Overview

URLinterac-ref9fi3.etranfar.com/
IP158.69.194.215
ASNAS16276 OVH SAS
Location United States
Report completed2017-06-19 20:33:26 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com No alerts detected
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no No alerts detected
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2017-06-27 08:58:260 - 0 - 1www.mullerserwis.pl/new/Manage/Account.php/92.222.248.180
2017-06-27 08:48:260 - 0 - 2cdn.che.moe/znftyo.exe92.222.38.199
2017-06-27 08:47:030 - 0 - 1novolani.com/HR8srq.php?c=xf29v613jman151.254.207.61
2017-06-27 08:46:080 - 0 - 1data1.mein-bmi.comhttps:///partners/files/meinbmi/MeinBMIInstaller.exe91.121.54.20
2017-06-27 08:39:240 - 0 - 1doctorlink.space/HNK45/FTGHUIO6/UninstallerX.exe149.202.87.154
2017-06-27 08:31:430 - 0 - 1nazeranyekta.com/logos.gif?1b404=4464805.196.187.19



JavaScript

Executed Scripts (10)


Executed Evals (7)

#1 JavaScript::Eval (size: 380, repeated: 1)

"\u3002\u300C\u300D\u3001\u30FB\u30F2\u30A1\u30A3\u30A5\u30A7\u30A9\u30E3\u30E5\u30E7\u30C3\u30FC\u30A2\u30A4\u30A6\u30A8\u30AA\u30AB\u30AD\u30AF\u30B1\u30B3\u30B5\u30B7\u30B9\u30BB\u30BD\u30BF\u30C1\u30C4\u30C6\u30C8\u30CA\u30CB\u30CC\u30CD\u30CE\u30CF\u30D2\u30D5\u30D8\u30DB\u30DE\u30DF\u30E0\u30E1\u30E2\u30E4\u30E6\u30E8\u30E9\u30EA\u30EB\u30EC\u30ED\u30EF\u30F3\u309B\u309C"

#2 JavaScript::Eval (size: 128, repeated: 1)

"\u30A6\u30AB\u30AD\u30AF\u30B1\u30B3\u30B5\u30B7\u30B9\u30BB\u30BD\u30BF\u30C1\u30C4\u30C6\u30C8\u30CF\u30D2\u30D5\u30D8\u30DB"

#3 JavaScript::Eval (size: 32, repeated: 1)

"\u30CF\u30D2\u30D5\u30D8\u30DB"

#4 JavaScript::Eval (size: 32, repeated: 1)

"\u30D1\u30D4\u30D7\u30DA\u30DD"

#5 JavaScript::Eval (size: 40, repeated: 1)

"\u30D1__\u30D4__\u30D7__\u30DA__\u30DD"

#6 JavaScript::Eval (size: 135, repeated: 1)

"\u30F4__\u30AC\u30AE\u30B0\u30B2\u30B4\u30B6\u30B8\u30BA\u30BC\u30BE\u30C0\u30C2\u30C5\u30C7\u30C9_____\u30D0\u30D3\u30D6\u30D9\u30DC"

#7 JavaScript::Eval (size: 161, repeated: 1)

"\u30F4____\u30AC_\u30AE_\u30B0_\u30B2_\u30B4_\u30B6_\u30B8_\u30BA_\u30BC_\u30BE_\u30C0_\u30C2__\u30C5_\u30C7_\u30C9______\u30D0__\u30D3__\u30D6__\u30D9__\u30DC"

Executed Writes (0)



HTTP Transactions (16)


Request Response
GET / HTTP/1.1

Host: interac-ref9fi3.etranfar.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 158.69.194.215
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Date: Mon, 19 Jun 2017 18:32:12 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: https://www.google.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
POST /ocsp HTTP/1.1

Host: clients1.google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
 216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: Fri, 23 Jun 2017 18:32:13 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
POST / HTTP/1.1

Host: g.symcd.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request
 23.52.27.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=320739, public, no-transform, must-revalidate
Last-Modified: Fri, 16 Jun 2017 11:34:55 GMT
Expires: Fri, 23 Jun 2017 11:34:55 GMT
Date: Mon, 19 Jun 2017 18:32:13 GMT
Connection: keep-alive
GET / HTTP/1.1

