Overview

URLhttp://www.chihuahuacity.it/templates/allrounder-j1.6/js/jquery-1.5.min.js
IP95.174.23.178
ASNAS12637 Seeweb s.r.l.
Location Italy
Report completed2012-11-07 14:22:05 CET
StatusLoading report..
urlQuery Alerts Detected SutraTDS URL pattern


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader8.0
Java1.6.0_26


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Source IP Destination IP Severity Alert
2012-11-07 14:21:24 urlQuery Client 46.165.206.132ET CURRENT_EVENTS TDS Sutra - request in.cgi
2012-11-07 14:21:27 178.63.92.185 urlQuery Client3FILEMAGIC Macromedia Flash data (compressed),
2012-11-07 14:21:27 178.63.92.185 urlQuery Client3FILEMAGIC Macromedia Flash data (compressed),
2012-11-07 14:21:39 46.165.206.13 urlQuery Client2ET CURRENT_EVENTS TDS Sutra - redirect received
Snort /w Sourcefire VRT
Timestamp Source IP Destination IP Severity Alert
2012-11-07 14:21:24 urlQuery Client 46.165.206.131MALWARE-CNC TDS Sutra - request in.cgi


Recent reports on same IP/ASN/Domain

Last 4 reports on IP: 95.174.23.178

Date Alerts / IDS URL IP
2012-12-25 10:42:560 / 1http://www.centromediazioneerbese.it/95.174.23.178
2012-11-20 05:28:321 / 24http://www.chihuahuacity.it/templates/allrounder-j1.6/favicon.ico95.174.23.178
2012-11-17 04:31:180 / 5http://www.viaggiesotici.com/wp-content/plugins/counterize/counterize.js.php?ver=3.3. (...)95.174.23.178
2012-11-09 05:32:510 / 1http://graficaprofessionale.com/plugins/system/yoo_effects/yoo_effects.js.php?lb=195.174.23.178

Last 6 reports on ASN: AS12637 Seeweb s.r.l.

Date Alerts / IDS URL IP
2013-02-14 20:08:100 / 0http://busigiovanni.com/en/85.94.214.82
2013-02-14 17:56:431 / 0http://www.nazionalepsicologi.it/forum/index.php?s=d4b06d62d1a144c502fddc57b78c44d6217.64.195.216
2013-02-14 04:39:541 / 0http://www.nazionalepsicologi.it/forum/index.php?s=4129b7a011d3bf7c546d2d07e8eccafa217.64.195.216
2013-02-14 04:37:571 / 0http://www.nazionalepsicologi.it/forum/index.php?/forum/20-trentino-alto-adige/217.64.195.216
2013-02-13 20:48:211 / 0http://www.nazionalepsicologi.it/forum/index.php?s=44c35f34e42ad044240adce10e4ac695217.64.195.216
2013-02-13 20:47:571 / 0http://www.nazionalepsicologi.it/forum/index.php?s=cde889e1c91f51d8bcce60e74882f2e1217.64.195.216

Last 1 reports on domain: www.chihuahuacity.it

Date Alerts / IDS URL IP
2012-11-20 05:28:321 / 24http://www.chihuahuacity.it/templates/allrounder-j1.6/favicon.ico95.174.23.178



JavaScript

Executed Scripts (17)


Executed Evals (0)


Executed Writes (20)

#1 JavaScript::Write (size: 206, repeated: 1) 

 <param name="FlashVars" value="big=http%3A//worldtraff.ru/images/peeldown/b1_1347049385.jpg&ad_url=http%3A//worldtraff.ru/click/peeldown.php%3Fsid%3D1%26id%3D30%26hash%3D359c2fb4d0df2bc26d0ebf5721af0870"/>

#2 JavaScript::Write (size: 95, repeated: 1) 

 <param name="FlashVars" value="ico=http%3A//worldtraff.ru/images/peeldown/s7_1347049385.jpg"/>

#3 JavaScript::Write (size: 50, repeated: 2) 

