Overview

URL landing.primetheraputics.com
IP146.148.34.125
ASNAS15169 Google Inc.
Location United States
Report completed2017-10-13 16:04:57 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 146.148.34.125

Date UQ / IDS / BL URL IP
2017-12-08 06:12:17 +0100
0 - 0 - 1 zoffi.net/MOBAZI/umbauten/Rollenpruefstand/Sp (...) 146.148.34.125
2017-12-07 14:58:47 +0100
0 - 0 - 1 winningelevens.net/ 146.148.34.125
2017-12-06 17:40:47 +0100
0 - 0 - 1 www.mangasky.com/ 146.148.34.125
2017-12-06 15:47:22 +0100
0 - 0 - 1 qtopto.com 146.148.34.125
2017-12-05 20:17:44 +0100
0 - 0 - 2 licke.net/jk34213h4jk23h4jk2.php?ini=v22Mmzzn (...) 146.148.34.125
2017-11-28 04:24:59 +0100
0 - 0 - 2 ffh6.com/ 146.148.34.125
2017-11-22 17:08:49 +0100
0 - 0 - 3 aaakemegood24.com/?21381=136065 146.148.34.125
2017-11-21 15:54:38 +0100
0 - 0 - 1 dl8.iq8download.com/dynamic/standard/standard (...) 146.148.34.125
2017-11-19 01:05:23 +0100
0 - 0 - 1 dl6.iq8download.com/disclosures/products/prod (...) 146.148.34.125
2017-11-17 18:39:15 +0100
0 - 0 - 1 dl6.iq8download.com/disclosures/products/prod (...) 146.148.34.125

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2017-12-13 20:54:39 +0100
0 - 0 - 2 nanda-gregorio.blogspot.de/ 209.85.233.132
2017-12-13 20:54:21 +0100
0 - 0 - 0 172.217.9.206 172.217.9.206
2017-12-13 20:52:07 +0100
0 - 0 - 2 membangun-rumah8870.blogspot.com/ 209.85.233.132
2017-12-13 20:48:40 +0100
0 - 0 - 0 google.de 216.58.211.131
2017-12-13 20:48:28 +0100
0 - 0 - 2 petisaasancristobal.blogspot.com.es/ 209.85.233.132
2017-12-13 20:46:25 +0100
0 - 1 - 0 regretfulcaps.blogspot.jp/ 209.85.233.132
2017-12-13 20:43:08 +0100
0 - 0 - 1 asissyatheart.blogspot.de/2012/11/emma-glover (...) 209.85.233.132
2017-12-13 20:42:24 +0100
0 - 0 - 1 bocagulosa2.blogspot.de/2012/09/valentina-and (...) 209.85.233.132
2017-12-13 20:41:45 +0100
0 - 0 - 1 thecreationfallacy.blogspot.de/2012/06/jaime- (...) 209.85.233.132
2017-12-13 20:41:30 +0100
0 - 0 - 1 asissyatheart.blogspot.de/2010/11/jersey-shor (...) 209.85.233.132

No other reports on domain: primetheraputics.com



JavaScript

Executed Scripts (19)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (25)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: landing.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         146.148.34.125
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Date: Fri, 13 Oct 2017 14:11:02 GMT
Server: Apache
Location: http://ww11.primetheraputics.com/
Content-Length: 0
Connection: close


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: ww11.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         166.78.106.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 14:11:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Check: 3c12dc4d54f8e22d666785b733b0052100c53444
X-Language: english
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Buckets: bucket032
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_aN2phS7WgpnGnUoqk5U8qJAZNbhJrZcqNjCT+XO1Hy1PxszOLv69EqB7d3mGnNo7r1HJp59EkNReqnIHcBIS9g==
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4726
Md5:    09d65214c9d292a02a11e58018d96f8f
Sha1:   06cffc17f0d334f926bf87780b75b7aa519a3929
Sha256: 5db662052997d3c3b68aca100097544bf0354008f2345c293cf2e2d190dfcb06
                                        
                                            GET /adsense/domains/caf.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         172.217.22.164
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Date: Fri, 13 Oct 2017 14:11:02 GMT
Expires: Fri, 13 Oct 2017 14:11:02 GMT
Cache-Control: private, max-age=3600
Etag: "3994098108845899629"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   84206
Md5:    eea249a30a913269eeb226d4ce7a1a0e
Sha1:   1a2b8c3ce49b16a89a6796d947afa3e1e8de17c7
Sha256: 38a626cd36ac63c4fc5fe8891ec17523fcc7ae8d317903d2cce8b01b51326859
                                        