Host: www.google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 216.58.211.132
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Cache-Control: private
Referrer-Policy: no-referrer
Location: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Content-Length: 259
Date: Mon, 19 Jun 2017 18:32:13 GMT
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
POST /ocsp HTTP/1.1

Host: clients1.google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
 216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: Fri, 23 Jun 2017 18:32:13 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
GET /?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg HTTP/1.1

Host: www.google.no
GET /?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: -1
Cache-Control: private, max-age=0
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/answer/151657?hl=en for more info."
Content-Encoding: gzip
Server: gws
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Set-Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST; expires=Tue, 19-Dec-2017 18:32:13 GMT; path=/; domain=.google.no; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
Transfer-Encoding: chunked
GET /textinputassistant/tia.png HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
Content-Length: 258
Date: Wed, 07 Jun 2017 21:19:16 GMT
Expires: Thu, 07 Jun 2018 21:19:16 GMT
Last-Modified: Thu, 08 Dec 2016 15:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1026777
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
POST /ocsp HTTP/1.1

Host: clients1.google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
 216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: Fri, 23 Jun 2017 18:32:13 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
GET /images/branding/googlelogo/1x/googlelogo_white_background_color_272x92dp.png HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
Content-Length: 5482
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: Mon, 19 Jun 2017 18:32:13 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Thu, 08 Dec 2016 01:00:57 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
GET /client_204?&atyp=i&biw=1176&bih=754&ei=rRhIWdWJEuSa6ATH6YrIBw HTTP/1.1

Host: www.google.no
GET /client_204?&atyp=i&biw=1176&bih=754&ei=rRhIWdWJEuSa6ATH6YrIBw HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 204 No Content
Content-Type: text/html; charset=UTF-8
Date: Mon, 19 Jun 2017 18:32:13 GMT
Server: gws
Content-Length: 0
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
GET /gb/images/b_8d5afc09.png HTTP/1.1

Host: ssl.gstatic.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
Vary: Origin
Content-Length: 9760
Date: Thu, 01 Jun 2017 19:29:21 GMT
Expires: Fri, 01 Jun 2018 19:29:21 GMT
Last-Modified: Thu, 21 Apr 2016 03:17:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1551772
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
GET /images/nav_logo229.png HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: image/png
Accept-Ranges: bytes
Content-Length: 12263
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: Mon, 19 Jun 2017 18:32:13 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Fri, 16 Dec 2016 12:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
GET /xjs/_/js/k=xjs.hp.en_US.za_zzdMdgnM.O/m=sb_he,d/am=AAw/rt=j/d=1/t=zcms/rs=ACT90oFBuuMOMTYLty15KUFHRJX9DRlF2Q HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 50409
Date: Fri, 16 Jun 2017 21:29:27 GMT
Expires: Sat, 16 Jun 2018 21:29:27 GMT
Last-Modified: Fri, 16 Jun 2017 14:03:04 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 248566
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
GET /images/branding/product/ico/googleg_lodp.ico HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: image/x-icon
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 19 Jun 2017 18:32:13 GMT
Expires: Mon, 19 Jun 2017 18:32:13 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Thu, 08 Dec 2016 01:00:57 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
Transfer-Encoding: chunked
GET /generate_204 HTTP/1.1

Host: clients1.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
Cookie: NID=105=FuVENcXL7aMBq1csTO_ZAkqrklcQLeO4uyXImnVOfn51-7EjMOOKdEHdHR7zpkMfTTJ4rB0bSIcCqo8Kln9BMaH5Bp50b3quPyQnFIXoj9dzhn6SqLxRgOuVKJg_ZPST
 216.58.211.131
HTTP/1.1 204 No Content
HTTP/1.1 204 No Content
Content-Length: 0
Date: Mon, 19 Jun 2017 18:32:13 GMT
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"
GET /gb/js/sem_5d66c29bc58baacda7ce693764edfc8e.js HTTP/1.1

Host: ssl.gstatic.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=rRhIWfPkC8yq8we-9aWgBg
 216.58.211.131
HTTP/1.1 200 OK
Content-Type: text/javascript
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Length: 20195
Date: Sun, 04 Jun 2017 04:09:01 GMT
Expires: Mon, 04 Jun 2018 04:09:01 GMT
Last-Modified: Wed, 31 May 2017 03:15:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1347792
Alt-Svc: quic=":443"; ma=2592000; v="38,37,36,35"