Overview

URLuu.gospelchord.com/remote3.php
IP62.100.204.33
ASNUnknown
Location United Kingdom
Report completed2017-01-11 22:46:00 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com
Added / Verified Severity Host Comment
2017-01-112uu.gospelchord.com/remote3.phpPhishing
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no No alerts detected
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 62.100.204.33

Date UQ / IDS / BL URL IP
2017-01-16 20:56:200 - 0 - 1spatialecoltd.com/Drive/PY/PY/7107df284d8bd3f8651755370cfd441b62.100.204.33
2017-01-16 18:57:530 - 0 - 0drop.emosbestgroup.com/dbcrypt/dbdrives62.100.204.33
2017-01-16 18:52:460 - 0 - 1hackcessconference.com/js/office.zip62.100.204.33
2017-01-16 18:51:470 - 0 - 1brandafricanexecs.com/hsbc%281%29.zip62.100.204.33
2017-01-16 18:38:420 - 0 - 1hackcessconference.com/js/office.zip62.100.204.33
2017-01-16 18:38:110 - 0 - 1brandafricanexecs.com/hsbc%281%29.zip62.100.204.33

Last 6 reports on ASN: Unknown

Date UQ / IDS / BL URL IP
2017-01-16 22:48:420 - 0 - 0www.focus-kamin-design.de/sites/default/files/webform/mister-di-s6-e11-live-video-serial-17-01- (...)91.134.112.192
2017-01-16 22:48:370 - 0 - 0www.focus-kamin-design.de/sites/default/files/webform/mister-di-s6-e10-online-17-01-2017.html91.134.112.192
2017-01-16 22:48:360 - 0 - 0www.focus-kamin-design.de/sites/default/files/webform/otec-braun-s5-e13-watch-video-live-serial (...)91.134.112.192
2017-01-16 22:48:280 - 0 - 0www.focus-kamin-design.de/sites/default/files/webform/otec-braun-s5-e12-serial-onlayn-17-01-201 (...)91.134.112.192
2017-01-16 22:48:270 - 0 - 0www.focus-kamin-design.de/sites/default/files/webform/shitts-krik-s3-e3-smotret-onlayn-17-01-20 (...)91.134.112.192
2017-01-16 22:48:230 - 0 - 0www.focus-kamin-design.de/sites/default/files/webform/shitts-krik-s3-e2-serial-smotret-onlayn-1 (...)91.134.112.192

Last 2 reports on domain: uu.gospelchord.com

Date UQ / IDS / BL URL IP
2017-01-13 16:57:510 - 0 - 0uu.gospelchord.com62.100.204.33
2017-01-11 22:43:140 - 0 - 0uu.gospelchord.com62.100.204.33



JavaScript

Executed Scripts (10)


Executed Evals (7)

#1 JavaScript::Eval (size: 380, repeated: 1)

"\u3002\u300C\u300D\u3001\u30FB\u30F2\u30A1\u30A3\u30A5\u30A7\u30A9\u30E3\u30E5\u30E7\u30C3\u30FC\u30A2\u30A4\u30A6\u30A8\u30AA\u30AB\u30AD\u30AF\u30B1\u30B3\u30B5\u30B7\u30B9\u30BB\u30BD\u30BF\u30C1\u30C4\u30C6\u30C8\u30CA\u30CB\u30CC\u30CD\u30CE\u30CF\u30D2\u30D5\u30D8\u30DB\u30DE\u30DF\u30E0\u30E1\u30E2\u30E4\u30E6\u30E8\u30E9\u30EA\u30EB\u30EC\u30ED\u30EF\u30F3\u309B\u309C"

#2 JavaScript::Eval (size: 128, repeated: 1)

"\u30A6\u30AB\u30AD\u30AF\u30B1\u30B3\u30B5\u30B7\u30B9\u30BB\u30BD\u30BF\u30C1\u30C4\u30C6\u30C8\u30CF\u30D2\u30D5\u30D8\u30DB"

#3 JavaScript::Eval (size: 32, repeated: 1)

"\u30CF\u30D2\u30D5\u30D8\u30DB"

#4 JavaScript::Eval (size: 32, repeated: 1)

"\u30D1\u30D4\u30D7\u30DA\u30DD"

#5 JavaScript::Eval (size: 40, repeated: 1)

"\u30D1__\u30D4__\u30D7__\u30DA__\u30DD"

#6 JavaScript::Eval (size: 135, repeated: 1)

"\u30F4__\u30AC\u30AE\u30B0\u30B2\u30B4\u30B6\u30B8\u30BA\u30BC\u30BE\u30C0\u30C2\u30C5\u30C7\u30C9_____\u30D0\u30D3\u30D6\u30D9\u30DC"

#7 JavaScript::Eval (size: 161, repeated: 1)

"\u30F4____\u30AC_\u30AE_\u30B0_\u30B2_\u30B4_\u30B6_\u30B8_\u30BA_\u30BC_\u30BE_\u30C0_\u30C2__\u30C5_\u30C7_\u30C9______\u30D0__\u30D3__\u30D6__\u30D9__\u30DC"

Executed Writes (0)



HTTP Transactions (15)


