Overview

URL www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html
IP172.217.21.147
ASNAS15169 Google Inc.
Location United States
Report completed2018-01-21 07:47:41 CET
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-01-21 2 www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2- (...) Malware
2018-01-21 2 coinhive.com/lib/coinhive.min.js Malware
DNS-BH
Added / Verified Severity Host Comment
2017-12-13 2 coinhive.com maliciousjs
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 172.217.21.147

Date UQ / IDS / BL URL IP
2018-02-23 14:44:32 +0100
0 - 0 - 0 www.capefishing.co.za/rates 172.217.21.147
2018-02-23 14:39:49 +0100
0 - 0 - 4 www.phatgiao.biz/2014/05/phim-hoat-hinh-phat- (...) 172.217.21.147
2018-02-23 11:52:42 +0100
0 - 0 - 1 www.bantinnoithat.com/2016/02/nhung-luu-y-ve- (...) 172.217.21.147
2018-02-23 07:37:52 +0100
0 - 0 - 1 www.pollodaz.ga/p/var-player-new-clappr_78.html 172.217.21.147
2018-02-23 00:52:35 +0100
0 - 0 - 1 www.magallanesdeportes.cl/2017/12/asi-sera-el (...) 172.217.21.147
2018-02-23 00:19:57 +0100
0 - 0 - 2 www.phatgiao.biz/search/label/duynhin 172.217.21.147
2018-02-22 22:30:43 +0100
0 - 0 - 4 www.magallanesdeportes.cl/2017/12/35-binomios (...) 172.217.21.147
2018-02-22 19:32:59 +0100
0 - 0 - 1 www.ahmed-hamed.tk/2016_07_20_archive.html 172.217.21.147
2018-02-22 19:28:39 +0100
0 - 0 - 4 www.tuvisomenh.org/2017/10/thanh-mau-giang-si (...) 172.217.21.147
2018-02-22 19:10:09 +0100
0 - 0 - 4 www.tuvisomenh.org/2017/10/thuyet-sinh-tam-ho (...) 172.217.21.147

Last 10 reports on ASN: AS15169 Google Inc.

Date UQ / IDS / BL URL IP
2018-02-23 15:11:44 +0100
0 - 0 - 0 https://goo.gl/f6H73y 172.217.20.46
2018-02-23 15:10:13 +0100
0 - 0 - 0 https://goo.gl/2av6Tj 172.217.20.46
2018-02-23 15:06:46 +0100
0 - 0 - 0 https://goo.gl/W6TNHf 172.217.20.46
2018-02-23 15:01:08 +0100
0 - 0 - 0 https://goo.gl/JcQfT6 172.217.20.46
2018-02-23 14:59:49 +0100
0 - 0 - 0 https://goo.gl/cYfH5z 172.217.20.46
2018-02-23 14:55:42 +0100
0 - 0 - 8 https://goo.gl/QaFh2F 172.217.20.46
2018-02-23 14:54:14 +0100
0 - 0 - 0 https://goo.gl/mT2w6m 172.217.20.46
2018-02-23 14:48:49 +0100
0 - 0 - 0 https://goo.gl/v1Xf8Z 172.217.20.46
2018-02-23 14:45:47 +0100
0 - 0 - 0 https://goo.gl/atdFeb 172.217.20.46
2018-02-23 14:44:32 +0100
0 - 0 - 0 www.capefishing.co.za/rates 172.217.21.147

No other reports on domain: medicineforthepeoplee.com



JavaScript

Executed Scripts (16)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (45)


Request Response
                                        
                                            GET /2017/09/download-surgery-kaplan-usmle-step-2-ck.html HTTP/1.1 
Host: www.medicineforthepeoplee.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.147
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sun, 21 Jan 2018 06:53:38 GMT
Date: Sun, 21 Jan 2018 06:53:38 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 08 Jan 2018 16:31:51 GMT
Etag: W/"c998c3d1a7dfc48b13bbc4b3b2aa3eb95f560f4a4b5d44e20dbced8e18daa05e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 10689
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   10689
Md5:    1736a1429db967ca79fc8861880fbeed
Sha1:   8e6871072f1b0a6cc837724eceac2238799e8207
Sha256: 48d930bdc11d28374797e972c9544b369374351f90d201e8387fea0ed9fb4b56