 <param name="allowScriptAccess" value="always"/>

#4 JavaScript::Write (size: 240, repeated: 1) 

 <param name="movie" value="http://worldtraff.ru/images/large.swf?big=http%3A//worldtraff.ru/images/peeldown/b1_1347049385.jpg&ad_url=http%3A//worldtraff.ru/click/peeldown.php%3Fsid%3D1%26id%3D30%26hash%3D359c2fb4d0df2bc26d0ebf5721af0870"/>

#5 JavaScript::Write (size: 129, repeated: 1) 

 <param name="movie" value="http://worldtraff.ru/images/small.swf?ico=http%3A//worldtraff.ru/images/peeldown/s7_1347049385.jpg"/>

#6 JavaScript::Write (size: 39, repeated: 2) 

 <param name="quality" value="high" />

#7 JavaScript::Write (size: 43, repeated: 1) 

 <param name="wmode" value="transparent" />

#8 JavaScript::Write (size: 42, repeated: 1) 

 <param name="wmode" value="transparent"/>

#9 JavaScript::Write (size: 96, repeated: 2) 

 codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=7,0,19,0"

#10 JavaScript::Write (size: 48, repeated: 1) 

 id="jcornerBigObject" width="650" height="650">

#11 JavaScript::Write (size: 50, repeated: 1) 

 id="jcornerSmallObject" width="100" height="100">

#12 JavaScript::Write (size: 968, repeated: 1) 

<!doctype html><html><head><meta http-equiv="X-UA-Compatible" content="IE=EmulateIE7,IE=edge" /></head><body><script type="text/javascript">var newversion = true;try {if (top.postMessage) {window.onmessage = function(evt) {evt = evt || window.event;try {var message = new Function("return " + evt.data)();} catch (e) {return;}if (/(^|\.)yandex\.(ru|com|ua|kz|by|com\.tr)(:\d{4})?$/.test(evt.origin) && message.name == "script" && message.data) {var head = document.getElementsByTagName("head")[0];var base = document.createElement("base");base.href = message.data;head.appendChild(base);var script = document.createElement("script");script.src = message.data;head.appendChild(script);parent.removeEventListener("message", window.onmessage, false);window.onmessage = null;}};if (navigator.userAgent.indexOf("Firefox/3.6.") > -1) {parent.addEventListener("message", window.onmessage, false);}top.postMessage('{"name":"ping"}', "*");}} catch (e) {}</script></body></html>

#13 JavaScript::Write (size: 15, repeated: 2) 

</object></div>

#14 JavaScript::Write (size: 9, repeated: 1) 

</script>

#15 JavaScript::Write (size: 315, repeated: 1) 

<a href='http://www.liveinternet.ru/click' target=_blank><img src='//counter.yadro.ru/hit?t12.6;r;s1176*885*24;uhttp%3A//worldtraffic.biz/home.html%3Flang%3Den;0.6114093183166012' border=0 width=88 height=31 alt='' title='LiveInternet: ?>:070=> G8A;> ?@>A<>B@>2 70 24 G0A0, ?>A5B8B5;59 70 24 G0A0 8 70 A53>4=O'></a>

#16 JavaScript::Write (size: 104, repeated: 1) 

<div id="jcornerBig" style="position:absolute;width:650px;height:650px;z-index:9999;right:0px;top:0px;">

#17 JavaScript::Write (size: 106, repeated: 1) 

<div id="jcornerSmall" style="position:absolute;width:100px;height:100px;z-index:9999;right:0px;top:0px;">

#18 JavaScript::Write (size: 663, repeated: 1) 

<embed src="http://worldtraff.ru/images/large.swf?big=http%3A//worldtraff.ru/images/peeldown/b1_1347049385.jpg&ad_url=http%3A//worldtraff.ru/click/peeldown.php%3Fsid%3D1%26id%3D30%26hash%3D359c2fb4d0df2bc26d0ebf5721af0870" id="jcornerBigEmbed" name="jcornerBigObject" wmode="transparent" quality="high" width="650" height="650" flashvars="big=http%3A//worldtraff.ru/images/peeldown/b1_1347049385.jpg&ad_url=http%3A//worldtraff.ru/click/peeldown.php%3Fsid%3D1%26id%3D30%26hash%3D359c2fb4d0df2bc26d0ebf5721af0870" swliveconnect="true" allowscriptaccess="always" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>

#19 JavaScript::Write (size: 401, repeated: 1) 

<embed src="http://worldtraff.ru/images/small.swf?ico=http%3A//worldtraff.ru/images/peeldown/s7_1347049385.jpg" name="jcornerSmallObject" wmode="transparent" quality="high" width="100" height="100" flashvars="ico=http%3A//worldtraff.ru/images/peeldown/s7_1347049385.jpg" allowscriptaccess="always" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>

#20 JavaScript::Write (size: 60, repeated: 2) 

<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"


HTTP Transactions (49)


Request Response 
GET /templates/allrounder-j1.6/js/jquery-1.5.min.js HTTP/1.1

Host: www.chihuahuacity.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Wed, 07 Nov 2012 13:21:58 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 08 Sep 2012 01:19:37 GMT
Etag: &quot;1563077-12a6-4c9268492dc40&quot;
Accept-Ranges: bytes
Content-Length: 4774
X-Powered-By: PleskLin
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive
GET /in.cgi?7 HTTP/1.1

Host: natestat10.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.chihuahuacity.it/templates/allrounder-j1.6/js/jquery-1.5.min.js
 
HTTP/1.1 302 Found

Content-Type: text/html

Date: Wed, 07 Nov 2012 13:08:12 GMT
Server: Apache/2.2.16 (Debian)
Set-Cookie: wcvuj7=_0_; domain=natestat10.ru; path=/; expires=Thu, 08-Nov-2012 13:08:12 GMT
Location: http://dinclick.com/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 153
Keep-Alive: timeout=15
Connection: Keep-Alive
GET / HTTP/1.1

Host: dinclick.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.chihuahuacity.it/templates/allrounder-j1.6/js/jquery-1.5.min.js
 
HTTP/1.1 200 OK

Content-Type: text/html

Server: nginx/0.7.67
Date: Wed, 07 Nov 2012 13:21:24 GMT
Connection: keep-alive
X-Powered-By: PHP/5.3.3-7+squeeze13
refresh: 1; URL=http://worldtraf.net/?1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
GET /?1 HTTP/1.1

Host: worldtraf.net

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 302 Found

Content-Type: text/html; charset=utf-8

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:25 GMT
Content-Length: 20
Connection: keep-alive
X-Powered-By: PHP/5.3.3-7+squeeze14
Expires: Thu, 21 Jul 1977 07:30:00 GMT
Last-Modified: Wed, 07 Nov 2012 13:21:25 GMT
Cache-Control: max-age=0
Pragma: no-cache
Location: http://worldtraffic.biz/home.html?lang=en
Vary: Accept-Encoding
Content-Encoding: gzip
GET /home.html?lang=en HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/html

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:25 GMT
Content-Length: 5926
Connection: keep-alive
X-Powered-By: PHP/5.3.3-7+squeeze13
Set-Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
GET /styles/main.css HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: text/css

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 3852
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 18:23:10 GMT
Accept-Ranges: bytes
GET /js/fancybox/jquery.mousewheel-3.0.4.pack.js HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: application/x-javascript

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 1279
Connection: keep-alive
Last-Modified: Fri, 17 Aug 2012 23:13:25 GMT
Accept-Ranges: bytes
GET /ajax/libs/jquery/1.4/jquery.min.js HTTP/1.1

Host: ajax.googleapis.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: text/javascript; charset=UTF-8

