Overview

URL guvenhaber.com.tr/
IP185.162.145.92
ASN
Location Unknown
Report completed2017-10-13 02:43:27 CEST
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2017-10-13 02:42:48 CEST 1  94.130.90.152 Client IP ET POLICY Request for Coinhive Browser Monero Miner M2
2017-10-13 02:42:48 CEST 1  185.162.145.92 Client IP ET CURRENT_EVENTS CoinHive In-Browser Miner Detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-10-13 2 coin-hive.com/lib/coinhive.min.js Malware
2017-10-13 2 coinhive.com/lib/coinhive.min.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 185.162.145.92

Date UQ / IDS / BL URL IP
2017-10-16 08:04:55 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-13 11:35:50 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-13 10:36:13 +0200
3 - 10 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-13 01:25:19 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-11 10:41:12 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 20:41:21 +0200
3 - 0 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 15:41:03 +0200
3 - 4 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 10:41:02 +0200
3 - 0 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 04:41:04 +0200
3 - 0 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-09 21:24:14 +0200
3 - 1 - 2 guvenhaber.com.tr/ 185.162.145.92

Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2017-12-13 23:36:49 +0100
0 - 2 - 0 s3.amazonaws.com/cb_setups/MBS/4C669071-E7DE- (...) 52.216.21.189
2017-12-13 23:36:06 +0100
0 - 3 - 0 defiantads.pw/ 93.115.28.11
2017-12-13 23:34:19 +0100
0 - 0 - 17 soccertalks.nl/ 185.85.16.234
2017-12-13 23:31:12 +0100
0 - 0 - 33 muonmua.vn/ 103.9.159.183
2017-12-13 23:30:36 +0100
0 - 0 - 1 ggtdqceng.uphero.com/download.php?name=Saatan (...) 153.92.0.100
2017-12-13 23:30:27 +0100
0 - 0 - 1 downloads3.uptodown.net/dm/yodm-3d-1.4.exe 145.239.64.185
2017-12-13 23:29:20 +0100
0 - 3 - 1 d3ijsb1ryk5jd8.cloudfront.net/cl/inst/bundles (...) 13.33.99.226
2017-12-13 23:27:58 +0100
0 - 0 - 0 www.cdn.amazon.co.jp 13.33.62.69
2017-12-13 23:26:37 +0100
0 - 0 - 2 blog.51cto.com/attachment/201203/4594712_1333 (...) 59.110.244.199
2017-12-13 23:26:34 +0100
0 - 0 - 2 blog.51cto.com/attachment/201203/4594712_1333 (...) 59.110.244.199

Last 10 reports on domain: guvenhaber.com.tr

Date UQ / IDS / BL URL IP
2017-10-16 08:04:55 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-13 11:35:50 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-13 10:36:13 +0200
3 - 10 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-13 01:25:19 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-11 10:41:12 +0200
3 - 2 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 20:41:21 +0200
3 - 0 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 15:41:03 +0200
3 - 4 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 10:41:02 +0200
3 - 0 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-10 04:41:04 +0200
3 - 0 - 2 guvenhaber.com.tr/ 185.162.145.92
2017-10-09 21:24:14 +0200
3 - 1 - 2 guvenhaber.com.tr/ 185.162.145.92


JavaScript

Executed Scripts (44)


Executed Evals (0)


Executed Writes (5)

#1 JavaScript::Write (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    

#2 JavaScript::Write (size: 1896, repeated: 1) - SHA256: 4fa767fe1b35e8d07772793d02a078f3465ec0ec4d5fdc21dcfa6855c002a0fe

                                        < !doctype html > < html > < body > < iframe style = "display:none"
data - ad - client = "ca-pub-4519589718863245"
id = "google_esf"
name = "google_esf"
src = "https://googleads.g.doubleclick.net/pagead/html/r20171011/r20170110/zrt_lookup.html#" > < /iframe><script>google_reactive_ads_config={};google_ad_client="ca-pub-4519589718863245";google_adsbygoogle_status="done";google_ad_width=0;google_ad_height=0;google_loader_features_used=256;google_responsive_auto_format=12;google_ad_modifications={"plle":true,"eids":["38893302","21061122"],"loeids":["38893312"]};google_loader_used="aa";google_reactive_tag_first=true;google_ad_format="0x0";google_ad_unit_key="1223701170";google_ad_dom_fingerprint="807048394";google_sailm=false;google_unique_id=0;google_async_iframe_id="aswift_0";google_start_time=1507855367602;google_pub_vars="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";google_bpp=8616;google_async_rrc=0;google_iframe_start_time=new Date().getTime();</script > < script src = "http://pagead2.googlesyndication.com/pagead/js/r20171011/r20170110/show_ads_impl.js" > < /script></body > < /html>
                                    

#3 JavaScript::Write (size: 273, repeated: 1) - SHA256: 06a91c8bb038e4a0c81c8f479550b381d17b33026a88660265d95c7e0db33f49

                                        < iframe id = "bsIframebc3ao80ft008496576888183394"
style = ""
src = "//cdn.bannersnack.com/banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true"
width = "100%"
height = "100%"
frameborder = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen > < /iframe>
                                    