Request Response
GET /remote3.php HTTP/1.1

Host: uu.gospelchord.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 62.100.204.33
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
Date: Wed, 11 Jan 2017 21:43:14 GMT
Server: Apache
X-Powered-By: PHP/5.6.25
Location: https://google.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
POST /ocsp HTTP/1.1

Host: clients1.google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
 172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2017 21:45:21 GMT
Expires: Sun, 15 Jan 2017 21:45:21 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
POST / HTTP/1.1

Host: g.symcd.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 102
Content-Type: application/ocsp-request
 23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx/1.10.2
Content-Length: 1377
Content-Transfer-Encoding: binary
Cache-Control: max-age=475764, public, no-transform, must-revalidate
Last-Modified: Tue, 10 Jan 2017 09:50:52 GMT
Expires: Tue, 17 Jan 2017 09:50:52 GMT
Date: Wed, 11 Jan 2017 21:45:21 GMT
Connection: keep-alive
GET / HTTP/1.1

Host: google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 173.194.222.138
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Cache-Control: private
Location: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Content-Length: 259
Date: Wed, 11 Jan 2017 21:45:21 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
POST /ocsp HTTP/1.1

Host: clients1.google.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request
 172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2017 21:45:21 GMT
Expires: Sun, 15 Jan 2017 21:45:21 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
GET /?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg HTTP/1.1

Host: www.google.no
GET /?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Wed, 11 Jan 2017 21:45:21 GMT
Expires: -1
Cache-Control: private, max-age=0
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/answer/151657?hl=en for more info."
Content-Encoding: gzip
Server: gws
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Set-Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w; expires=Thu, 13-Jul-2017 21:45:21 GMT; path=/; domain=.google.no; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
Transfer-Encoding: chunked
GET /textinputassistant/tia.png HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: image/png
Date: Wed, 07 Dec 2016 05:23:37 GMT
Expires: Thu, 07 Dec 2017 05:23:37 GMT
Last-Modified: Mon, 02 Apr 2012 02:13:37 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 387
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 3082904
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /images/nav_logo229.png HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: image/png
Date: Wed, 11 Jan 2017 21:45:21 GMT
Expires: Wed, 11 Jan 2017 21:45:21 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Fri, 16 Dec 2016 12:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 12263
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /gb/images/b_8d5afc09.png HTTP/1.1

Host: ssl.gstatic.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: image/png
Vary: Origin
Date: Mon, 09 Jan 2017 19:11:09 GMT
Expires: Tue, 09 Jan 2018 19:11:09 GMT
Last-Modified: Thu, 21 Apr 2016 03:17:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 9760
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 182052
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /xjs/_/js/k=xjs.hp.en_US.vA55_odiG3Q.O/m=sb_he,d/rt=j/d=1/t=zcms/rs=ACT90oGhsR2L21H9aXeMa3aSvxMbxIYPNA HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 10 Jan 2017 23:28:34 GMT
Expires: Wed, 10 Jan 2018 23:28:34 GMT
Last-Modified: Tue, 10 Jan 2017 22:48:08 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 46765
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 80207
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /images/branding/googlelogo/1x/googlelogo_white_background_color_272x92dp.png HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: image/png
Date: Wed, 11 Jan 2017 21:45:21 GMT
Expires: Wed, 11 Jan 2017 21:45:21 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Thu, 08 Dec 2016 01:00:57 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 5482
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /images/branding/product/ico/googleg_lodp.ico HTTP/1.1

Host: www.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: image/x-icon
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 11 Jan 2017 21:45:21 GMT
Expires: Wed, 11 Jan 2017 21:45:21 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Thu, 08 Dec 2016 01:00:57 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
Transfer-Encoding: chunked
GET /client_204?&atyp=i&biw=1176&bih=775&ei=cad2WIKBEqyB6ASRzJ-wDA HTTP/1.1

Host: www.google.no
GET /client_204?&atyp=i&biw=1176&bih=775&ei=cad2WIKBEqyB6ASRzJ-wDA HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 204 No Content
Content-Type: text/html; charset=UTF-8
Date: Wed, 11 Jan 2017 21:45:21 GMT
Server: gws
Content-Length: 0
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /generate_204 HTTP/1.1

Host: clients1.google.no

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
Cookie: NID=94=dZDQRJbzklQ6WsVC700Pl7YL1Y5kD0rnAyWFCpLPLhZYcEPO785lF6mpEpGGMNBUg86YQgUOA4KTdRHLkv-l3sl7e1u84gW9ewrEyDD3zh8RWMML2__xXcUyCOLPkT7w
 172.217.22.163
HTTP/1.1 204 No Content
HTTP/1.1 204 No Content
Content-Length: 0
Date: Wed, 11 Jan 2017 21:45:21 GMT
Alt-Svc: quic=":443"; ma=2592000; v="35,34"
GET /gb/js/sem_f70ed39779130cc06d510ce54eca305c.js HTTP/1.1

Host: ssl.gstatic.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.no/?gfe_rd=cr&ei=cad2WNv3C-T07gSYpYuADg
 172.217.22.163
HTTP/1.1 200 OK
Content-Type: text/javascript
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Date: Wed, 07 Dec 2016 05:07:38 GMT
Expires: Thu, 07 Dec 2017 05:07:38 GMT
Last-Modified: Tue, 15 Nov 2016 04:15:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 19967
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 3083863
Alt-Svc: quic=":443"; ma=2592000; v="35,34"