                                            GET /scripts/js3caf.js HTTP/1.1 
Host: d1grtyyel8f1mh.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         13.32.66.106
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 6350
Connection: keep-alive
Server: nginx
Date: Wed, 16 Aug 2017 12:40:06 GMT
Last-Modified: Thu, 04 May 2017 15:30:32 GMT
Etag: "590b4918-18ce"
Accept-Ranges: bytes
Age: 5421
X-Cache: Hit from cloudfront
Via: 1.1 5eeea07f60299cfd77eaac2a681cd9fc.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Bnatutmt_88EmW_BqAlIEdxKqwnYfRQh-Cox8LrgtQZ9FPCzzcnhuQ==


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   6350
Md5:    9ce17ae45a5bcdc9f979c1b9047c990a
Sha1:   db48363c6909461a3e0310c3a6df189f73eef5d3
Sha256: 93f084b672bcb176b203df50c903fc67445a18d8cf0251a282c2f2a78a4b65a6
                                        
                                            GET /themes/assets/style.css HTTP/1.1 
Host: d1grtyyel8f1mh.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         13.32.66.106
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 16 Aug 2017 20:01:25 GMT
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: W/"57df9bb5-33d"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 65343
X-Cache: Hit from cloudfront
Via: 1.1 3de2b8f6c14c41dccebf4a62152f971d.cloudfront.net (CloudFront)
X-Amz-Cf-Id: SGasU0YcFEsEjQMGP4WmN_1fz6_-49YKBMrbQ1OqqJsU4aVgU8ZdpA==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   343
Md5:    c689d30608f974031e2c24c299c8dc4b
Sha1:   b483802c89db0131b6d7768a68c43e5ae411d601
Sha256: 78c58f7b6fb701d9644af4456df21dca0e90d09e88952227d6d178e8d4e5a386
                                        
                                            GET /themes/cleanPeppermintBlack_25fc7c59/style.css HTTP/1.1 
Host: d1grtyyel8f1mh.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         13.32.66.106
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Date: Wed, 16 Aug 2017 13:45:53 GMT
Last-Modified: Thu, 23 Feb 2017 16:18:29 GMT
Etag: W/"58af0b55-5ab"
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 1472
X-Cache: Hit from cloudfront
Via: 1.1 f9405e4cfcaaebc08a9420572068f68f.cloudfront.net (CloudFront)
X-Amz-Cf-Id: 41aCZZz1Ne5Ls1SMc2drDEUH4zQp1TDeEwWFmAs_niRGbsRTioq-OQ==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   671
Md5:    f3422d76d66f114b042b83f6025b031e
Sha1:   65c3414064d88f0656f29a5923d197154ddcee15
Sha256: bade0bff627ac19e0aabd91666aa76b18bc85293e13b18b874cb4c5e4b51f2f7
                                        
                                            GET /css?family=Libre+Baskerville:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         173.194.220.95
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 13 Oct 2017 14:11:03 GMT
Date: Fri, 13 Oct 2017 14:11:03 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   285
Md5:    5b8b847a245c44217dcf6c7d3f06b872
Sha1:   c2de4431230487583973daed1753a9ec5cd085c9
Sha256: 28b8e9695f86ba0b5bc9933bac5e1ec67bdfdb1a87a0f4a7362c4c53467d9adc
                                        
                                            GET /css?family=Boogaloo HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         173.194.220.95
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 13 Oct 2017 14:11:03 GMT
Date: Fri, 13 Oct 2017 14:11:03 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   210
Md5:    1bf44a53fff22e11d88fab3666432336
Sha1:   bf09945afe5e0c335bd130a821685479fede1419
Sha256: d49e6b57aa74e53cdec03a20aaa5ff1ffe648f89d76434687b6db8f06318a40d
                                        
                                            GET /s/boogaloo/v8/1x_XysQB9ZwoSzu9a0nb7PesZW2xOQ-xsNqO47m55DA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Boogaloo
Origin: http://ww11.primetheraputics.com

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 13508
Date: Wed, 11 Oct 2017 08:10:50 GMT
Expires: Thu, 11 Oct 2018 08:10:50 GMT
Last-Modified: Tue, 10 Oct 2017 23:08:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 194413


--- Additional Info ---
Magic:  data
Size:   13508
Md5:    d95fbdc74ca694ca85f0e36419db33cb
Sha1:   818dbd1b9ede0599fec6f324bc821a10b5ea5004
Sha256: 24354affadf178770e9baaa92a9c332678daa1a5a5121b861611fc184990c342
                                        