#4 JavaScript::Write (size: 271, repeated: 1) - SHA256: 4ff29600f2587d1c024b565b053a4cdb0240674c02506bd63f7d49b5e27b6d0e

                                        < iframe id = "bsIframebc3ao80ft8159131128979348"
style = ""
src = "//cdn.bannersnack.com/banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true"
width = "100%"
height = "100%"
frameborder = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen > < /iframe>
                                    

#5 JavaScript::Write (size: 1370, repeated: 1) - SHA256: 0281059571d7e425aaa27e9825de1380afd64bca4ae0a41b0186312a2e0d4a9d

                                        < iframe id = "google_ads_frame0"
name = "google_ads_frame0"
width = "0"
height = "0"
frameborder = "0"
src = "https://googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4519589718863245&amp;output=html&amp;h=0&amp;adk=1223701170&amp;adf=807048394&amp;w=0&amp;lmt=1507855365&amp;loeid=38893312&amp;plat=1%3A1085448%2C2%3A1085448%2C8%3A32776%2C9%3A32776%2C16%3A8388608%2C25%3A32768%2C26%3A32768&amp;rafmt=12&amp;format=0x0&amp;url=http%3A%2F%2Fguvenhaber.com.tr%2F&amp;ea=0&amp;flash=10.0.45&amp;pra=5&amp;wgl=0&amp;dt=1507855367602&amp;bpp=8616&amp;fdt=8620&amp;idt=8886&amp;shv=r20171011&amp;cbv=r20170110&amp;saldr=aa&amp;correlator=3478543676692&amp;frm=20&amp;ga_vid=254548197.1507855377&amp;ga_sid=1507855377&amp;ga_hid=497833541&amp;ga_fc=0&amp;pv=2&amp;icsg=0&amp;nhd=1&amp;dssz=0&amp;mdo=0&amp;mso=0&amp;u_tz=120&amp;u_his=1&amp;u_java=1&amp;u_h=885&amp;u_w=1176&amp;u_ah=855&amp;u_aw=1176&amp;u_cd=24&amp;u_nplug=10&amp;u_nmime=92&amp;adx=0&amp;ady=0&amp;biw=1159&amp;bih=754&amp;abxe=1&amp;eid=38893302%2C21061122%2C389613001&amp;oid=3&amp;nmo=1&amp;zm=1.02&amp;rx=0&amp;eae=4&amp;fc=784&amp;brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&amp;vis=0&amp;rsz=%7C%7Cr%7C&amp;abl=CS&amp;ppjl=u&amp;fu=272&amp;bc=1&amp;ifi=0&amp;dtd=9698"
marginwidth = "0"
marginheight = "0"
vspace = "0"
hspace = "0"
allowtransparency = "true"
scrolling = "no"
allowfullscreen = "true" > < /iframe>
                                    


HTTP Transactions (118)


Request Response
                                        
                                            GET /css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Fri, 13 Oct 2017 00:42:46 GMT
Date: Fri, 13 Oct 2017 00:42:46 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   714
Md5:    b4101d235d946fbcbfe4a61773ab3826
Sha1:   1a53fedcac3797e94f25919db47a2eacff38a063
Sha256: a155bbf32d6c815480588b2f52ce079053e6ddefd12ef659c5b49401603cc654
                                        
                                            GET /pagead/js/adsbygoogle.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 13 Oct 2017 00:42:46 GMT
Expires: Fri, 13 Oct 2017 00:42:46 GMT
Cache-Control: private, max-age=3600
Etag: 13599246703091661932
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 26136
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   26136
Md5:    8c3f0634873dcc1f0be3499252ed3a32
Sha1:   8b20cfa3b787aeb8697f5fcaf56e66e8df34002c
Sha256: 0626710f56e51c6b4145398123b3398dfa0be818efd68be3db068b61622435b1
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.8.2 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Content-Length: 11915
Last-Modified: Wed, 20 Sep 2017 21:07:05 GMT
Connection: keep-alive
Etag: "59c2d879-2e8b"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C++ program text, with very long lines
Size:   11915
Md5:    af2f44df3198cfda9fd515873696ad00
Sha1:   cc583f436ea6bdb172ce36105a676e2081065638
Sha256: dba6b80aceb1267fd1ed564e08a983730d272813e9b3aff85dc365c65333dd66
                                        
                                            GET /wp-content/themes/guven/includes/demos/local_news/demo_style.css?ver=8.0 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Last-Modified: Wed, 24 May 2017 11:08:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5925699a-a40"
X-Powered-By: PleskLin
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   744
Md5:    1d8bba66f51a5409a981c44976b4f392
Sha1:   c85331f1989c4140a509936a877d079d29d8e7c2
Sha256: 7e3a8b40eacdc231889c30507dc4f995626e714001358cf80dc374a78f76b10d
                                        