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:39 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    1b4854c510fdf73314587ceabdd42867
Sha1:   ab88baf4d61dd96d4ca283ead3bba22a7b0cfde8
Sha256: f6cdd0d74aef85ae0f6fef40e20fd41c893852c35a5ce66ebf382804954d3233
                                        
                                            GET /715054?size=990x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         85.10.208.226
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.10.3
Date: Sun, 21 Jan 2018 06:53:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1919
Md5:    887147d9e06ea140f8912b990dc4d27d
Sha1:   6735a47e4bba3006a31e2f67b5dd4cc760e75e03
Sha256: 2badee370211df32a353d2cccfa68dcf2eee312a08417cfad589f17bce1dc8d3
                                        
                                            GET /752799?size=990x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         85.10.208.226
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.10.3
Date: Sun, 21 Jan 2018 06:53:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1919
Md5:    d23ea7711a2415c9c16b5508968a8023
Sha1:   7c70687e8aad2d0702d4a621bc0d371044c51bd9
Sha256: ba412b715868ae70d16d392dbd6b8e7aaa5a3765f2ce3e2aedad641a3caabfe6
                                        
                                            GET /752818?size=990x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         85.10.208.226
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.10.3
Date: Sun, 21 Jan 2018 06:53:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1919
Md5:    d01909edb26f1442712f9009cfe9df0f
Sha1:   470d32600054bb3fe4766093a074838debb9f066
Sha256: e181d9a92096d5da287485a2079f90b92bda0572216324ca1278a7bf15836546
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:39 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    6bf50ec404fb4a8b4a94be8390d11938
Sha1:   0caaab7704d6221abc5e0342909a4928cee50b1c
Sha256: 63b592179b1e9a528344ce1d430b9479fc55f43420a468ec35aaeaa9dff911cf
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.medicineforthepeoplee.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         172.217.21.147
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Expires: Sun, 21 Jan 2018 06:53:39 GMT
Date: Sun, 21 Jan 2018 06:53:39 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 08 Jan 2018 16:31:51 GMT
Etag: W/"c998c3d1a7dfc48b13bbc4b3b2aa3eb95f560f4a4b5d44e20dbced8e18daa05e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 966
Server: GSE


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   966
Md5:    02602f5b6b8d51fb3543fb3a31545ddc
Sha1:   b6eabd7804e2d9f77b200f3723813ac6b25c25eb
Sha256: 5704538dc9987e074f488f8a374a5dc40c3ab777f29ad370a49589e31a69b39a
                                        
                                            GET /static/v1/widgets/3213516723-css_bundle_v2.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9140
Date: Wed, 17 Jan 2018 10:26:45 GMT
Expires: Thu, 17 Jan 2019 10:26:45 GMT
Last-Modified: Tue, 16 Jan 2018 11:30:37 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 332814
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   9140
Md5:    1bf88096130547066d138d29c11830da
Sha1:   9764bd4b0a22b32b6399662928151abb67579862
Sha256: 41bb63ee72939adc57a1e04f2ba14467bd67ed87ed7176fd01d9acdeaccc79d0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:39 GMT
Server: Apache
Last-Modified: Sat, 20 Jan 2018 07:05:34 GMT
Expires: Sat, 27 Jan 2018 07:05:34 GMT
Etag: A09242C9E4701326C42FDA1372D58B8612081897
Cache-Control: max-age=518514,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp2
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b092204026baa344593b8e07ad96bdd5
Sha1:   a09242c9e4701326c42fda1372d58b8612081897
Sha256: c97d33d1d052a684f264da4bab51b616e6c25f4770c061c38af179722a63d92a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:39 GMT
Server: Apache
Last-Modified: Thu, 18 Jan 2018 23:56:12 GMT
Expires: Thu, 25 Jan 2018 23:56:12 GMT
Etag: E8BF146A806D747B3B6B8649EAF5ABAB0B04B68F
Cache-Control: max-age=406352,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp2
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    49cdd941766a230981ffc402c2f3f38b
Sha1:   e8bf146a806d747b3b6b8649eaf5abab0b04b68f
Sha256: e32bfb9db57f49b6b4d8d48a9289065e01c11b5b19448219748256b540af746f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:39 GMT
Server: Apache
Last-Modified: Thu, 18 Jan 2018 23:56:12 GMT
Expires: Thu, 25 Jan 2018 23:56:12 GMT
Etag: E34E207EAC887E05CCB3DC8BDEFDE38AA3F86FA4
Cache-Control: max-age=406352,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp2
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a8ddb208c71fb2572612d833c4b91ff8
Sha1:   e34e207eac887e05ccb3dc8bdefde38aa3f86fa4
Sha256: 0fea39053d5876fd46c1a2f2ee482cc806ff2c1caa262ca7d014cf31cb0651e0
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 21 Jan 2018 06:53:39 GMT
Server: ocsp_responder
Content-Length: 1565
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1565
Md5:    ab275e14ecde128fd92a75b88c71aaee
Sha1:   29994b1f6b034ca0686a886f7540422fb3f7bfe4
Sha256: f94c6ccd78cb32518f1e743df0c0652178db83729c7d40924542de2f6bc82ee0
                                        
