Overview

URLhttp://xxx8.top-girls.cu.cc/
IP216.38.62.18
ASNAS25847 ServInt
Location United States
Report completed2012-11-17 20:31:28 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader8.0
Java1.6.0_26


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Source IP Destination IP Severity Alert
2012-11-17 20:30:53 urlQuery Client 216.38.62.182ET CURRENT_EVENTS HTTP Request to a *.cu.cc domain
2012-11-17 20:30:54 urlQuery Client 216.38.62.182ET CURRENT_EVENTS HTTP Request to a *.cu.cc domain
2012-11-17 20:30:56 urlQuery Client 199.59.241.1792ET CURRENT_EVENTS HTTP Request to a *.cu.cc domain
2012-11-17 20:30:56 urlQuery Client 199.59.241.1792ET CURRENT_EVENTS HTTP Request to a *.cu.cc domain
2012-11-17 20:30:57 urlQuery Client 216.151.212.1752ET CURRENT_EVENTS HTTP Request to a *.cu.cc domain
2012-11-17 20:30:58 urlQuery Client 216.38.62.182ET CURRENT_EVENTS HTTP Request to a *.cu.cc domain
Snort /w Sourcefire VRT No alerts detected


Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 216.38.62.18

Date Alerts / IDS URL IP
2013-02-16 09:44:180 / 5http://establishedforcourse.cu.cc/f/notepad.exe?ts=a970a8f7&affid=41100216.38.62.18
2013-02-13 23:54:300 / 6http://vertuks.cu.cc/data/ap2.php216.38.62.18
2013-02-13 18:57:460 / 6http://cesared.cu.cc/data/ap2.php216.38.62.18
2013-02-13 15:53:180 / 6http://nertgydev.cu.cc/links/fate_acted.php216.38.62.18
2013-02-13 15:36:300 / 6http://jackrussel.cu.cc/data/ap2.php216.38.62.18
2013-02-13 15:20:260 / 6http://asuak.cu.cc/links/considered-cross_behalf_answered.php216.38.62.18

Last 6 reports on ASN: AS25847 ServInt

Date Alerts / IDS URL IP
2013-02-18 08:41:140 / 3http://3questionsgetthegirl.com/simple-trick-video/?afid=LinkTrust207.58.184.243
2013-02-18 06:10:370 / 1http://64.64.1.169/hKy.exe64.64.1.169
2013-02-17 16:19:380 / 1http://www.clubcivic.com/board/showthread.php?t=130823207.58.135.11
2013-02-17 16:18:280 / 0http://www.tunersports.com/external/related-products.php?storeid=cc&searchquery=how%20to%20 (...)216.22.26.25
2013-02-17 16:14:150 / 0http://www.tunersports.com/external/related-products.php?storeid=cc&searchquery=how%20to%20 (...)216.22.26.25
2013-02-17 13:08:140 / 1http://www.panna.org/206.214.222.188



JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 244, repeated: 1) 

<frameset rows="100%,*" frameborder="no" border="0" framespacing="0"><frame src="http://15647.bodisparking.com/xxx8top-girls.cu.cc?framerequest=1&refurl=http%3A%2F%2F15647.bodisparking.com%2Fxxx8top-girls.cu.cc" name="landingparent"></frameset>


HTTP Transactions (18)


Request Response 
GET / HTTP/1.1

Host: xxx8.top-girls.cu.cc

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/html

Date: Sat, 17 Nov 2012 19:30:53 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Length: 1084
Connection: close
GET /free.php?domain=xxx8.top-girls.cu.cc HTTP/1.1

Host: www.registry.cu.cc

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://xxx8.top-girls.cu.cc/
 
HTTP/1.1 302 Found

Content-Type: text/html

Date: Sat, 17 Nov 2012 19:30:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Set-Cookie: PHPSESSID=0bdaac9b136986afeaa791876b858742; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://15647.bodisparking.com/xxx8top-girls.cu.cc
Content-Length: 3
Connection: close
GET /xxx8top-girls.cu.cc HTTP/1.1

Host: 15647.bodisparking.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://xxx8.top-girls.cu.cc/
 
HTTP/1.1 200 OK

Content-Type: text/html

Last-Modified: Thu, 19 Apr 2012 04:23:41 GMT
Accept-Ranges: bytes
Etag: &quot;8044f33e41dcd1:0&quot;
Server: Microsoft-IIS/7.5
Date: Sat, 17 Nov 2012 19:31:08 GMT
Content-Length: 1233
GET /xxx8top-girls.cu.cc?framerequest=1&refurl=http%3A%2F%2F15647.bodisparking.com%2Fxxx8top-girls.cu.cc HTTP/1.1

Host: 15647.bodisparking.com
GET /xxx8top-girls.cu.cc?framerequest=1&amp;refurl=http%3A%2F%2F15647.bodisparking.com%2Fxxx8top-girls.cu.cc HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://15647.bodisparking.com/xxx8top-girls.cu.cc
 
HTTP/1.1 200 OK

Content-Type: text/html; charset=utf-8

Content-Length: 1742
Content-Encoding: gzip
Server: Microsoft-IIS/7.5
Date: Sat, 17 Nov 2012 19:31:09 GMT
GET /favicon.ico HTTP/1.1