                                            GET /avatar/?s=80&d=mm&r=g HTTP/1.1 
Host: 0.gravatar.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         192.0.73.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:42:46 GMT
Content-Length: 1323
Connection: keep-alive
Last-Modified: Wed, 11 Jan 1984 08:00:00 GMT
Link: <http://www.gravatar.com/avatar/?s=80&d=mm&r=g>; rel="canonical"
Access-Control-Allow-Origin: *
Content-Disposition: inline; filename="none.png"
X-nc: HIT arn 1
Accept-Ranges: bytes
Expires: Fri, 13 Oct 2017 00:47:46 GMT
Cache-Control: max-age=300
Source-Age: 346638


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   1323
Md5:    0bca52afdb2b9998132355d716390c9f
Sha1:   ae2c13b74a0c84a110bbccd993577de47f21ed39
Sha256: 2cdc7482af3176d3c41e97a312dcf7e679a5b3b49b32c5ad4642c5b30e1b6017
                                        
                                            GET /wp-content/plugins/td-composer/css-live/assets/css/td_live_css_frontend.css?ver=4.8.2 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Last-Modified: Mon, 19 Jun 2017 11:25:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"5947b4c3-aff"
X-Powered-By: PleskLin
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   963
Md5:    a50fdf068bc76b6a911b97e2428e8ecf
Sha1:   e990ac461d820445669c2db50e609ce50976c985
Sha256: 99362289ad213df6c1bef29b0800599eda3643f5bacda14c763c90e9a7401123
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Content-Length: 10056
Last-Modified: Mon, 19 Jun 2017 11:15:00 GMT
Connection: keep-alive
Etag: "5947b234-2748"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   10056
Md5:    7121994eec5320fbe6586463bf9651c2
Sha1:   90532aff6d4121954254cdf04994d834f7ec169b
Sha256: 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Content-Length: 97184
Last-Modified: Mon, 19 Jun 2017 11:15:00 GMT
Connection: keep-alive
Etag: "5947b234-17ba0"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   97184
Md5:    8610f03fe77640dee8c4cc924e060f12
Sha1:   076524186dbbdd4c41afbbd6b260d9e46a095811
Sha256: fc48d1d80ece71a79a7b39877f4104d49d3da6c3665cf6dc203000fb7df4447e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:46 GMT
Server: Apache
Last-Modified: Thu, 12 Oct 2017 02:37:27 GMT
Expires: Thu, 19 Oct 2017 02:37:27 GMT
Etag: 292C2063459CCB3B96C64C38C6D66B8F40D3A107
Cache-Control: max-age=524680,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp21
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9d88f26331e119729143a69a5784f35e
Sha1:   292c2063459ccb3b96c64c38c6d66b8f40d3a107
Sha256: 3cc5663d1b2585765c120ee259fceb92c32bf63b1a9fa21b27cf8d6624d726f1
                                        
                                            GET /wp-content/themes/guven/style.css?ver=8.0 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Last-Modified: Wed, 24 May 2017 11:08:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Etag: W/"592569b2-1155f3"
X-Powered-By: PleskLin
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   156061
Md5:    e3ee14e72c3816338979b345805b97a2
Sha1:   ab37ae161f26698eb25a102a5515a1fd22434560
Sha256: b2294d7d7fd7f9fe5d3b656c9dd7b9f8139dbc24d8705334bdff825b598b1e48
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:47 GMT
Server: Apache
Last-Modified: Wed, 11 Oct 2017 09:42:49 GMT
Expires: Wed, 18 Oct 2017 09:42:49 GMT
Etag: CAE2D4E36B01556EB5A7DFCAC91643A06697B94B
Cache-Control: max-age=463801,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp30
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    b1e50e73281d4487d8b1cf3cdaf74bd5
Sha1:   cae2d4e36b01556eb5a7dfcac91643a06697b94b
Sha256: ba282a3cc79d8121086cb931af7199775bd48fef7699ba80e61d794c382b880c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:47 GMT
Server: Apache
Last-Modified: Wed, 11 Oct 2017 09:42:49 GMT
Expires: Wed, 18 Oct 2017 09:42:49 GMT
Etag: 8A7BC9885D9FFAFD7270D5324F22275F2B2C0D13
Cache-Control: max-age=463801,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp21
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d7daaf5088b1b8633e7e0d6600507656
Sha1:   8a7bc9885d9ffafd7270d5324f22275f2b2c0d13
Sha256: 9ea32e88334ce42853f79b00abaff0d4ee00214175cd3e1d189a0aa1b4a4ceba
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Tue, 17 Oct 2017 00:42:47 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    00c53ce7aff5a785b677068b7cc8a741
Sha1:   6f33c2f4dc6324126f89a279b631f4a38320cc67
Sha256: 5242b0843cb5b8705251e7af36ba30113032d64f774edbb396939f70bc05f314
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=345316, public, no-transform, must-revalidate
Last-Modified: Tue, 10 Oct 2017 00:34:08 GMT
Expires: Tue, 17 Oct 2017 00:34:08 GMT
Date: Fri, 13 Oct 2017 00:42:47 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    fccd40351d25d6f5eecda73fdef9b3d8
Sha1:   0d2d2f37814bb53b7dca796acc9ee278ef6297ba
Sha256: 23e276d6aa20791de9110019cb7992bae490040d4cc3a06678449d1b3f2063e4
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Tue, 17 Oct 2017 00:42:47 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3aa7fe93a05384914d93da81ae224c56
Sha1:   1ad0f0ff4b3a3a4cc9802215886f4e2283d1861f
Sha256: 1c6d5e5613889682a79a1df2d2646b030a9d6323ec8dc32cca13e38b406e40e6
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coin-hive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         94.130.90.154
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:42:47 GMT
Content-Length: 178
Connection: keep-alive
Location: https://coinhive.com/lib/coinhive.min.js


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /adsid/integrator.js?domain=guvenhaber.com.tr HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Fri, 13 Oct 2017 00:42:47 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   107
Md5:    5432a558d422eaeaa6f7e8a15c0c1134
Sha1:   252ee6dbb502fd998fbdc5721da5986b877f1c73
Sha256: e61d268069b171358cb5d545e31856cbc3ac2b995cff5e4f7043ae988dc44c6d
                                        
                                            GET / HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.10, PleskLin
Link: <http://guvenhaber.com.tr/wp-json/>; rel="https://api.w.org/", <http://guvenhaber.com.tr/>; rel=shortlink
Set-Cookie: wfvt_3956665264=59e00b927dc48; expires=Fri, 13-Oct-2017 01:10:50 GMT; Max-Age=1800; path=/; HttpOnly
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=2592000
Expires: Sun, 12 Nov 2017 00:40:50 GMT


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   65177
Md5:    df395355b9ed907b1b373b27a4863631
Sha1:   b5a0da9cdc93cdaec40903a9d056041a7014cc09
Sha256: 5c85977e109b876f62de6b1a92d8d04bc89eb3238c45c1318cb167e5ea3ddf35

Alerts:
  IDS:
    - ET CURRENT_EVENTS CoinHive In-Browser Miner Detected
                                        
                                            GET /adsid/integrator.js?domain=guvenhaber.com.tr HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
P3P: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
Timing-Allow-Origin: *
Cache-Control: private, no-cache, no-store
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Date: Fri, 13 Oct 2017 00:42:47 GMT
Server: cafe
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   107
Md5:    5432a558d422eaeaa6f7e8a15c0c1134
Sha1:   252ee6dbb502fd998fbdc5721da5986b877f1c73
Sha256: e61d268069b171358cb5d545e31856cbc3ac2b995cff5e4f7043ae988dc44c6d
                                        
                                            GET /vi/K3oMdYMNOJc/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 3038
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1393348628"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3038
Md5:    ceaf3a0ecd32d704d453a72e1ae6d874
Sha1:   8c3f2ca318f6ee9b2b0b71bbbe9a452d37b2991f
Sha256: 128f83965c7f33a76a7ca5092dc7c3ef2c70a2d0197fc8a9f10974b173d297d1
                                        
                                            GET /vi/l5hNAx_wVIE/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 3396
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1442332814"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3396
Md5:    c7389e7b95597b5a675b65b66e29bc26
Sha1:   106665dab25c2bdf812907117866512c961fe7ef
Sha256: ed5295522297655fb42fb9eabafed0d58619a3e4d7fae25fcd4183cf5c024adf
                                        
                                            GET /vi/55IcnuZnqeA/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 4873
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1494686408"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4873
Md5:    006d26e4fb731283f992def0e9ed215c
Sha1:   cc4b57ef9f6b5ee08f4894cb5a2dfef46c395e78
Sha256: 3bd3eb05b445022526d8bbeeb876fcf22d97d71b798eccc5e66658919efb151f
                                        
                                            GET /vi/6Viyt2aIOG8/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 3277
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1433957401"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3277
Md5:    c1a75571513b99235f60028532b8f9ad
Sha1:   25c52fbe4c92449fe4f0e3a91dac905b0ce67e07
Sha256: cb3c31b757de5da463aa1af9e034da574f091af4d6793912eacf978e91a0278f
                                        
                                            GET /vi/nfzvCx9_1fg/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 2920
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Etag: "1442541601"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=7200
Age: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2920
Md5:    54f16337b78a8100d8ccfda67edd8a31
Sha1:   38d307b4ddecc655088708d69b6f4066c18b9b25
Sha256: 184c2671720296f1133dcd0d784b15642300fa345980269d2fb0b621870e6550
                                        
                                            GET /vi/kAyrz32rEeU/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 4053
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1414068801"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4053
Md5:    c8fbef99762c7752818ea7870f0ee959
Sha1:   18338741dd0db8593537f2cccd950012c1415eb8
Sha256: f907381a1ddccca23b3cbd8a8ee7247019e9973dcdb327730ccfea99c868642c
                                        
                                            GET /vi/lQKetQkUkxY/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 3819
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1455882352"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3819
Md5:    35b7c6b8aa51032c36ea50aafcd91cf8
Sha1:   d6e1fd188c6305ec0c03dfebf320f0db9a839e53
Sha256: 76f1e8a31b6f4df02d00da5c8b3ca628900e34ea7c23d0b98f7e0c4f7a238975
                                        
                                            GET /vi/GN04m25JAO4/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 3401
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1427118751"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3401
Md5:    fb582c9479fc79ea5b1f0f6bcfed1d1f
Sha1:   458de166088ef98c8d2d6c47c874bf76c65af23d
Sha256: ef4e601f0863a2390baf140deb56b48bcf7687fb66e137547547379cd814e035
                                        
                                            GET /vi/vGlGkdfVLAs/default.jpg HTTP/1.1 
Host: img.youtube.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         64.233.161.101
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Accept-Ranges: bytes
Content-Length: 2538
Date: Fri, 13 Oct 2017 00:42:47 GMT
Expires: Fri, 13 Oct 2017 02:42:47 GMT
Cache-Control: public, max-age=7200
Etag: "1442095773"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2538
Md5:    49234ac3bd700163eaade12be976ae95
Sha1:   0bd8ab36cfecefd72b2a48e32ee5570509c3277e
Sha256: 4c1612bdf0f93239e69f31c458e00ca3548ee17ec38d0ba474f5b5c0a7944f21
                                        
                                            GET /iframe/embed.js HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         54.230.128.86
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 698
Connection: keep-alive
Date: Mon, 22 May 2017 13:15:24 GMT
Last-Modified: Mon, 22 May 2017 13:14:11 GMT
Etag: "8e2ffa155bbdc17ae6b85fed8e9cbc1f"
Content-Encoding: gzip
x-amz-meta-cb-modifiedtime: Mon, 22 May 2017 13:05:56 GMT
x-amz-version-id: CVPsnWlXMwY1bovQGQjXy.ZBs7GgJJQT
Accept-Ranges: bytes
Server: AmazonS3
Age: 41099
X-Cache: Hit from cloudfront
Via: 1.1 4973b351452bebd97817a8a5711b6576.cloudfront.net (CloudFront)
X-Amz-Cf-Id: gQqvQrk-m_7lo7ERmICO7f8ZyOrXRB0cP6R3st98PtDR_nuWvOwpWA==


--- Additional Info ---
Magic:  gzip compressed data, from NTFS filesystem (NT)
Size:   698
Md5:    8e2ffa155bbdc17ae6b85fed8e9cbc1f
Sha1:   bac2af2c127412fa074a885cf101ab2200a09b7b
Sha256: 1985c676d4b25b1151a9837bcb76ea043e39988fb98ab4b27823511a599daef6
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193619_01-265x198.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 22694
Last-Modified: Tue, 10 Oct 2017 13:35:34 GMT
Connection: keep-alive
Etag: "59dccca6-58a6"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   22694
Md5:    f1ac5ba6ff40117bb9a1835e0bfae22d
Sha1:   ad1e0d194922509c0818c142549f4edb53c4b274
Sha256: d35c90157172445fba14c8a15e79c4fe7ded945c0242757ad85337c7ab6e0d87
                                        
                                            GET /wp-content/uploads/2017/10/9a38199f-c364-4947-b2a0-887ef7d7b793-265x198.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 15053
Last-Modified: Wed, 11 Oct 2017 13:12:58 GMT
Connection: keep-alive
Etag: "59de18da-3acd"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15053
Md5:    887c4ec779bbc74d7e7abcf57b994cc8
Sha1:   83db667397dc8a2f8467a0ac61e4baeeebc337b6
Sha256: 036a8cac27fc44b4a967d50015e87ce42f899a12e2d7efc7201686d94e19470f
                                        
                                            GET /wp-includes/js/comment-reply.min.js?ver=4.8.2 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 1078
Last-Modified: Mon, 19 Jun 2017 11:15:00 GMT
Connection: keep-alive
Etag: "5947b234-436"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1078
Md5:    56bc2726d829207bfa802f957aac0791
Sha1:   5bf5c0a61359d8784c950b059e013aceea0d42f1
Sha256: 1b1ca0f15010e0124bd4ca481404643c88f7eda1b276e9554d0ed83fb45b7e30
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.8.2 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 1398
Last-Modified: Mon, 19 Jun 2017 11:15:00 GMT
Connection: keep-alive
Etag: "5947b234-576"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   1398
Md5:    5a03f97cc479b9f5d7efdaccec31bc17
Sha1:   54518be91b7c5d4b139e032d23ffae568cc7e9fd
Sha256: dcb5e540e62fc85857254a1066afb6a7e8999279c6d4c583eef855d39f9289c0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:47 GMT
Server: Apache
Last-Modified: Tue, 10 Oct 2017 19:05:30 GMT
Expires: Tue, 17 Oct 2017 19:05:30 GMT
Etag: 22CF3E09B330CC08E46EACB09D9F431009E68AA5
Cache-Control: max-age=411162,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp30
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    27596f2d321a6d695bb7c397fee419a9
Sha1:   22cf3e09b330cc08e46eacb09d9f431009e68aa5
Sha256: 79ecd8020211bc0d2b0e3901da1be4ca91bc5b79c0740627ffc71909bd1fa83b
                                        
                                            GET /wp-content/uploads/2017/07/2098818-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 4795
Last-Modified: Wed, 05 Jul 2017 09:42:35 GMT
Connection: keep-alive
Etag: "595cb48b-12bb"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   4795
Md5:    a985e4a9f66b379c4763fe36cff1a990
Sha1:   806f6826f54381ad49918c276f8b24d441d10e81
Sha256: ddf46f69076860cbaa6ec78d1817870794c0a9648d3c01f4919a8692dcd4c034
                                        
                                            GET /wp-content/uploads/2017/10/15621966_1332213756818491_1999941309799886160_n-1-265x198.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 7855
Last-Modified: Tue, 10 Oct 2017 12:27:00 GMT
Connection: keep-alive
Etag: "59dcbc94-1eaf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   7855
Md5:    ab4517b0c4867575fd52f9ff3e3dbb19
Sha1:   8ae615ab9986de18544dd5c5ad7659051789cf9d
Sha256: 58ffe4459731302252dd7f0a8e966a45d779c3de4ac1c1834d0420fda57e7eeb
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         94.130.90.152
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:42:48 GMT
Last-Modified: Mon, 02 Oct 2017 14:16:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"59d24a54-21e45"
Expires: Fri, 13 Oct 2017 08:42:48 GMT
Cache-Control: max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   43383
Md5:    fe144c72a53ead8a0b0960680f396821
Sha1:   dd8415779b4f07aff98c3c3cf9d8d9e5a2dbc0ae
Sha256: c5c84e973e49b5919fd11bcab34ae5a7cbc68acc717f9ddb6f1f122f35d72269

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2017/07/%C3%B6l-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 6432
Last-Modified: Mon, 24 Jul 2017 20:41:56 GMT
Connection: keep-alive
Etag: "59765b94-1920"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6432
Md5:    8ffe397a96fc54765ca06e251ff15a8a
Sha1:   01a1e08b466477edc8d0cddccf67229ed2e8f300
Sha256: 33347b60a359b15ddf827ad0039f5252c6e76f14c5d73d729045e4e82764d48d
                                        
                                            GET /wp-content/uploads/2017/10/daf9fee7-0d42-4a8b-94eb-13241a5f6bd4-534x462.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 59705
Last-Modified: Wed, 11 Oct 2017 13:18:36 GMT
Connection: keep-alive
Etag: "59de1a2c-e939"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   59705
Md5:    f2dd95b5267c24fc1a87965d7f0e44df
Sha1:   40f47fe192c28db3f787b11d64eb4bc2d0060cd8
Sha256: 86f6f6e781a95d28bb370013880a74f5ba758e5b53b09a9c4233679e7211b202
                                        
                                            GET /wp-content/uploads/2017/06/9-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 27636
Last-Modified: Mon, 19 Jun 2017 11:26:11 GMT
Connection: keep-alive
Etag: "5947b4d3-6bf4"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   27636
Md5:    3181df8f62f3cab4aecfd0201bcf2bbe
Sha1:   0cf102fa7a23465c564fb5804af710d273cc94a4
Sha256: 5e4d1a9979d226d3704b74e8bf122a62784795c9d12ab352f81387de3674de87
                                        
                                            GET /wp-content/uploads/2017/08/20170809AW143788_01-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 26022
Last-Modified: Wed, 09 Aug 2017 10:10:58 GMT
Connection: keep-alive
Etag: "598adfb2-65a6"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   26022
Md5:    1f1f7aefccf151eba8a90e335978a431
Sha1:   f627a21ae39bd61b5242d6ff480ab03bf598d26b
Sha256: 9de6f00fb285fa7e8e5a40246c0c9458ab9d67056d64492e05e4513032dd05a7
                                        
                                            GET /wp-content/uploads/2017/10/derekapigures-265x198.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 34195
Last-Modified: Tue, 10 Oct 2017 14:25:51 GMT
Connection: keep-alive
Etag: "59dcd86f-8593"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   34195
Md5:    4844dd690e343ff85fe4fa06194ea97a
Sha1:   d4fadc11d375a661077ee96c6ed9c4a59ddd2b5c
Sha256: b0e6025d9b377c27431344436ba937ccfaa19ed282284a52f3042aad24ffafe0
                                        
                                            GET /wp-content/uploads/2017/09/15621966_1332213756818491_1999941309799886160_n-3-160x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 5062
Last-Modified: Fri, 29 Sep 2017 19:51:03 GMT
Connection: keep-alive
Etag: "59cea427-13c6"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5062
Md5:    1e05a56dd6fd3f5033e5654ab0a18c13
Sha1:   d7fceb92651cb082f4ea97b87e368cacc180f9a5
Sha256: db98c6fec511f070f1df45dda54c00e0ad6a790ecf802726accbe601de5cc360
                                        
                                            GET /wp-content/uploads/2017/06/5-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 13684
Last-Modified: Mon, 19 Jun 2017 11:26:04 GMT
Connection: keep-alive
Etag: "5947b4cc-3574"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13684
Md5:    677d703bdccc1f3d38ff5084f8cfaa30
Sha1:   6e7f3b815c17e588cc9520207c141c2f430a155f
Sha256: df960a4f1883d256fddbcd302dd910ea0452b137c36d935a45b4b9207fcb5176
                                        
                                            GET /wp-content/uploads/2017/09/20170923AW178976_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 21692
Last-Modified: Sat, 23 Sep 2017 10:40:39 GMT
Connection: keep-alive
Etag: "59c63a27-54bc"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21692
Md5:    82bb57cdd11be4a711c2e11aa1249efb
Sha1:   096ef57f183f26fb7af4d3d01185be08201a6176
Sha256: 1ebfb8736c98e17d5d3b89f248c7fdc4260fc786799d383edf4c59d805749614
                                        
                                            GET /wp-content/uploads/2017/09/DSC0115111-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 10296
Last-Modified: Wed, 13 Sep 2017 12:41:36 GMT
Connection: keep-alive
Etag: "59b92780-2838"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10296
Md5:    c2e87388209fb7f0e223f685f9d701e4
Sha1:   01759c15bcd8ae958b7cf976f9b5df44754ccfeb
Sha256: a1143d5ca4cd88c5120722d46e5a6f08766d8d0885a247d8a89896767a142073
                                        
                                            GET /wp-content/uploads/2017/08/20170805AW141031_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 21749
Last-Modified: Sat, 05 Aug 2017 15:36:28 GMT
Connection: keep-alive
Etag: "5985e5fc-54f5"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21749
Md5:    ed8c0a242c931697cd4c222354a641d2
Sha1:   162c6380c880cad32995b629f93524dc26ae5665
Sha256: 5f554757d8ba0112c2191d357587fda615ee7cd7df91a6af19c130af2e4189d2
                                        
                                            GET /wp-content/uploads/2017/07/didim-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 42959
Last-Modified: Sat, 29 Jul 2017 16:23:04 GMT
Connection: keep-alive
Etag: "597cb668-a7cf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   42959
Md5:    e23cd4eddf82074bcebe37d5776442f8
Sha1:   08430c7952b6c73bae1379de4d66cd14c5900de8
Sha256: f8a5907a9a8146fd5c3fca01b0be4a7d3d50151ee7081f4789c82aeaec0bf800
                                        
                                            GET /wp-content/uploads/2017/08/tari%C5%9F-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 16928
Last-Modified: Fri, 04 Aug 2017 15:01:51 GMT
Connection: keep-alive
Etag: "59848c5f-4220"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16928
Md5:    5c6fddbd6510766a393dee7558a88b97
Sha1:   83f54a6e2b90feb1c64ade871f12c5a1c001dce1
Sha256: 5c93f0af0565b95dfe5b968c01492a51af58fea1d687e3fe86d473a7a2c73064
                                        
                                            GET /wp-content/uploads/2017/08/21040773_1594438190596045_983338736_n-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 8887
Last-Modified: Wed, 23 Aug 2017 06:38:19 GMT
Connection: keep-alive
Etag: "599d22db-22b7"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8887
Md5:    6a4104ed55e1f1732a3042f48e1e7ac4
Sha1:   edce1a2b50d21cf5bf4bcf0a77c622fb8449a107
Sha256: 843882a05ac3d1dd3fffd9ce829cd6caf520a351d6fef552180d2540e5264597
                                        
                                            GET /wp-content/uploads/2017/10/22308821_353049158441588_6932586217303840105_n-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 8154
Last-Modified: Sat, 07 Oct 2017 15:04:07 GMT
Connection: keep-alive
Etag: "59d8ece7-1fda"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8154
Md5:    dda52d16c645a687c36df836fadf283b
Sha1:   3aff0bb17c31fc83d567003fee45d9d7964ebd3d
Sha256: 87794bd9e333f9c7267e186505d74725c963db3b28c18e0a27f87a9dee3cfbb7
                                        
                                            GET /wp-content/uploads/2017/06/10-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 19201
Last-Modified: Mon, 19 Jun 2017 11:26:12 GMT
Connection: keep-alive
Etag: "5947b4d4-4b01"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   19201
Md5:    7ad0b35d82f01cb44fbd7bc78ee8b4eb
Sha1:   467a8dbb794443f9deef2f588fdf357a096de885
Sha256: 987719523cb4a848a04e4ef8a87a8634420629a96adf0e2c5ac87c614dc5416d
                                        
                                            GET /wp-content/uploads/2017/06/1-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 17090
Last-Modified: Mon, 19 Jun 2017 11:25:57 GMT
Connection: keep-alive
Etag: "5947b4c5-42c2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17090
Md5:    843dfd0dcbb1520d7500835bb1903476
Sha1:   2d140c3c8690ff6135548150aca4491d0fc5b30a
Sha256: f6f31a6326b5db0b80ee26b3787f9f967a057ee0c5f8d6181d84ac1281573be0
                                        