                                            GET /img/icon18_wrench_allbkg.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 475
Date: Thu, 18 Jan 2018 15:20:13 GMT
Expires: Thu, 25 Jan 2018 15:20:13 GMT
Last-Modified: Wed, 17 Jan 2018 19:49:21 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 228806
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  PNG image, 18 x 18, 8-bit colormap, non-interlaced
Size:   475
Md5:    f617effe6d96c15acfea8b2e8aae551f
Sha1:   6d676af11ad2e84b620cce4d5992b657cb2d8ab6
Sha256: d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:40 GMT
Server: Apache
Last-Modified: Fri, 19 Jan 2018 22:20:55 GMT
Expires: Fri, 26 Jan 2018 22:20:55 GMT
Etag: 6B2D0DF2EB250684DAFF8ACE85CC910C95F4285E
Cache-Control: max-age=487034,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp17
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    08f18fe5441c796608a258f58f46b06b
Sha1:   6b2d0df2eb250684daff8ace85cc910c95f4285e
Sha256: 6e96e5dc5986874d4d75c880cd6a81ed89c911149e0f66a6f65d063f8e627e92
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:40 GMT
Server: Apache
Last-Modified: Thu, 18 Jan 2018 23:56:12 GMT
Expires: Thu, 25 Jan 2018 23:56:12 GMT
Etag: AE64B8218A234F45DB4B60373393756AFD7BDA8A
Cache-Control: max-age=406351,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp17
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    b06621ef8879a3ca44947d83a950141c
Sha1:   ae64b8218a234f45db4b60373393756afd7bda8a
Sha256: 2d819a53261970579bbdee6ac2e75dbddf6d7acbb94b839c315bd6e5f5188310
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:40 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    732a08bdcd076a1c440a7788e1fd0b1a
Sha1:   9dfbabde9c1325cf448a4a0962de3f5cafd1d365
Sha256: 375d334c6770e856cc63b881bb563f7cc8d170f1128eae589d31ef0c61578535
                                        
                                            GET /js/show_ads.js HTTP/1.1 
Host: adbit.biz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         104.25.151.25
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 21 Jan 2018 06:53:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dff83857983985ea9a0cf25a5b157f00b1516517620; expires=Mon, 21-Jan-19 06:53:40 GMT; path=/; domain=.adbit.biz; HttpOnly
Last-Modified: Fri, 20 Jan 2017 14:20:57 GMT
Etag: W/"58821cc9-2889"
Expires: Sun, 28 Jan 2018 06:53:40 GMT
Cache-Control: public, max-age=604800
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
CF-Cache-Status: HIT
Vary: Accept-Encoding
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085b963c744261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3095
Md5:    7d2f8c04ff9c899bb39d18140b42ba9b
Sha1:   12e87ea868077df183201acbcd2f5894ae42d04e
Sha256: 030164771e867a2bc83f4cf3e3ada4370336ad1709fd74be8d4945846a062cdf
                                        