Host: 15647.bodisparking.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Server: Microsoft-IIS/7.5
Date: Sat, 17 Nov 2012 19:31:10 GMT
Content-Length: 1245
GET /tracking?method=ZeroClickRequest&enc=cmk9MjI4NTU3JmQ9eHh4OHRvcC1naXJscy5jdS5jYyZzPTgydGRxbWdmY3FuYXViaHMmc3I9JnRhZ2lkPSZ6cGlkPSZpdWY9dHJ1ZSZ1Zj0xNTY0NyZzaT0zMiZzdD04NTgmenJpPXY1a2R5amh6cHNocjNnamkmcGlkPTg4JnBiPTAuMDAwMjk0&sw=1176&sh=885&r=http%3A%2F%2Ffw.dnslink.com%2F%3Fdomainname%3Dxxx8top-girls.cu.cc%26seedterm%3Dxxx8top-girls.cu.cc%26publicid%3D279F8BD6-C89B-40E3-988D-CD403BDEF41D HTTP/1.1

Host: 15647.bodisparking.com
GET /tracking?method=ZeroClickRequest&amp;enc=cmk9MjI4NTU3JmQ9eHh4OHRvcC1naXJscy5jdS5jYyZzPTgydGRxbWdmY3FuYXViaHMmc3I9JnRhZ2lkPSZ6cGlkPSZpdWY9dHJ1ZSZ1Zj0xNTY0NyZzaT0zMiZzdD04NTgmenJpPXY1a2R5amh6cHNocjNnamkmcGlkPTg4JnBiPTAuMDAwMjk0&amp;sw=1176&amp;sh=885&amp;r=http%3A%2F%2Ffw.dnslink.com%2F%3Fdomainname%3Dxxx8top-girls.cu.cc%26seedterm%3Dxxx8top-girls.cu.cc%26publicid%3D279F8BD6-C89B-40E3-988D-CD403BDEF41D HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://15647.bodisparking.com/xxx8top-girls.cu.cc?framerequest=1&amp;refurl=http%3A%2F%2F15647.bodisparking.com%2Fxxx8top-girls.cu.cc
 
HTTP/1.1 302 Found

Content-Type: text/html; charset=UTF-8

Cache-Control: private
Content-Length: 0
Location: http://fw.dnslink.com/?domainname=xxx8top-girls.cu.cc&amp;seedterm=xxx8top-girls.cu.cc&amp;publicid=279F8BD6-C89B-40E3-988D-CD403BDEF41D
Server: Microsoft-IIS/7.5
Date: Sat, 17 Nov 2012 19:31:10 GMT
GET /?domainname=xxx8top-girls.cu.cc&seedterm=xxx8top-girls.cu.cc&publicid=279F8BD6-C89B-40E3-988D-CD403BDEF41D HTTP/1.1

Host: fw.dnslink.com
GET /?domainname=xxx8top-girls.cu.cc&amp;seedterm=xxx8top-girls.cu.cc&amp;publicid=279F8BD6-C89B-40E3-988D-CD403BDEF41D HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://15647.bodisparking.com/xxx8top-girls.cu.cc?framerequest=1&amp;refurl=http%3A%2F%2F15647.bodisparking.com%2Fxxx8top-girls.cu.cc
 
HTTP/1.1 302 Found

Content-Type: text/html; charset=utf-8

Cache-Control: private
Location: https://www.dntx.com/tr?id=02b5ccf5878f92aef999199a45badacbbf76b762
Server: Microsoft-IIS/7.5
X-AspNetMvc-Version: 3.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 17 Nov 2012 19:30:47 GMT
Content-Length: 184
POST / HTTP/1.1

Host: ocsp.thawte.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 
HTTP/1.0 200 Ok

Content-Type: application/ocsp-response

Last-Modified: Fri, 16 Nov 2012 08:48:35 GMT
Expires: Fri, 23 Nov 2012 08:48:35 GMT
Content-Transfer-Encoding: binary
Content-Length: 1205
Cache-Control: max-age=479857, public, no-transform, must-revalidate
Date: Sat, 17 Nov 2012 19:30:58 GMT
nncoection: close
Connection: Keep-Alive
GET /favicon.ico HTTP/1.1

Host: 15647.bodisparking.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 404 Not Found

Content-Type: text/html

Server: Microsoft-IIS/7.5
Date: Sat, 17 Nov 2012 19:31:11 GMT
Content-Length: 1245
GET /tr?id=02b5ccf5878f92aef999199a45badacbbf76b762 HTTP/1.1

Host: www.dntx.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://15647.bodisparking.com/xxx8top-girls.cu.cc?framerequest=1&amp;refurl=http%3A%2F%2F15647.bodisparking.com%2Fxxx8top-girls.cu.cc
 
HTTP/1.1 200 OK

Content-Type: text/html; charset=utf-8

Server: nginx
Date: Sat, 17 Nov 2012 19:30:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Content-Encoding: gzip
GET /favicon.ico HTTP/1.1