                                            GET /themes/cleanPeppermintBlack_25fc7c59/images/chalkboard.jpg HTTP/1.1 
Host: d1grtyyel8f1mh.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://d1grtyyel8f1mh.cloudfront.net/themes/cleanPeppermintBlack_25fc7c59/style.css

                                         
                                         13.32.66.106
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 98885
Connection: keep-alive
Server: nginx
Date: Tue, 15 Aug 2017 13:47:47 GMT
Last-Modified: Thu, 23 Feb 2017 16:18:29 GMT
Etag: "58af0b55-18245"
Accept-Ranges: bytes
Age: 1348
X-Cache: Hit from cloudfront
Via: 1.1 5eeea07f60299cfd77eaac2a681cd9fc.cloudfront.net (CloudFront)
X-Amz-Cf-Id: iTSDUfvOXloZhU0M_hvaoK4FBLpTuKcD6H0Po5Jk2rt2j4Ly8YF2bw==


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   98885
Md5:    3580888493687d3e0f565802d3541191
Sha1:   a986639871bbeb01b4255f88a0539ed9a4d7897a
Sha256: 9375c1194961da3973e66793a778e07b4295c310ae9e45e3dca877f2777f3f08
                                        
                                            GET /ga.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 13 Oct 2017 13:50:45 GMT
Expires: Fri, 13 Oct 2017 15:50:45 GMT
Last-Modified: Thu, 28 Sep 2017 22:31:34 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 16615
Age: 1218
Cache-Control: public, max-age=7200


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16615
Md5:    35b5f4ce166821a2bf0477079a931144
Sha1:   8dc20b8b0bdb98de491a74246ead5ba3306015ee
Sha256: 4023bd853d5d297718309eafc53af1c88852bfadd2af68676914d3a1f270aa9d
                                        
                                            GET /track.php?domain=primetheraputics.com&toggle=browserjs&uid=MTUwNzkwMzg2Mi43ODU6NzIwZjczNWI2NDkxYzk3MmFiY2NlZGU3MmFjZWI4YmU2ZGI5ZjliZWIyMDk5ZjgwNWE4YmI4OTBmMTkxN2U2Njo1OWUwYzk3NmJmYTc3 HTTP/1.1 
Host: ww11.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         166.78.106.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 14:11:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: browserjs
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
                                        
                                            GET /r/__utm.gif?utmwv=5.7.0&utms=1&utmn=1087726857&utmhn=ww11.primetheraputics.com&utme=8(Theme*Theme%20Type*Category%20ID*5!domty)9(CleanPeppermintBlack*two*0*5!ascii)11(1)&utmcs=UTF-8&utmsr=1176x885&utmvp=1159x754&utmsc=24-bit&utmul=en-us&utmje=1&utmfl=10.0%20r45&utmdt=primetheraputics.com&utmhid=1122813727&utmr=-&utmp=%2F&utmht=1507903864185&utmac=UA-48689684-1&utmcc=__utma%3D231408281.1422075256.1507903864.1507903864.1507903864.1%3B%2B__utmz%3D231408281.1507903864.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&aip=1&utmjid=1404455394&utmredir=1&utmu=qxQAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 13 Oct 2017 14:11:04 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /domainads/tracking/caf.gif?ts=1507903864195&rid=3795902 HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Content-Length: 43
Date: Fri, 13 Oct 2017 14:11:04 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Last-Modified: Thu, 21 Apr 2016 03:17:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    55fade2068e7503eae8d7ddf5eb6bd09
Sha1:   317496a096d6c86486a71d4521994bcd171a6bb3
Sha256: e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
                                        
                                            GET /static/caf/slave.html HTTP/1.1 
Host: dp.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 637
Date: Fri, 13 Oct 2017 14:03:22 GMT
Expires: Fri, 13 Oct 2017 15:03:22 GMT
Last-Modified: Thu, 01 Jun 2017 13:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=3600
Age: 462


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   637
Md5:    c2fb36d40f162410099ac275a7c9b228
Sha1:   6d79927eb17e67f923adc6921dc13e9806785abb
Sha256: 8f075d160f4081236c3c6983a22ea2399e502d7f7fcadf54709c0a0c91c890c6
                                        
                                            GET /dp/ads?max_radlink_len=40&r=m&client=dp-teaminternet12_3ph&channel=bucket032%2Cbucket049&hl=no&adtest=on&type=3&optimize_terms=on&swp=as-drid-2160757494758488&uiopt=true&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&adrep=0&num=0&output=afd_ads&domain_name=ww11.primetheraputics.com&v=3&adext=as1%2Csr1&bsl=8&u_his=1&u_tz=120&dt=1507903864219&u_w=1176&u_h=885&biw=1159&bih=754&psw=1159&psh=754&frm=0&uio=uv3cs1ff2sa16fa2sl1sr1-wi666st22sa14lt33-&jsv=39940&rurl=http%3A%2F%2Fww11.primetheraputics.com%2F HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/
Origin: http://ww11.primetheraputics.com

                                         
                                         172.217.22.164
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Content-Disposition: inline
Date: Fri, 13 Oct 2017 14:11:04 GMT
Expires: Fri, 13 Oct 2017 14:11:04 GMT
Cache-Control: private, max-age=3600
Content-Encoding: gzip
Server: gws
Content-Length: 1556
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1556
Md5:    14e41b6cf1d3ed789f13579d403a6705
Sha1:   b5a8768061d11f4dc82e1fcfdc2f0ec1d24d55ed
Sha256: 1fb05f6c51e8f90c94e3ac5de05d81430d8f020cfd05197428b8b33d63214fe9
                                        
                                            GET /apps/domainpark/domainpark.cgi?max_radlink_len=40&r=m&client=dp-teaminternet12_3ph&channel=bucket032%2Cbucket049&hl=no&adtest=off&type=3&optimize_terms=on&drid=as-drid-2160757494758488&uiopt=true&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&adrep=0&num=0&output=caf&domain_name=ww11.primetheraputics.com&v=3&adext=as1%2Csr1&bsl=8&u_his=1&u_tz=120&dt=1507903864217&u_w=1176&u_h=885&biw=1159&bih=754&psw=1159&psh=754&frm=0&uio=uv3cs1ff2sa16fa2sl1sr1-wi666st22sa14lt33-&jsv=39940&rurl=http%3A%2F%2Fww11.primetheraputics.com%2F HTTP/1.1 
Host: dp.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/

                                         
                                         216.58.211.130
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Fri, 13 Oct 2017 14:11:04 GMT
Server: domainserver
Cache-Control: private
Content-Length: 1652
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1652
Md5:    cf270b2e882973601b3fde0cfafb018d
Sha1:   63ecc7b525b00ba243477a880e24b9f018d57815
Sha256: e5b29bcf439503d7a040d7206fead719341697b8488cda48096ce505ed92efc2
                                        
                                            POST /ls.php HTTP/1.1 
Host: ww11.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Referer: http://ww11.primetheraputics.com/
Content-Length: 1542
Cookie: __utma=231408281.1422075256.1507903864.1507903864.1507903864.1; __utmb=231408281.1.10.1507903864; __utmc=231408281; __utmz=231408281.1507903864.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmv=231408281.|1=Theme=CleanPeppermintBlack=1; __utmt=1
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         166.78.106.200
HTTP/1.1 201 Created
Content-Type: text/javascript; charset=utf-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 14:11:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Log-Success: 59e0c978a91de552418b4905 (Hit: 0)
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400


--- Additional Info ---
                                        
                                            GET /ajax/services/js/error?mn=ads.domains&vh=3994098108845899629&v=1.0&em=Not%20enough%20arguments&cem=sHNE&nc1507903864660 HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?max_radlink_len=40&r=m&client=dp-teaminternet12_3ph&channel=bucket032%2Cbucket049&hl=no&adtest=off&type=3&optimize_terms=on&drid=as-drid-2160757494758488&uiopt=true&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&adrep=0&num=0&output=caf&domain_name=ww11.primetheraputics.com&v=3&adext=as1%2Csr1&bsl=8&u_his=1&u_tz=120&dt=1507903864217&u_w=1176&u_h=885&biw=1159&bih=754&psw=1159&psh=754&frm=0&uio=uv3cs1ff2sa16fa2sl1sr1-wi666st22sa14lt33-&jsv=39940&rurl=http%3A%2F%2Fww11.primetheraputics.com%2F

                                         
                                         64.233.165.95
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 13 Oct 2017 14:11:04 GMT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Content-Length: 43
Server: GSE


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    55fade2068e7503eae8d7ddf5eb6bd09
Sha1:   317496a096d6c86486a71d4521994bcd171a6bb3
Sha256: e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 14:11:04 GMT
Expires: Tue, 17 Oct 2017 14:11:04 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    f99c8fd2106061228e04e44345827db9
Sha1:   3d8a35a963b5d0481e02b6dad5feb9be33471993
Sha256: 57b59a56c619c145d4800ded6e727e32aa7a48e271c8708424527a7576c14f04
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=598180, public, no-transform, must-revalidate
Last-Modified: Fri, 13 Oct 2017 12:19:39 GMT
Expires: Fri, 20 Oct 2017 12:19:39 GMT
Date: Fri, 13 Oct 2017 14:11:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    df996a75bf8bc1fac903d9c242fb0ab5
Sha1:   17022cd9eae9808bff16284ed63cbd895be5976f
Sha256: 1563ba4124e2c93a2f6cea42d53083fac0b22854a7a8b68b317e4e90a60df9c8
                                        
                                            GET /afs/gen_204?output=uds_ads_only&zx=urstxkxuks2c&pbt=er&errt=ads.domains&errv=3994098108845899629&errm=sHNE&emsg=Not%20enough%20arguments HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?max_radlink_len=40&r=m&client=dp-teaminternet12_3ph&channel=bucket032%2Cbucket049&hl=no&adtest=off&type=3&optimize_terms=on&drid=as-drid-2160757494758488&uiopt=true&oe=UTF-8&ie=UTF-8&fexp=21404&format=r10%7Cs&adrep=0&num=0&output=caf&domain_name=ww11.primetheraputics.com&v=3&adext=as1%2Csr1&bsl=8&u_his=1&u_tz=120&dt=1507903864217&u_w=1176&u_h=885&biw=1159&bih=754&psw=1159&psh=754&frm=0&uio=uv3cs1ff2sa16fa2sl1sr1-wi666st22sa14lt33-&jsv=39940&rurl=http%3A%2F%2Fww11.primetheraputics.com%2F

                                         
                                         172.217.22.164
HTTP/1.1 204 No Content
Content-Type: text/html; charset=ISO-8859-1
                                        
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Date: Fri, 13 Oct 2017 14:11:04 GMT
Server: gws
Content-Length: 0
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Set-Cookie: 1P_JAR=2017-10-13-14; expires=Fri, 20-Oct-2017 14:11:04 GMT; path=/; domain=.google.com NID=114=aevZly5Lwi7DsQOMNxVaGAlTNagKfJlHgwm_aAhRqPOVbRvBpSP-7P1w303gIBjF_3zyJF10MJkvxsxHBvaLFAq7uB4-9uc30Q25Xa5R2kbt5hK1rNVBBqjgU8FuIF7N; expires=Sat, 14-Apr-2018 14:11:04 GMT; path=/; domain=.google.com; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
                                        
                                            GET /track.php?domain=primetheraputics.com&caf=1&toggle=feed&feed=afc&uid=MTUwNzkwMzg2Mi43ODU6NzIwZjczNWI2NDkxYzk3MmFiY2NlZGU3MmFjZWI4YmU2ZGI5ZjliZWIyMDk5ZjgwNWE4YmI4OTBmMTkxN2U2Njo1OWUwYzk3NmJmYTc3 HTTP/1.1 
Host: ww11.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/
Cookie: __utma=231408281.1422075256.1507903864.1507903864.1507903864.1; __utmb=231408281.1.10.1507903864; __utmc=231408281; __utmz=231408281.1507903864.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmv=231408281.|1=Theme=CleanPeppermintBlack=1; __utmt=1

                                         
                                         166.78.106.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 14:11:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: feed
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: ww11.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __utma=231408281.1422075256.1507903864.1507903864.1507903864.1; __utmb=231408281.1.10.1507903864; __utmc=231408281; __utmz=231408281.1507903864.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmv=231408281.|1=Theme=CleanPeppermintBlack=1; __utmt=1

                                         
                                         166.78.106.200
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Fri, 13 Oct 2017 14:11:05 GMT
Content-Length: 0
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2016 08:03:01 GMT
Etag: "57df9bb5-0"
Accept-Ranges: bytes


--- Additional Info ---
                                        
                                            GET /track.php?domain=primetheraputics.com&caf=1&toggle=answercheck&answer=yes&uid=MTUwNzkwMzg2Mi43ODU6NzIwZjczNWI2NDkxYzk3MmFiY2NlZGU3MmFjZWI4YmU2ZGI5ZjliZWIyMDk5ZjgwNWE4YmI4OTBmMTkxN2U2Njo1OWUwYzk3NmJmYTc3 HTTP/1.1 
Host: ww11.primetheraputics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://ww11.primetheraputics.com/
Cookie: __utma=231408281.1422075256.1507903864.1507903864.1507903864.1; __utmb=231408281.1.10.1507903864; __utmc=231408281; __utmz=231408281.1507903864.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmv=231408281.|1=Theme=CleanPeppermintBlack=1; __utmt=1

                                         
                                         166.78.106.200
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 14:11:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Custom-Track: answercheck
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2