                                            GET /-GL7xJA1RcLc/WchiGJRu5gI/AAAAAAAAAjY/SZHwE7IDWlElE4ZP9wsrtlLU8zn1Wj4fgCLcBGAs/s320/Download%2BSurgery%2B-%2BKAPLAN%2BUSMLE%2BSTEP%2B2%2BCK.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.129
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Etag: "v240"
Expires: Mon, 22 Jan 2018 06:53:40 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Download Surgery - KAPLAN USMLE STEP 2 CK.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 21 Jan 2018 06:53:40 GMT
Server: fife
Content-Length: 21646
X-XSS-Protection: 1; mode=block
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21646
Md5:    26e6501230d140a3680d84e5f69ae40d
Sha1:   f36c58ff69d8da011f262cbc10dc02588b049e72
Sha256: 79f17511f1086be15dc1c0b5c9c4aecb21c508c2ffbc43afe1950d9411c5f628
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         94.130.102.124
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: nginx
Date: Sun, 21 Jan 2018 06:53:40 GMT
Last-Modified: Mon, 15 Jan 2018 15:52:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5a5cce3a-f772"
Expires: Sun, 21 Jan 2018 14:53:40 GMT
Cache-Control: max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20564
Md5:    0d6a36bffca841fbcb761ed000e2840a
Sha1:   7f0cda3380bc59aad34b46a36f5fcbe4495746a4
Sha256: 5c561e3bbb4912fc1d22dad62681aa444ecede239f6fa962715e296a9bcec767

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
    - malwaredomains: maliciousjs
                                        
                                            GET /static/v1/widgets/3953819307-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45350
Date: Thu, 18 Jan 2018 01:49:00 GMT
Expires: Fri, 18 Jan 2019 01:49:00 GMT
Last-Modified: Thu, 18 Jan 2018 00:33:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 277480
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   45350
Md5:    c70facd752874bba4dfed19c3e0f7da2
Sha1:   99b631743044a618c2241b21f42239845379695d
Sha256: 8cd69d089340d5d89aee87e61fb1b9163905daaa8e74d29933a45bc101a612ef
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
x-ua-compatible: IE=edge, chrome=1
Timing-Allow-Origin: *
Etag: "d572f165e1df6f8efccee9a1c162e8a3"
Expires: Sun, 21 Jan 2018 06:53:40 GMT
Date: Sun, 21 Jan 2018 06:53:40 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Set-Cookie: NID=122=W5EJroF0LkAs5bz4UPWzWafeptNbdTPJE60ETm6SWv8ji-HpGYb5zbmJpF-4oo2Q8sCSwFH6-Xp1WpBmw6YR2c5x_zAK1aG09B2ttTYnImV0WmojZ_zp0eM8OvBGigE7;Domain=.google.com;Path=/;Expires=Mon, 23-Jul-2018 06:53:40 GMT;HttpOnly
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16877
Md5:    3c46f53f1ca44a244bf2e59e7ee8cb9c
Sha1:   e25b6cf712e42b961dc7704495af8b31f5f71ff7
Sha256: 9f088e5d031ed13816577d812f5d332ae008c5d8c429601f42df45af828b9e04
                                        
                                            GET /dyn-css/authorization.css?targetBlogID=8528131573178086049&zx=b97b653e-1ee7-455b-9981-73aef53a766d HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: text/css; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Cache-Control: private, max-age=1800
Pragma: no-cache
Expires: Sun, 21 Jan 2018 06:53:40 GMT
Date: Sun, 21 Jan 2018 06:53:40 GMT
Last-Modified: Sun, 21 Jan 2018 06:53:40 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   21
Md5:    b9afc501fc43fbea335a2dc5d43263a1
Sha1:   7290a2dd6afbf39ecfc35b52dfb32a38fc222994
Sha256: d6e425ca7840c0ab6f26f5fc2822a47e26b4a8bbd104468a9c185bc132b8662f
                                        