Host: xxx8.top-girls.cu.cc

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: image/x-icon

Date: Sat, 17 Nov 2012 19:30:58 GMT
Server: Apache
Last-Modified: Tue, 18 Oct 2011 13:19:23 GMT
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
GET /tr?id=02b5ccf5878f92aef999199a45badacbbf76b762&confirm=ed99ab610ed6925057a0686efac6c7bc&ref=XMgaUP92F1XinFSFmoDP1EUW5OAEsw7mi9IPvtDNUd/MiGV8lYKbod5ybCXxLKNrWOp7GsQrtw+SbnavZzCqR6CiMlMfBXihd2xMbRHlEC+v9+syLU8zU+VSX9g9SJlfoLaqXva7uHNyOUEV2KuqPgV7N4IV0eD8HOaKtRbIV4jkQLN4pxhsIFQP6OhyTVZr HTTP/1.1

Host: www.dntx.com
GET /tr?id=02b5ccf5878f92aef999199a45badacbbf76b762&amp;confirm=ed99ab610ed6925057a0686efac6c7bc&amp;ref=XMgaUP92F1XinFSFmoDP1EUW5OAEsw7mi9IPvtDNUd/MiGV8lYKbod5ybCXxLKNrWOp7GsQrtw+SbnavZzCqR6CiMlMfBXihd2xMbRHlEC+v9+syLU8zU+VSX9g9SJlfoLaqXva7uHNyOUEV2KuqPgV7N4IV0eD8HOaKtRbIV4jkQLN4pxhsIFQP6OhyTVZr HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.dntx.com/tr?id=02b5ccf5878f92aef999199a45badacbbf76b762
 
HTTP/1.1 200 OK

HTTP/1.1 200 OK

Server: nginx
Date: Sat, 17 Nov 2012 19:30:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: Express
GET /favicon.ico HTTP/1.1

Host: www.dntx.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: image/x-icon

Server: nginx
Date: Sat, 17 Nov 2012 19:30:58 GMT
Content-Length: 1150
Last-Modified: Thu, 08 Nov 2012 14:30:53 GMT
Connection: keep-alive
Accept-Ranges: bytes
GET /landingban/index.php?lid=31&pid=4619-52CG&country=no&info=ML&&site=XXXX HTTP/1.1

Host: www.spcwm.com
GET /landingban/index.php?lid=31&amp;pid=4619-52CG&amp;country=no&amp;info=ML&amp;&amp;site=XXXX HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 
HTTP/1.1 200 OK

Content-Type: text/html

Cache-Control: no-cache=&quot;set-cookie&quot;
Date: Sat, 17 Nov 2012 19:30:58 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.7 with Suhosin-Patch
Set-Cookie: AWSELB=33FD775910037A1B0218283B3F9F4A3D9202D1B5160ADCEBA58FDD785DAFFD95B259A507B43713BB44D10973C48306FF2166CBEA4A71733D97751376D92B8932E3F5077991;PATH=/;MAX-AGE=3600
X-Powered-By: PHP/5.2.4-2ubuntu5.7
X-Server: ginger
Content-Length: 210
Connection: keep-alive
GET /landingban/no/grey.jpg HTTP/1.1

Host: www.spcwm.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.spcwm.com/landingban/index.php?lid=31&amp;pid=4619-52CG&amp;country=no&amp;info=ML&amp;&amp;site=XXXX
Cookie: AWSELB=33FD775910037A1B0218283B3F9F4A3D9202D1B5160ADCEBA58FDD785DAFFD95B259A507B43713BB44D10973C48306FF2166CBEA4A71733D97751376D92B8932E3F5077991
 
HTTP/1.1 200 OK

Content-Type: image/jpeg

Accept-Ranges: bytes
Date: Sat, 17 Nov 2012 19:30:58 GMT
Etag: &quot;8fcb11-375df-4cb3772b5cec0&quot;
Last-Modified: Thu, 04 Oct 2012 08:21:55 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.7 with Suhosin-Patch
X-Server: ginger
Content-Length: 226783
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: www.spcwm.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: AWSELB=33FD775910037A1B0218283B3F9F4A3D9202D1B5160ADCEBA58FDD785DAFFD95B259A507B43713BB44D10973C48306FF2166CBEA4A71733D97751376D92B8932E3F5077991
 
HTTP/1.1 404 Not Found

Content-Type: text/html; charset=iso-8859-1

Date: Sat, 17 Nov 2012 19:30:59 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.7 with Suhosin-Patch
Content-Length: 327
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: www.spcwm.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: AWSELB=33FD775910037A1B0218283B3F9F4A3D9202D1B5160ADCEBA58FDD785DAFFD95B259A507B43713BB44D10973C48306FF2166CBEA4A71733D97751376D92B8932E3F5077991
 
HTTP/1.1 404 Not Found

Content-Type: text/html; charset=iso-8859-1

Date: Sat, 17 Nov 2012 19:31:01 GMT
Server: Apache/2.2.8 (Ubuntu) PHP/5.2.4-2ubuntu5.7 with Suhosin-Patch
Content-Length: 327
Connection: keep-alive
GET /favicon.ico HTTP/1.1

Host: xxx8.top-girls.cu.cc

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive