any WINDOWS_PASSTHRU -
ODS 1094 IS Chassis 4.x ods ods
Optivision Nac 3000 & 4000 any root mpegvideo
Oracle 7 or later - system manager
Oracle 7 or later - sys change_on_install
Oracle 7 or later Any Scott Tiger
Oracle 8i 8.1.6 sys change_on_install
Oracle 8i all internal oracle
Oracle Internet Directory Service any cn=orcladmin welcome
oracle co. Database engines every sys change_on_install
Osicom(Datacom) Osicom(Datacom) - sysadm sysadm
Pandatel EMUX all admin admin
RapidStream RS4000-RS8000 Linux rsadmin rsadmin
Research Machines Classroom Assistant Windows 95 manager changeme
Rodopi Rodopi billing software 'AbacBill' sql database - rodopi rodopi
Securicor3NET Cezzanne any manager friend
Securicor3NET Monet any manager friend
SGI all all root n/a
SGI Embedded Support Partner IRIX 6.5.6 Administrator Partner
SGI Embedded Support Partner IRIX 6.5.6 Administrator Partner
SGI IRIX ALL lp lp
SGI IRIX ALL OutOfBox, demos, guest, 4DGifts (none by default)
SGI IRIX ALL EZsetup -
Shiva AccessPort Any hello hello
Shiva Any? - Guest blank
soho nbg800 unknown admin 1234
SonicWall Any Firewall Device - admin password
Sun - SunOS 4.1.4 root -
surecom ep3501/3506 own os admin surecom
Tekelec Eagle STP - eagle eagle
Telebit netblazer 3.* - setup/snmp setup/nopasswd
terayon - 6.29 admin nms
Terayon TeraLink 1000 Controller - admin password
Terayon TeraLink 1000 Controller - user password
Terayon TeraLink Getaway - admin password
Terayon TeraLink Getaway - user password
Tiara Tiara - tiara tiaranet
Titbas - SCO haasadm lucy99
TopLayer AppSwitch 2500 Any siteadmin toplayer
Toshiba TR-650 V2.01.00 admin tr650
TrendMicro ISVW (VirusWall) any admin admin
Trintech eAcquirer App/Data Servers - t3admin Trintech
Ullu ka pattha Gand mara Gandoo Bhosda Lund
USR TOTALswitch Any none amber
Vina Technologies ConnectReach 3.6.2 (none) (none)
Webmin Webmin Any Unix/Lin admin -
Webramp 410i etc... - wradmin trancell
Wireless Inc. WaveNet 2458 n/a root rootpass
Xylan Omnistack 1032CF 3.2.8 admin password
Xylan Omnistack 4024 3.4.9 admin password
Xylan Omniswitch 3.1.8 admin switch
xyplex mx-16xx - setpriv system
ZYXEL 641 ADSL - - 1234
Zyxel ISDN Router Prestige 100IH - - 1234
Zyxel ISDN-Router Prestige 1000 - - 1234
Zyxel prestige 128 modem-router any - 1234
zyxel prestige 300 series zynos 2.* - 1234
-------------------------------------------------------------------------------
MASSKEYLIST FOR SEO
google, hacker "access denied for user" "using password" "general error" -inurl:phpbb "sql error", "active webcam
page" inurl:8080, "best idea is to create the super user" "now by clicking here", "Index of" / "chat/logs", "phone * * *"
"address *" "e-mail" intitle:"curriculum vitae", "Powered by MercuryBoard [v1", "SquirrelMail version 1.4.4" inurl:src
ext:php, "there are no administrators accounts yet" "create the Super User" inurl:admin.php, "VNC Desktop" inurl":5800",
"You have requested access to a restricted area of our website. Please authenticate yourself to continue.", administrator
joomla, allintitle, allintitle:Outlook Web Access Logon, allintitle:restricted filetype:doc site:gov, allinurl, Athena,
brutus, cache, camera linksys inurl:main.cgi, comandos de búsqueda avanzada de Google, contraseñas google, dcim, Digital
Camera Image Dumps, exploit database, ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-", filetype,
filetype:ctt, filetype:inc intext:mysql_connect password -please -could -port, filetype:sql "MySQL dump" (pass|password|
passwd|pwd), filetype:sql “# dumping data for table” "`PASSWORD` varchar", google enemigo, google hacking, Gooscan,
inanchor, index.of.dcim, intitle, intitle:"i-catcher console" "please visit", intitle:"index of" "Index of /",
intitle:"index of" "Index of /" password.txt, intitle:"index of" inurl:"admin", intitle:"ivista main page",
intitle:"network print server" filetype:shtm, intitle:"toshiba network camera - User Login", intitle:"vnc viewer for java",
intitle:"Welcome to Windows Small Business Server 2003", intitle:index.of passwd, intitle:index.of ws_ftp.log,
intitle:index.of “Apache/*” “server at”, intitle:index.of “Microsoft-IIS/* server at", intitle:index.of “parent directory",
intitle:”the page cannot be found” “please * * following” “Internet * Services”, inurl, inurl:":10000" webmin,
inurl:":8080" -intext:8080, inurl:"ViewerFrame?Mode=", inurl:/admin/login.asp, inurl:intranet filetype:doc confidential,
inurl:webarch/mainframe.cgi, lammer, lammers, link, meta exploit framework, MetaSploit Framework, MetaSploit Frameworkl,
operadores avanzados de búsqueda de Google, passwords|contraseñas|login|contraseña filetype:txt, related, rotobts.txt,
SearchDiggit, site, Site Digger, snakeoillabs.com, Wikto, wp-admin wordpress, ws_ftp.log
*** A List Of Some OF The Most Useful UNIX **
*** Hacking Commands, and Some Hints On Their Usage ***
---------------------------------------------------------------
It is fun and often usefull to create a file that is owned
by someone else. On most systems with slack security ie 99% of
all UNIX systems, this is quite easily done. The chown command
will change any of your files to make someone else the owner.
Format is as follows:
chown ownername filelist
Where ownername is the new owner, and filelist is the list of
files to change. You must own the file which your are goin to
change, unless you are a superuser....then u can change ANYTHING!
chgrp is a similar command which will change the group
ownership on a file. If you are going to do both a chown and a
chgrp on a file, then make sure you do the chgrp first! Once the
file is owned by someone else, you cant change nything about it!
---------------------------------------------------------------
Sometimes just seeing who is on the system is a challenge in
itself. The best way is to write your own version of who in C,
but if you can't do that then this may be of some help to you:
who followed by on or more of the following flags:
-b Displays time sys as last booted.
-H Precedes output with header.
-l Lists lines waiting for users to logon.
-q displays number of users logged on.
-t displays time sys clock was last changed.
-T displays the state field (a + indicates it is
possible to send to terminal, a - means u cannot)
-u Give a complete listing of those logged on.
**who -HTu is about the best choice for the average user**
##by the way, the list of users logged on is kept in the file
/etc/utmp. If you want to write your own personalised version of
who in C, you now know where to look!###
---------------------------------------------------------------
When a users state field (see -T flag option for who
command) says that a user has their message function on, this
actually means that it is possible to get stuff onto their
screen.
Basically, every terminal on the system has a file
corresponding to it. These files can be found in the /dev
directory. You can to anything to these files, so long as you
have access -eg you can read them, and write to them, but you
will notice that they never change in size. They are called
character specific files, and are really the link between the
system and the terminals. Whatever you put in these files will
go staright to the terminal it corresponds to.
Unfortunately, on most systems, when the user logs in, the
"mesg n" command is issued which turns off write access to that
terminal, BUT- if you can start cating to that terminal before
system issues the mesg n command, then you will continue to be
able to get stuff up on that terminal! This has many varied uses.
Check out the terminal, or terminal software being used.
Often you will be able to remotely program another users
terminal, simply by 'cating' a string to a users screen. You
might be able to set up a buffer, capturing all that is typed, or
you may be able to send the terminal into a frenzy- (sometimes a
user will walk away without realizing that they are sill
effectively logged on, leaving you with access to their
account!). Some terminal types also have this great command
called transmit screen. It transmits everything on the screen,
just as if the user had typed it !
So just say I wanted to log off a user, then I would send a
clear screen command (usually ctrl l), followed by "exit"
followed by a carriage return, followed by the transmit screen
code. Using ths technique you can wipe peoples directories or
anything. My favourite is to set open access on all their files
and directories so I can peruse them for deletion etc at my own
leisure).
---------------------------------------------------------------
If you ever briefly get access to another persons account
eg. they leave the room to go to toilet or whatever, then simply
type the following:
chmod 777 $HOME
chmod 777 $MAIL
Then clear the screen so they dont see what you just typed.
Now you can go look at their directory, and their mail, and
you can even put mail in their mail file. (just use the same
format as any mail that is already there!). Next time they log in
the system will automatically inform them they have new mail!
---------------------------------------------------------------
Another way to send fake mail to people is to use the mail
server. This method produces mail that is slightly different to
normal, so anyone who uses UNIX a bit may be suspiscious when
they receive it, but it will fool the average user!
type telnet
the following prompt will appear:
telnet>
now type :
open localhost 25
some crap will come up about the mail server..now type:
mail from: xxxxxx Put any name you want.
some more bullshit will come up. Now type:
rcpt to: xxxxxx Put the name of the person to receive mail here.
now type:
data
now you can type the letter...end it with a "."
type quit to exit once you are done.
-------------------------------------------------------------
Heres one for any experimenters out there...
It is possible to create files which simply cannot be deleted
from the standard shell. To do this you will have to physically
CREATE THE FILE USING A C PROGRAM or SCRIPT FILE, and you will
have to use a sequence of control characters which cannot be
typed from the shell. Try things like Ctrl-h (this is the
code for the delete key). Just a file with the name Ctrl-h would
not be deleteable from the shell, unless you used wildcards. So,
make it a nice long series of characters, so that to delete the
file, the user has no choice but to individually copy all his
files elsewhere, then delete everything in his directory, and
then copy all his files back.....this is one of my
favourites..gets em every time!
The following script file is an example which will create a
file with the name Ctrl-h. You MUST tyoe this file in using the
vi editor or similar.
*****If you are not very good with vi, type "man vi" and print the
help file...it even contains stuff that I find useful now and
then.*****
type the following in vi...
echo'' > 'a^h'
***NOTE...to get the ^h (this really means ctrl-h) from vi type:
Ctrl v
Ctrl h
The Ctrl v instrcts vi to take the next character as a ascii
character, and not to interpret it.
change the access on the file you just created and now
execute it. It will create a file which looks like it is called
a, but try to delete it !..use wildcards if you really want to
delete it.
*> Title: Tutorial on hacking through a UNIX system
**
In the following file, all references made to the name Unix, may also be
substituted to the Xenix operating system.
Brief history: Back in the early sixties, during the development of
third generation computers at MIT, a group of programmers studying the
potential of computers, discovered their ability of performing two or
more tasks simultaneously. Bell Labs, taking notice of this discovery,
provided funds for their developmental scientists to investigate into this
new frontier. After about 2 years of developmental research, they produced
an operating system they called "Unix".
Sixties to Current: During this time Bell Systems installed the Unix system
to provide their computer operators with the ability to multitask so that
they could become more productive, and efficient. One of the systems they
put on the Unix system was called "Elmos". Through Elmos many tasks (i.e.
billing,and installation records) could be done by many people using the same
mainframe.
Note: Cosmos is accessed through the Elmos system.
Current: Today, with the development of micro computers, such multitasking
can be achieved by a scaled down version of Unix (but just as
powerful). Microsoft,seeing this development, opted to develop their own
Unix like system for the IBM line of PC/XT's. Their result they called
Xenix (pronounced zee-nicks). Both Unix and Xenix can be easily installed
on IBM PC's and offer the same function (just 2 different vendors).
Note: Due to the many different versions of Unix (Berkley Unix,
Bell System III, and System V the most popular) many commands
following may/may not work. I have written them in System V routines.
Unix/Xenix operating systems will be considered identical systems below.
How to tell if/if not you are on a Unix system: Unix systems are quite
common systems across the country. Their security appears as such:
Login; (or login;)
password:
When hacking on a Unix system it is best to use lowercase because the Unix
system commands are all done in lower- case. Login; is a 1-8 character field. It is
usually the name (i.e. joe or fred) of the user, or initials (i.e. j.jones
or f.wilson). Hints for login names can be found trashing the location of
the dial-up (use your CN/A to find where the computer is). Password: is a 1-8 character password assigned by the sysop or chosen by the user.
Common default logins
--------------------------
login; Password:
root root,system,etc..
sys sys,system
daemon daemon
uucp uucp
tty tty
test test
unix unix
bin bin
adm adm
who who
learn learn
uuhost uuhost
nuucp nuucp
If you guess a login name and you are not asked for a password, and have
accessed to the system, then you have what is known as a non-gifted account.
If you guess a correct login and pass- word, then you have a user account.
And, if you get the root p/w you have a "super-user" account.
All Unix systems have the following installed to their system:
root, sys, bin, daemon, uucp, adm Once you are in the system, you will
get a prompt. Common prompts are:
$
%
#
But can be just about anything the sysop or user wants it to be.
Things to do when you are in: Some of the commands that you may want to
try follow below:
who is on (shows who is currently logged on the system.)
write name (name is the person you wish to chat with)
To exit chat mode try ctrl-D.
EOT=End of Transfer.
ls -a (list all files in current directory.)
du -a (checks amount of memory your files use;disk usage)
cd\name (name is the name of the sub-directory you choose)
cd\ (brings your home directory to current use)
cat name (name is a filename either a program or documentation your username has written)
Most Unix programs are written in the C language or Pascal
since Unix is a programmers' environment. One of the first things done on the
system is print up or capture (in a buffer) the file containing all user names and accounts. This can be done by doing the following command:
cat /etc/passwd
If you are successful you will see a list of all accounts on the system. It
should look like this:
root:hvnsdcf:0:0:root dir:/: joe:majdnfd:1:1:Joe Cool:/bin:/bin/joe hal::1:2:Hal Smith:/bin:/bin/hal
The "root" line tells the following info :
login name=root
hvnsdcf = encrypted password
0 = user group number
0 = user number
root dir = name of user
/ = root directory
In the Joe login, the last part "/bin/joe " tells us which directory
is his home directory (joe) is. In the "hal" example the login name is
followed by 2 colons, that means that there is no password needed to get in
using his name.
Conclusion: I hope that this file will help other novice Unix hackers
obtain access to the Unix/Xenix systems that they may find.
On the Security of UNIX
=-=-=-=-=-=-=-=-=-=-=-=
Recently there has been much interest in the security aspects of operating
systems and software.At issue is the ability to prevent undesired disclosure of
information, destruction of information,and harm to the functioning of the
system.This paper discusses the degree of security which can be provided under
the system and offers a number of hints on how to improve security.The first
fact to face is that UNIX was not developed with security,in any realistic
sense,in mind;this fact alone guarantees a vast number of holes.(Actually the
same statement can be made with respect to most systems.)
The area of security in which is theoretically weakest is in protecting against
crashing or at least crippling the operation of the system.The problem here is
not mainly in uncritical acceptance of bad parameters to system calls (there
may be bugs in this area, but none are known)but rather in lack of checks for
excessive consumption of resources.
Most notably, there is no limit on the amount of disk storage used, either in
total space allocated or in the number of files or directories.Here is a
particularly ghastly shell sequence guaranteed to stop the system:
while : ; do
mkdir x
cd x
done
Either a panic will occur because all the i-nodes on the device are used up,
or all the disk blocks will be consumed, thus preventing anyone from writing
files on the device.In this version of the system,users are prevented from
creating more than a set number of processes simultaneously,so unless users
are in collusion it is unlikely that any one can stop the system altogether.
However, creation of 20 or so CPU or disk-bound jobs leaves few resources
available for others.Also, if many large jobs are run simultaneously,swap space
may run out, causing a panic. It should be evident that excessive consumption
of diskspace, files, swap space and processes can easily occur accidentally in
malfunctioning programs as well as at command level.In fact UNIX is essentially
defenseless against this kind of abuse,nor is there any easy fix.The best that
can be said is that it is generally fairly easy to detect what has happened
when disaster strikes ,to identify the user responsible, and take appropriate
action.In practice,we have found that difficulties in this area are rather
rare,but we have not been faced with malicious users,and enjoy a fairly
generous supply of resources which have served to cushion us against accidental
overconsumption.
The picture is considerably brighter in the area of protection of information
from unauthorized perusal and destruction.Here the degree of security seems
(almost) adequate theoretically, and the problems lie more in the necessity for
care in the actual use of the system.Each UNIX file has associated with it
eleven bits of protection information together with a user identification
number and a user-group identification number (UID and GID).
Nine of the protection bits are used to specify independently permission to
read, to write, and to execute the file to the user himself, to members of the
user's group, and to all other users.Each process generated by or for a user
has associated with it an effective UID and a real UID, and an effective and
real GID.When an attempt is made to access the file for reading, writing, or
executing UID for the process is changed to the UID associated with the file;
the change persists until the process terminates or until the UID changed again
by another execution of a set-UID file.Similarly the effective group ID of a
process is changed to the GID associated with a file when that file is executed
and has the set-GID bit set.The real UID and GID of a process do not change
when any file is executed,but only as the result of a privileged system
call.The basic notion of the set-UID and set-GID bits is that one may write a
program which is executableby others and which maintains files accessible to
others only by that program.
The classical example is the game-playing program which maintains records of
the scores of its players.The program itself has to read and write the score
file,but no one but the game's sponsor can be allowed unrestricted access to
the file lest they manipulate the game to their own advantage.
The solution is to turn on the set-UID bit of the game program. When, and only
when,it is invoked by players of the game,it may update the score file but
ordinary programs executed by others cannot access the score. There are a
number of special cases involved in determining access permissions. Since
executing a directory as a program is a meaningless operation,the
execute-permission bit, for directories, is taken instead to mean permission to
search the directory for a given file during the scanning of a path name; thus
if a directory has execute permission but no read permission for a given user,
he may access files with known names in the directory,but may not read (list)
the entire contents of the directory.
Write permission on a directory is interpreted to mean that the user may create
and delete files in that directory;it is impossible for any user to write
directly into any directory..Another, and from the point of view of security,
much more serious special case is that there is a ``super user'' who is able to
read any file and write any non-directory.The super-user is also able to change
the protection mode and the owner UID and GID of any file and to invoke
privileged system calls.It must be recognized that the mere notion of a
super-user is a theoretical, and usually practical, blemish on any protection
scheme.
The first necessity for a secure system is of course arranging that all files
and directories have the proper protection modes.Traditionally, UNIX software
has been exceedingly permissive in this regard;essentially all commands create
files readable and writable by everyone.In the current version,this policy may
be easily adjusted to suit the needs ofthe installation or the individual user.
Associated with each process and its descendants is a mask, which is in effect
anded with the mode of every file and directory created by that process. In
this way, users can arrange that, by default,all their files are no more
accessible than they wish.The standard mask, set by login,allows all permiss-
ions to the user himself and to his group,but disallows writing by others.
To maintain both data privacy and data integrity,it is necessary, and largely
sufficient,to make one's files inaccessible to others. The lack of sufficiency
could follow from the existence of set-UID programs created by the user and the
possibility of total breach of system security in one of the ways discussed
below(or one of the ways not discussed below).
For greater protection,an encryption scheme is available.Since the editor is
able to create encrypted documents, and the crypt command can be used to pipe
such documents into the other text-processing programs,the length of time
during which clear text versions need be available is strictly limited.The
encryption scheme used is not one of the strongest known, but it is judged
adequate, in the sense that cryptanalysisis likely to require considerably more
effort than more direct methods of reading the encrypted files.For example, a
user who stores data that he regards as truly secret should be aware that he is
implicitly trusting the system administrator not to install a version of the
crypt command that stores every typed password in a file. Needless to say, the
system administrators must be at least as careful as their most demanding user
to place the correct protection mode on the files under their control.
In particular,it is necessary that special files be protected from writing, and
probably reading, by ordinary users when they store sensitive files belonging
to otherusers.It is easy to write programs that examine and change files by
accessing the device on which the files live.
On the issue of password security,UNIX is probably better than most systems.
Passwords are stored in an encrypted form which, in the absence of serious
attention from specialists in the field,appears reasonably secure, provided its
limitations are understood.In the current version, it is based on a slightl y
defective version of the Federal DES;it is purposely defective so that
easily-available hardware is useless for attempts at exhaustive
key-search.Since both the encryption algorithm and the encrypted passwords are
available,exhaustive enumeration of potential passwords is still feasible up to
a point.We have observed that users choose passwords that are easy to
guess:they are short, or from a limited alphabet, or in a dictionary.
Passwords should be at least six characters long and randomly chosen from an
alphabet which includes digits and special characters.
Of course there also exist feasible non-cryptanalytic ways of finding out
passwords.For example: write a program which types out ``login:''on the
typewriter and copies whatever is typed to a file of your own. Then invoke the
command and go away until the victim arrives..The set-UID (set-GID)notion must
be used carefully if any security is to be maintained. The first thing to keep
in mind is that a writable set-UID file can have another program copied onto
it.
For example, if the super-user command is writable,anyone can copy the shell
onto it and get a password-free version of Shell Unix.A more subtle problem can
come from set-UID programs which are not sufficiently careful of what is fed
into them.To take an obsolete example,the previous version of the mail command
was set-UID and owned by the super-user.This version sent mail to the r
ecipient's own directory.The notion was that one should be able to send mail to
anyone even if they want to protecttheir directories from writing. The trouble
was that mailwas rather dumb:anyone could mail someone else's priva te file to
himself.Much more seriousis the following scenario: make a file with a line
like one in the password filewhich allows one to log in as the super-user.Then
make a link named ``.mail'' to the password file in some writable directory on
the same device as the password file (say /tmp). Finally mail the bogus login
line to /tmp/.mail;You can then login as the superuser,clean up the
incriminating evidence,and have your will.
The fact that users can mount their own disks and tapes as file systems can be
another way of gaining super-user status.Once a disk pack is mounted, the
system believes what is on it.Thus one can take a blank disk pack,put on it
anything desired,and mount it.There are obvious and unfortunate consequences.
For example:a mounted disk with garbage on it will crash the system;one of the
files on the mounted disk can easily be a password-free version of Shell Unix;
other files can be unprotected entries for special files. The only easy fix
for this problem is to forbid the use of mount to unpriv- ileged users.A
partial solution, not so restrictive,would be to have the mount command examine
the special file for bad data,set-UID programs owned by others ,and accessible
special files,and balk at unprivileged invokers.
============================================================
BY dynabyt3 btc tips appreciated always! 1CoAGHbWcwF2tHUGGxx8iVC8t4dSQb9Zd5
=============================== END ==========================