Vary: Accept-Encoding
Content-Encoding: gzip
Last-Modified: Mon, 02 Apr 2012 18:24:28 GMT
Date: Wed, 07 Nov 2012 12:38:18 GMT
Expires: Wed, 07 Nov 2012 13:38:18 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 27106
X-XSS-Protection: 1; mode=block
Age: 2588
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=3600
GET /js/fancybox/jquery.fancybox-1.3.4.css HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: text/css

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 8852
Connection: keep-alive
Last-Modified: Fri, 17 Aug 2012 23:13:16 GMT
Accept-Ranges: bytes
GET /js/fancybox/jquery.fancybox-1.3.4.pack.js HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: application/x-javascript

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 15624
Connection: keep-alive
Last-Modified: Fri, 17 Aug 2012 23:13:23 GMT
Accept-Ranges: bytes
GET /images/vk.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 3268
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 17:13:09 GMT
Accept-Ranges: bytes
GET /images/fb.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 3839
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 17:13:03 GMT
Accept-Ranges: bytes
GET /images/forum.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 3915
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 18:04:39 GMT
Accept-Ranges: bytes
GET /site_stats/js/s/a?url=worldtraffic.biz HTTP/1.1

Host: xslt.alexa.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.0 200 OK

Content-Type: application/x-javascript

Content-Length: 3153
Connection: keep-alive
x-amz-id-2: TMMnOAppjV5qWi98ymYhbQR6h3rM4EH8+kZtJP6mv9xmM4BdxkxoCziL+LT04LY3
x-amz-request-id: 21EA70F670AF68D3
Date: Sat, 10 Mar 2012 23:04:53 GMT
x-amz-meta-s3fox-filesize: 3153
x-amz-meta-s3fox-modifiedtime: 1291757166000
Last-Modified: Sat, 11 Dec 2010 00:35:05 GMT
Etag: &quot;f4022b30d2ad8a3755b6e53f31c63252&quot;
Accept-Ranges: bytes
Server: AmazonS3
Age: 68572
X-Amz-Cf-Id: YjN0AFZLgtg6uWYAN807nsFSIvoQH_aSfC7MPyuYm8-84w5uZwrfcQ==
Via: 1.0 8b1633b834f6beaa5a2d7797c38cf775.cloudfront.net:1182 (CloudFront), 1.0 4c25c32330f1d2c674ebab4eb0817df7.cloudfront.net (CloudFront)
X-Cache: Hit from cloudfront
GET /images/lj.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 3611
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 18:21:42 GMT
Accept-Ranges: bytes
GET /share/share.js HTTP/1.1

Host: yandex.st

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: application/x-javascript

Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Last-Modified: Fri, 05 Oct 2012 09:49:49 GMT
Etag: &quot;4207170442&quot;
Expires: Sat, 10 Nov 2012 13:21:26 GMT
Cache-Control: max-age=259200
Accept-Ranges: bytes
Content-Length: 11571
Date: Wed, 07 Nov 2012 13:21:26 GMT
Server: lighttpd/1.4.26
GET /images/login_eng.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 4096
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:03:35 GMT
Accept-Ranges: bytes
GET /images/reg_eng.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 5216
Connection: keep-alive
Last-Modified: Sun, 19 Aug 2012 11:36:07 GMT
Accept-Ranges: bytes
GET /images/twitter.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 3319
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 17:13:07 GMT
Accept-Ranges: bytes
GET /images/rus.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 551
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:04:05 GMT
Accept-Ranges: bytes
GET /js/peeldown.php?id=30 HTTP/1.1

Host: wtraff1.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: text/html; charset=windows-1251

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 1048
Connection: keep-alive
X-Powered-By: PHP/5.3.3-7+squeeze13
Vary: Accept-Encoding
Content-Encoding: gzip
GET /images/logo.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 26021
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:03:41 GMT
Accept-Ranges: bytes
GET /images/reg_bold_eng.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 6078
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:03:54 GMT
Accept-Ranges: bytes
GET /ga.js HTTP/1.1

Host: www.google-analytics.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
If-Modified-Since: Wed, 19 Sep 2012 11:51:40 GMT
 
HTTP/1.1 200 OK

Content-Type: text/javascript

Content-Length: 14888
Content-Encoding: gzip
Last-Modified: Mon, 22 Oct 2012 15:51:19 GMT
X-Content-Type-Options: nosniff, nosniff
Date: Wed, 07 Nov 2012 13:11:14 GMT
Expires: Thu, 08 Nov 2012 01:11:14 GMT
Vary: Accept-Encoding
Age: 612
Cache-Control: max-age=43200, public
Server: GFE/2.0
GET /img/icons/88x31_wm_v_blue_on_white_ru.png HTTP/1.1

Host: www.webmoney.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx
Date: Wed, 07 Nov 2012 21:34:59 GMT
Content-Length: 805
Last-Modified: Wed, 15 Jun 2011 10:36:06 GMT
Connection: keep-alive
Expires: Wed, 21 Nov 2012 21:34:59 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes
GET /img/icons/88x31_wm_blue_on_white_ru.png HTTP/1.1

Host: www.webmoney.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx
Date: Wed, 07 Nov 2012 21:34:59 GMT
Content-Length: 854
Last-Modified: Wed, 15 Jun 2011 10:28:34 GMT
Connection: keep-alive
Expires: Wed, 21 Nov 2012 21:34:59 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes
GET /images/4.jpg HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 38944
Connection: keep-alive
Last-Modified: Sun, 19 Aug 2012 13:15:16 GMT
Accept-Ranges: bytes
GET /__utm.gif?utmwv=5.3.7&utms=1&utmn=1249899877&utmhn=worldtraffic.biz&utmcs=UTF-8&utmsr=1176x885&utmvp=1x1&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=World%20Traffic%20Network&utmhid=192001625&utmr=-&utmp=%2Fhome.html%3Flang%3Den&utmac=UA-33874276-1&utmcc=__utma%3D214086161.169729843.1352294487.1352294487.1352294487.1%3B%2B__utmz%3D214086161.1352294487.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmu=q~ HTTP/1.1

Host: www.google-analytics.com
GET /__utm.gif?utmwv=5.3.7&amp;utms=1&amp;utmn=1249899877&amp;utmhn=worldtraffic.biz&amp;utmcs=UTF-8&amp;utmsr=1176x885&amp;utmvp=1x1&amp;utmsc=24-bit&amp;utmul=en-us&amp;utmje=1&amp;utmfl=10.0%20r45&amp;utmdt=World%20Traffic%20Network&amp;utmhid=192001625&amp;utmr=-&amp;utmp=%2Fhome.html%3Flang%3Den&amp;utmac=UA-33874276-1&amp;utmcc=__utma%3D214086161.169729843.1352294487.1352294487.1352294487.1%3B%2B__utmz%3D214086161.1352294487.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&amp;utmu=q~ HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Thu, 01 Nov 2012 01:37:48 GMT
Content-Length: 35
X-Content-Type-Options: nosniff
Pragma: no-cache
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Age: 560618
Server: GFE/2.0
GET /images/2.jpg HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 44784
Connection: keep-alive
Last-Modified: Sun, 19 Aug 2012 13:15:07 GMT
Accept-Ranges: bytes
GET /images/3.jpg HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 34158
Connection: keep-alive
Last-Modified: Sun, 19 Aug 2012 13:15:11 GMT
Accept-Ranges: bytes
GET /images/1.jpg HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 80073
Connection: keep-alive
Last-Modified: Sun, 19 Aug 2012 13:14:47 GMT
Accept-Ranges: bytes
GET /images/footer.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/styles/main.css
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17; __utma=214086161.169729843.1352294487.1352294487.1352294487.1; __utmb=214086161.1.10.1352294487; __utmc=214086161; __utmz=214086161.1352294487.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 39751
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:03:12 GMT
Accept-Ranges: bytes
GET /metrika/watch.js HTTP/1.1

Host: mc.yandex.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: application/x-javascript

Date: Wed, 07 Nov 2012 13:21:26 GMT
Server: Phantom/0.0.0
P3P: CP=&quot;NOI DEVa TAIa OUR BUS UNI STA&quot;
Last-Modified: Fri, 19 Oct 2012 12:23:05 GMT
Content-Encoding: gzip
Expires: Wed, 07 Nov 2012 14:21:26 GMT
Content-Length: 15878
GET /hit?t12.6;r;s1176*885*24;uhttp%3A//worldtraffic.biz/home.html%3Flang%3Den;0.6114093183166012 HTTP/1.1

Host: counter.yadro.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 302 Moved Temporarily

Content-Type: text/html

Date: Wed, 07 Nov 2012 13:21:26 GMT
Server: 0W/0.8c
Location: http://counter.yadro.ru/hit?q;t12.6;r;s1176*885*24;uhttp%3A//worldtraffic.biz/home.html%3Flang%3Den;0.6114093183166012
Content-Length: 32
Expires: Tue, 08 Nov 2011 00:01:40 GMT
Pragma: no-cache
Cache-Control: no-cache
P3P: policyref=&quot;/w3c/p3p.xml&quot;, CP=&quot;UNI&quot;
Set-Cookie: FTID=1Gcc1M2pDoX2; path=/; expires=Thu, 07 Nov 2013 00:01:40 GMT; domain=.yadro.ru
GET /site_stats/gif/s/a/d29ybGR0cmFmZmljLmJpeg==/s.gif HTTP/1.1

Host: xsltcache.alexa.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.0 200 OK

Content-Type: image/gif

Server: squid
Last-Modified: Mon, 05 Nov 2012 08:00:00 GMT
Expires: Thu, 08 Nov 2012 13:09:07 GMT
Cache-Control: public
Content-Length: 3242
Date: Wed, 07 Nov 2012 13:09:06 GMT
Connection: keep-alive
GET /images/slider.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/styles/main.css
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17; __utma=214086161.169729843.1352294487.1352294487.1352294487.1; __utmb=214086161.1.10.1352294487; __utmc=214086161; __utmz=214086161.1352294487.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 129458
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:04:12 GMT
Accept-Ranges: bytes
GET /images/small.swf?ico=http%3A//worldtraff.ru/images/peeldown/s7_1347049385.jpg HTTP/1.1

Host: worldtraff.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: application/x-shockwave-flash

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:27 GMT
Content-Length: 7300
Connection: keep-alive
Last-Modified: Mon, 06 Aug 2012 00:20:41 GMT
Accept-Ranges: bytes
GET /images/large.swf?big=http%3A//worldtraff.ru/images/peeldown/b1_1347049385.jpg&ad_url=http%3A//worldtraff.ru/click/peeldown.php%3Fsid%3D1%26id%3D30%26hash%3D359c2fb4d0df2bc26d0ebf5721af0870 HTTP/1.1

Host: worldtraff.ru
GET /images/large.swf?big=http%3A//worldtraff.ru/images/peeldown/b1_1347049385.jpg&amp;ad_url=http%3A//worldtraff.ru/click/peeldown.php%3Fsid%3D1%26id%3D30%26hash%3D359c2fb4d0df2bc26d0ebf5721af0870 HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: application/x-shockwave-flash

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:27 GMT
Content-Length: 4124
Connection: keep-alive
Last-Modified: Mon, 06 Aug 2012 00:20:41 GMT
Accept-Ranges: bytes
GET /share/static/b-share-icon.png HTTP/1.1

Host: yandex.st

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 200 OK

Content-Type: image/png

Expires: Fri, 16 Sep 2022 13:21:27 GMT
Cache-Control: max-age=311040000
Accept-Ranges: bytes
Etag: &quot;52118894&quot;
Last-Modified: Fri, 05 Oct 2012 09:49:41 GMT
Content-Length: 12931
Date: Wed, 07 Nov 2012 13:21:27 GMT
Server: lighttpd/1.4.26
GET /watch/16261183?rn=688396&wmode=5&callback=_ymjsp445975&page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142128:en:utf-8:v:1825:c:1:la:en-us:hid:871081458:wn:15491:hl:1:t:World%20Traffic%20Network HTTP/1.1

Host: mc.yandex.ru
GET /watch/16261183?rn=688396&amp;wmode=5&amp;callback=_ymjsp445975&amp;page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&amp;browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142128:en:utf-8:v:1825:c:1:la:en-us:hid:871081458:wn:15491:hl:1:t:World%20Traffic%20Network HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
 
HTTP/1.1 302 Found

HTTP/1.1 302 Found

Date: Wed, 07 Nov 2012 13:21:28 GMT
Server: Phantom/0.0.0
P3P: CP=&quot;NOI DEVa TAIa OUR BUS UNI STA&quot;
Last-Modified: Wed, 07 Nov 2012 13:21:28 GMT
Expires: Wed, 07 Nov 2012 13:21:28 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Location: http://mc.yandex.ru/watch/16261183/1?rn=688396&amp;wmode=5&amp;callback=_ymjsp445975&amp;page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&amp;browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142128:en:utf-8:v:1825:c:1:la:en-us:hid:871081458:wn:15491:hl:1:t:World%20Traffic%20Network
Set-Cookie: yandexuid=1234570231352294488; domain=.yandex.ru; path=/; expires=Sat, 05-Nov-2022 13:21:28 GMT
yabs-sid=2386464301352294488; path=/
Content-Length: 0
GET /hit?q;t12.6;r;s1176*885*24;uhttp%3A//worldtraffic.biz/home.html%3Flang%3Den;0.6114093183166012 HTTP/1.1

Host: counter.yadro.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: FTID=1Gcc1M2pDoX2
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Wed, 07 Nov 2012 13:21:28 GMT
Server: 0W/0.8c
Connection: Close
Content-Length: 846
Expires: Tue, 08 Nov 2011 00:01:40 GMT
Pragma: no-cache
Cache-Control: no-cache
P3P: policyref=&quot;/w3c/p3p.xml&quot;, CP=&quot;UNI&quot;
Set-Cookie: VID=3NAzTK2y7P12; path=/; expires=Thu, 07 Nov 2013 00:01:40 GMT; domain=.yadro.ru
GET /images/header_bg.png HTTP/1.1

Host: worldtraffic.biz

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/styles/main.css
Cookie: PHPSESSID=qa3v7irt95aqbleoo8biuicl17
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:26 GMT
Content-Length: 337786
Connection: keep-alive
Last-Modified: Sat, 18 Aug 2012 17:03:25 GMT
Accept-Ranges: bytes
GET /watch/16261183/1?rn=688396&wmode=5&callback=_ymjsp445975&page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142128:en:utf-8:v:1825:c:1:la:en-us:hid:871081458:wn:15491:hl:1:t:World%20Traffic%20Network HTTP/1.1

Host: mc.yandex.ru
GET /watch/16261183/1?rn=688396&amp;wmode=5&amp;callback=_ymjsp445975&amp;page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&amp;browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142128:en:utf-8:v:1825:c:1:la:en-us:hid:871081458:wn:15491:hl:1:t:World%20Traffic%20Network HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: yandexuid=1234570231352294488; yabs-sid=2386464301352294488
 
HTTP/1.1 200 OK

Content-Type: text/javascript

Date: Wed, 07 Nov 2012 13:21:28 GMT
Server: Phantom/0.0.0
P3P: CP=&quot;NOI DEVa TAIa OUR BUS UNI STA&quot;
Last-Modified: Wed, 07 Nov 2012 13:21:28 GMT
Expires: Wed, 07 Nov 2012 13:21:28 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Content-Length: 74
GET /favicon.ico HTTP/1.1