                                            GET /715068?size=728x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         85.10.208.226
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.10.3
Date: Sun, 21 Jan 2018 06:53:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1919
Md5:    186109895def2fb345be88a31499cc37
Sha1:   714069ba82b848681f0b001e1462ec0c3a1281a0
Sha256: 54be01d5f79d8557a193f87346b158312acc83a5133a002648d90503bed8bc58
                                        
                                            GET /715109?size=468x60 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         85.10.208.226
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx/1.10.3
Date: Sun, 21 Jan 2018 06:53:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1919
Md5:    014c491c3af5c6493fed552bf57ec377
Sha1:   0302e9e5ca392d2928c77b8e03083f11a5a3e8fe
Sha256: 40661f81d7045b635c06580c5295d9be7d2cad9b545af82000b9f2cb48d8d04c
                                        
                                            GET /blogblog/data/1kt/awesomeinc/tabs_gradient_light.png HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 182
Date: Wed, 17 Jan 2018 10:28:39 GMT
Expires: Wed, 24 Jan 2018 10:28:39 GMT
Last-Modified: Wed, 17 Jan 2018 01:30:41 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=604800
Age: 332701
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  PNG image, 20 x 200, 8-bit/color RGBA, non-interlaced
Size:   182
Md5:    a3c2c1c288eca66ee27f75ea41dcd96f
Sha1:   77dbd443ccabca3cfb43a48a2ccb44f752f5a77a
Sha256: 5e516df49b160c3efcb1ea09dd4c5f5b7c99a23a18a2a882acc379179bdbaacd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Server: Apache
Last-Modified: Thu, 18 Jan 2018 06:00:08 GMT
Expires: Thu, 25 Jan 2018 06:00:08 GMT
Etag: BD4B8A9B1D528B7CE3691CFB335838B8526ED715
Cache-Control: max-age=341786,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp17
Content-Length: 279
Connection: close


--- Additional Info ---
Magic:  data
Size:   279
Md5:    1020c16c9c1313fe12b55bfa631ea9f4
Sha1:   bd4b8a9b1d528b7ce3691cfb335838b8526ed715
Sha256: bb33ee8929b1482ad3d5ec65623ceff861134a68276ee6132c94aeac4b494e8d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Server: Apache
Last-Modified: Thu, 18 Jan 2018 23:56:12 GMT
Expires: Thu, 25 Jan 2018 23:56:12 GMT
Etag: 262BBC8956E3D83358CDF46F25AABAF17243DDA9
Cache-Control: max-age=406350,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp2
Content-Length: 312
Connection: close


--- Additional Info ---
Magic:  data
Size:   312
Md5:    932a1da7bf398f679bf1bca878842677
Sha1:   262bbc8956e3d83358cdf46f25aabaf17243dda9
Sha256: dfd3c45520ec498edc7e0a3a87370711f05b6103b121670d4c95d237bbba8bb7
                                        
                                            GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.REsFcr_ef3Y.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AQ/rs=AGLTcCPS9X_Kk37jX7c5aB_UaFPhxY3_zw/cb=gapi.loaded_0 HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html
Cookie: NID=122=W5EJroF0LkAs5bz4UPWzWafeptNbdTPJE60ETm6SWv8ji-HpGYb5zbmJpF-4oo2Q8sCSwFH6-Xp1WpBmw6YR2c5x_zAK1aG09B2ttTYnImV0WmojZ_zp0eM8OvBGigE7

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46585
Date: Sat, 20 Jan 2018 00:39:16 GMT
Expires: Sun, 20 Jan 2019 00:39:16 GMT
Last-Modified: Fri, 19 Jan 2018 02:43:54 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, immutable, max-age=31536000
Age: 108864
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   46585
Md5:    d555df282b9ebdf5170001d84dffebd2
Sha1:   b4100b0d477ffcca143d83c35d9fb7fc78acad28
Sha256: 3139d333506a62006e99c226d2a8fb08e84d6064b13de4c7d659ba11ac227295
                                        
                                            GET /mine/dogecoin/?ref=B311C7FEE899&mode=widget HTTP/1.1 
Host: coinpot.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         104.28.23.80
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d125470ef5e9b45da3d8090440817ddea1516517621; expires=Mon, 21-Jan-19 06:53:41 GMT; path=/; domain=.coinpot.co; HttpOnly
Cache-Control: private
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085b9d79384297-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3568
Md5:    ae92c2c82476a02f52895eb2cffe4c74
Sha1:   c61a80f7f7064a48dcb6e07deded29f4490a1c6c
Sha256: 41c122857d8379bb69c03c3239687c8ecb8059022b3e37de34bb61eb3b7a271a
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
Cookie: NID=122=W5EJroF0LkAs5bz4UPWzWafeptNbdTPJE60ETm6SWv8ji-HpGYb5zbmJpF-4oo2Q8sCSwFH6-Xp1WpBmw6YR2c5x_zAK1aG09B2ttTYnImV0WmojZ_zp0eM8OvBGigE7

                                         
                                         172.217.21.142
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Server: ocsp_responder
Content-Length: 1565
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1565
Md5:    ab275e14ecde128fd92a75b88c71aaee
Sha1:   29994b1f6b034ca0686a886f7540422fb3f7bfe4
Sha256: f94c6ccd78cb32518f1e743df0c0652178db83729c7d40924542de2f6bc82ee0
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
Cookie: NID=122=W5EJroF0LkAs5bz4UPWzWafeptNbdTPJE60ETm6SWv8ji-HpGYb5zbmJpF-4oo2Q8sCSwFH6-Xp1WpBmw6YR2c5x_zAK1aG09B2ttTYnImV0WmojZ_zp0eM8OvBGigE7

                                         
                                         172.217.21.142
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Server: ocsp_responder
Content-Length: 1565
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1565
Md5:    ab275e14ecde128fd92a75b88c71aaee
Sha1:   29994b1f6b034ca0686a886f7540422fb3f7bfe4
Sha256: f94c6ccd78cb32518f1e743df0c0652178db83729c7d40924542de2f6bc82ee0
                                        
                                            GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget

                                         
                                         172.217.21.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 21 Jan 2018 06:53:41 GMT
Date: Sun, 21 Jan 2018 06:53:41 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   355
Md5:    718bdaa3564ca95a25c01298ad8664fa
Sha1:   42eacadabc83f53898a3fdf2c8f85707ed45098f
Sha256: 467e0e9faca7a48a5c4ea0b5340c36b39f7a8ad2d41d855cd70e586d95e3d598
                                        
                                            GET /css?family=Droid+Sans+Mono HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget

                                         
                                         172.217.21.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 21 Jan 2018 06:53:41 GMT
Date: Sun, 21 Jan 2018 06:53:41 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   228
Md5:    a18728269f96e461aad86ce0b0c5ed3f
Sha1:   76b069d7cb52dfd029acd85e66e572a4d2a74e74
Sha256: 2d9f96f6174f3074da870365a6954b95bc656e3c44c902745f631eb752a3f482
                                        
                                            GET /css/mine?v=FfxyhBnYZhHTvEKkLFXKg8SrzPHpUDQ5UKp6aOqmwok1 HTTP/1.1 
Host: coinpot.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget
Cookie: __cfduid=d125470ef5e9b45da3d8090440817ddea1516517621

                                         
                                         104.28.23.80
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Content-Length: 3905
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 21 Jan 2019 06:53:41 GMT
Last-Modified: Sun, 21 Jan 2018 06:53:41 GMT
Vary: User-Agent,Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085b9fca074297-OSL


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   3905
Md5:    b1082f69b13d762c035803bddb2f8c00
Sha1:   5ea112ab99a41e78c8d417f29f8b7214b2389499
Sha256: 0f29bafc5bbf2af01a3b22379c51c3360076f732861d5f4aeca43a07345a2e75
                                        
                                            GET /js/site?v=_T5qLblY4DhVBtQklVQp3qBV0ShJcWi61ps4pQ6uW541 HTTP/1.1 
Host: coinpot.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget
Cookie: __cfduid=d125470ef5e9b45da3d8090440817ddea1516517621

                                         
                                         104.28.23.80
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Sun, 21 Jan 2018 06:53:42 GMT
Content-Length: 3090
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 21 Jan 2019 06:53:41 GMT
Last-Modified: Sun, 21 Jan 2018 06:53:41 GMT
Vary: User-Agent,Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085ba00f834261-OSL


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   3090
Md5:    73381b11ff9cb3fcc24bb4d6b8977d22
Sha1:   7c79be8bb352b71034b698073a5ddc62e670028a
Sha256: 2dc0cb80827ea704a03217739b2388c172e45b350376d76dcd87e01660c018ad
                                        
                                            GET /js/mine?v=Q_F6YiiFQifHP8fPzVkeKq_vdh7JQy0sMbhnhlo2HSU1 HTTP/1.1 
Host: coinpot.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget
Cookie: __cfduid=d125470ef5e9b45da3d8090440817ddea1516517621

                                         
                                         104.28.23.80
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Sun, 21 Jan 2018 06:53:42 GMT
Content-Length: 57037
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 21 Jan 2019 06:53:41 GMT
Last-Modified: Sun, 21 Jan 2018 06:53:41 GMT
Vary: User-Agent,Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085ba00a1e4297-OSL


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   57037
Md5:    ad5228558f1a2eb8b13cd5b1cd1f1198
Sha1:   da6dd2dd3b6f19b2d3ed56868c75a0b7ff4b800b
Sha256: eb8895b9097ca8dc5e6e035c0b821db08afa858bd86458751bb3591f96adb96e
                                        
                                            GET /css/core?v=iDGHYv0gblmA1jjyZPEP2rQet1gceRfMWitLLBbKSpo1 HTTP/1.1 
Host: coinpot.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget
Cookie: __cfduid=d125470ef5e9b45da3d8090440817ddea1516517621

                                         
                                         104.28.23.80
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Sun, 21 Jan 2018 06:53:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 21 Jan 2019 06:53:41 GMT
Last-Modified: Sun, 21 Jan 2018 06:53:41 GMT
Vary: User-Agent,Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085b9f89f74297-OSL


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   136570
Md5:    47fc22af7f1d8e51c3c720ee793e5b98
Sha1:   9ec4582ef23d867bffd7683b125ad6177e250c3d
Sha256: fa1d03c9cf7227938ec2bf43941e1be4b87777525c0bc08ca0786b4a206161ff
                                        
                                            GET /js/core?v=njVP3ZVyl6pV9piAzCamowq5KrVFrtkqPStsvdPAPdY1 HTTP/1.1 
Host: coinpot.co
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget
Cookie: __cfduid=d125470ef5e9b45da3d8090440817ddea1516517621

                                         
                                         104.28.23.80
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Date: Sun, 21 Jan 2018 06:53:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: public
Content-Encoding: gzip
Expires: Mon, 21 Jan 2019 06:53:41 GMT
Last-Modified: Sun, 21 Jan 2018 06:53:41 GMT
Vary: User-Agent,Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3e085ba00b0b42af-OSL


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT), max speed
Size:   150308
Md5:    1f2ecdc7eb8811a48f67d448e1ecb6f0
Sha1:   0724c5bc062ed40cfe744c99b3de01b40ba8cdea
Sha256: 5fa0a18ae9ef94d5d2a3de4a63ac9cad36eb953f18fa6a99585ed2048b26027c
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 21 Jan 2018 06:53:42 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    726744458fac2b032d18dedac5e3abe7
Sha1:   def8a64bee63373536bdbb03e2be84916976e6af
Sha256: eb769914cc10cd8106e56ea717ad530deec6d0d99f4a49dfb45613fb1838701a
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
Cookie: NID=122=W5EJroF0LkAs5bz4UPWzWafeptNbdTPJE60ETm6SWv8ji-HpGYb5zbmJpF-4oo2Q8sCSwFH6-Xp1WpBmw6YR2c5x_zAK1aG09B2ttTYnImV0WmojZ_zp0eM8OvBGigE7

                                         
                                         172.217.21.142
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Sun, 21 Jan 2018 06:53:42 GMT
Server: ocsp_responder
Content-Length: 1565
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1565
Md5:    ab275e14ecde128fd92a75b88c71aaee
Sha1:   29994b1f6b034ca0686a886f7540422fb3f7bfe4
Sha256: f94c6ccd78cb32518f1e743df0c0652178db83729c7d40924542de2f6bc82ee0
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Sun, 21 Jan 2018 05:28:22 GMT
Expires: Sun, 21 Jan 2018 07:28:22 GMT
Last-Modified: Mon, 13 Nov 2017 20:19:12 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 14597
Cache-Control: public, max-age=7200
Age: 5120
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14597
Md5:    6199bd5ef36ff16dd8c35a2abdb5991c
Sha1:   beb16561dd55ab5896b230c5a116a5d819e86b34
Sha256: a3d61ef9e80a01a794fd7c2769720f2fd0e15d0458236e8e0edd411560171879
                                        
                                            GET /s/poppins/v5/D2gN9uyZ9Ucx1fJ1Fhb7sxsxEYwM7FgeyaSgU71cLG0.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
Origin: https://coinpot.co

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 10408
Date: Wed, 17 Jan 2018 10:28:15 GMT
Expires: Thu, 17 Jan 2019 10:28:15 GMT
Last-Modified: Wed, 11 Oct 2017 18:21:59 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 332728
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  data
Size:   10408
Md5:    dad8b32d6402d45efbd9f2a8ee6f203a
Sha1:   cd863f5e40b561b0caa6720e039d766d2cb973c9
Sha256: d1549d751143cd945fd14ec0d1a12ffa214315f4a7ead2a9ecba7d7f24a17790
                                        
                                            GET /r/collect?v=1&_v=j66&a=1957463717&t=pageview&_s=1&dl=https%3A%2F%2Fcoinpot.co%2Fmine%2Fdogecoin%2F%3Fref%3DB311C7FEE899%26mode%3Dwidget&dr=http%3A%2F%2Fwww.medicineforthepeoplee.com%2F2017%2F09%2Fdownload-surgery-kaplan-usmle-step-2-ck.html&ul=en-us&de=UTF-8&dt=CoinPot%20%7C%20Cryptocurrency%20microwallet&sd=24-bit&sr=1176x885&vp=324x470&je=1&fl=10.0%20r45&_u=IEBAAEQ~&jid=303525084&gjid=846873922&cid=766395379.1516517624&tid=UA-49827542-11&_gid=1792965756.1516517624&_r=1&z=300388010 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://coinpot.co/mine/dogecoin/?ref=B311C7FEE899&mode=widget

                                         
                                         172.217.21.142
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Sun, 21 Jan 2018 06:53:43 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /static/v1/v-css/368954415-lightbox_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6541
Date: Wed, 17 Jan 2018 10:27:12 GMT
Expires: Thu, 17 Jan 2019 10:27:12 GMT
Last-Modified: Wed, 17 Jan 2018 05:30:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 332791
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6541
Md5:    b4d05072b89cf2574170f64bdcded69e
Sha1:   af18e0787d801da60edb8d94e76c49ada4498e3a
Sha256: 58b89b1c09589455482e037eab33c5f4021df5ad69445dd01785e2a061d1d6b7
                                        
                                            GET /static/v1/jsbin/172053108-lbx__es.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.medicineforthepeoplee.com/2017/09/download-surgery-kaplan-usmle-step-2-ck.html

                                         
                                         172.217.21.137
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 129203
Date: Thu, 18 Jan 2018 06:51:53 GMT
Expires: Fri, 18 Jan 2019 06:51:53 GMT
Last-Modified: Thu, 18 Jan 2018 05:26:06 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 259310
Alt-Svc: hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   129203
Md5:    085d42551b00b98135b0b340fd165256
Sha1:   6245c63e31bba62de3c481ce68e6dc4caa16478c
Sha256: 82c976a7acd16ccc08df54d1aa840a3e44ac2ecb6aaf430a40795bf961a29da3