Host: www.chihuahuacity.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Range: bytes=0-
If-Range: &quot;1563077-12a6-4c9268492dc40&quot;
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Wed, 07 Nov 2012 13:22:02 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sat, 08 Sep 2012 01:19:37 GMT
Etag: &quot;1563077-12a6-4c9268492dc40&quot;
Accept-Ranges: bytes
Content-Length: 4774
X-Powered-By: PleskLin
Keep-Alive: timeout=4, max=100
Connection: Keep-Alive
GET /images/peeldown/s7_1347049385.jpg HTTP/1.1

Host: worldtraff.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:28 GMT
Content-Length: 3464
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 20:23:05 GMT
Accept-Ranges: bytes
GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1

Host: fpdownload2.macromedia.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/xml

Server: Apache
Last-Modified: Wed, 31 Oct 2012 21:22:10 GMT
Etag: &quot;87de33-256-4cd617ed12480&quot;
Accept-Ranges: bytes
Content-Length: 598
Date: Wed, 07 Nov 2012 13:21:28 GMT
Connection: keep-alive
GET /images/peeldown/b1_1347049385.jpg HTTP/1.1

Host: worldtraff.ru

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Server: nginx/1.2.4
Date: Wed, 07 Nov 2012 13:21:28 GMT
Content-Length: 56444
Connection: keep-alive
Last-Modified: Fri, 07 Sep 2012 20:23:05 GMT
Accept-Ranges: bytes
GET /watch/16261183?rn=833904&browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142143:en:utf-8:v:1825:c:1:la:en-us:ar:1:nb:1:cl:325:hid:871081458:wn:15491:hl:1 HTTP/1.1

Host: mc.yandex.ru
GET /watch/16261183?rn=833904&amp;browser-info=j:1:s:1176x885x24:f:10.0.45:w:1x1:z:60:i:20121107142143:en:utf-8:v:1825:c:1:la:en-us:ar:1:nb:1:cl:325:hid:871081458:wn:15491:hl:1 HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Cookie: yandexuid=1234570231352294488; yabs-sid=2386464301352294488
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Wed, 07 Nov 2012 13:21:43 GMT
Server: Phantom/0.0.0
P3P: CP=&quot;NOI DEVa TAIa OUR BUS UNI STA&quot;
Last-Modified: Wed, 07 Nov 2012 13:21:43 GMT
Expires: Wed, 07 Nov 2012 13:21:43 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Content-Length: 43
POST /webvisor/16261183?rn=36958&wv-type=0&cnt-class=0&page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&wmode=0&wv-hit=871081458&wv-part=1&wv-check=55312&browser-info=ct%3A1%3Az%3A60%3Ai%3A20121107142128 HTTP/1.1

Host: mc.yandex.ru
POST /webvisor/16261183?rn=36958&amp;wv-type=0&amp;cnt-class=0&amp;page-url=http%3A%2F%2Fworldtraffic.biz%2Fhome.html%3Flang%3Den&amp;wmode=0&amp;wv-hit=871081458&amp;wv-part=1&amp;wv-check=55312&amp;browser-info=ct%3A1%3Az%3A60%3Ai%3A20121107142128 HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://worldtraffic.biz/home.html?lang=en
Content-Length: 20
Content-Type: text/plain; charset=UTF-8
Origin: http://worldtraffic.biz
Cookie: yandexuid=1234570231352294488; yabs-sid=2386464301352294488
Pragma: no-cache
Cache-Control: no-cache
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Wed, 07 Nov 2012 13:21:43 GMT
Server: Phantom/0.0.0
P3P: CP=&quot;NOI DEVa TAIa OUR BUS UNI STA&quot;
Last-Modified: Wed, 07 Nov 2012 13:21:43 GMT
Expires: Wed, 07 Nov 2012 13:21:43 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Access-Control-Allow-Origin: http://worldtraffic.biz
Access-Control-Allow-Credentials: true
Content-Length: 43