                                            GET /wp-content/uploads/2017/08/20170822AW154112_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 25226
Last-Modified: Tue, 22 Aug 2017 20:11:34 GMT
Connection: keep-alive
Etag: "599c8ff6-628a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   25226
Md5:    dab11fabef4e2d740433b80cef42f58e
Sha1:   1167db68e5b8bde3ee2b9c0a8717fe8817588082
Sha256: 1f948b06983ef606e777dc037996e8ae6c5adb88884ecd8e05462fc8be50b1c1
                                        
                                            GET /wp-content/uploads/2017/08/20727895_1584995584873639_2240872898570336279_n-324x206.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 14227
Last-Modified: Wed, 30 Aug 2017 19:13:13 GMT
Connection: keep-alive
Etag: "59a70e49-3793"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   14227
Md5:    af8c397f26f6e17d78738be1b273683f
Sha1:   10dd9369cf92c93103eab5f7a004c10892c41e38
Sha256: 10c6a9cae0d4685809026ee292bd7441a9a3275690bbadad8552eceb8270d79c
                                        
                                            GET /wp-content/uploads/2017/09/thumbnail_1207-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 13260
Last-Modified: Tue, 05 Sep 2017 11:54:16 GMT
Connection: keep-alive
Etag: "59ae9068-33cc"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13260
Md5:    8da829ed5fccba296310715bb052f5b9
Sha1:   088f4f90ff4eea7bf8e34e1717733009174b5854
Sha256: 2a8293accbf8ed5b1c0bda73e565a8de4e09958ac0a29eee49f0cc5d96d17e05
                                        
                                            GET /wp-content/uploads/2017/08/man-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 18682
Last-Modified: Tue, 01 Aug 2017 16:14:34 GMT
Connection: keep-alive
Etag: "5980a8ea-48fa"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18682
Md5:    0ae3335f458250c97511dc33e27edc9f
Sha1:   a256aa3c25292c658cd7749b38897f3eba474db0
Sha256: d9d627a2286ae78a73cf7016e55b9400ceabce0f59e14167b01cd16f585d6c51
                                        
                                            GET /wp-content/uploads/2017/08/20170804AW139839_05-324x235.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 34600
Last-Modified: Fri, 04 Aug 2017 14:02:03 GMT
Connection: keep-alive
Etag: "59847e5b-8728"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   34600
Md5:    780ec2281cf323746280cfcf67f6d00e
Sha1:   db77ab1e13c0aeec7b30eec4c90c2750bcf35e40
Sha256: abebfe839f6c2502de5663cdf977423646a8aa6a6dd6fdcbd490267ca2718316
                                        
                                            GET /wp-content/uploads/2017/10/daf9fee7-0d42-4a8b-94eb-13241a5f6bd4-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 16535
Last-Modified: Wed, 11 Oct 2017 13:18:36 GMT
Connection: keep-alive
Etag: "59de1a2c-4097"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16535
Md5:    e874f618c3795aed4dd4c424bb1e7783
Sha1:   af92c495a92818b71d07ebfef147180d5b03b8c7
Sha256: 9fc245997bab01cf33064059bea22b2fed32b0ed7effc9bb826d8f9c583c688a
                                        
                                            GET /wp-content/uploads/2017/06/5-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:53 GMT
Content-Length: 20233
Last-Modified: Mon, 19 Jun 2017 11:26:04 GMT
Connection: keep-alive
Etag: "5947b4cc-4f09"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   20233
Md5:    df33f0c83bdfb1d72a42e1a354af3e56
Sha1:   a8dd2dfbc9ef90e7999721851d814ff07b24f851
Sha256: b500286d99d78e78a24ba8c42d94d5a56328efe36fb67df944fff4a9fa3dfa6e
                                        
                                            GET /wp-content/uploads/2017/10/9a38199f-c364-4947-b2a0-887ef7d7b793-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 15490
Last-Modified: Wed, 11 Oct 2017 13:12:59 GMT
Connection: keep-alive
Etag: "59de18db-3c82"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15490
Md5:    7472338c5661275cb0fa1870358ba48d
Sha1:   60b990fbebd1ab28fb6f731a8ba36cfca222af97
Sha256: cdcb19a0241b1269edbd932129d4d3aaf070216cc7d6c9c378822ab01db3b594
                                        
                                            GET /s/opensans/v15/cJZKeOuBrn4kERxqtaUH3T8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17704
Date: Wed, 11 Oct 2017 21:51:37 GMT
Expires: Thu, 11 Oct 2018 21:51:37 GMT
Last-Modified: Sat, 07 Oct 2017 03:46:27 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 96672


--- Additional Info ---
Magic:  data
Size:   17704
Md5:    bf2d0783515b7d75c35bde69e01b3135
Sha1:   0e92462e402c15295366d912a7b8be303d0257d8
Sha256: 054349dda27b80bb105fbc59b5973ef9889ed976aca1fbe39f77688dcff8c552
                                        
                                            GET /s/opensans/v15/xjAJXh38I15wypJXxuGMBobN6UDyHWBl620a-IRfuBk.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 17068
Date: Wed, 11 Oct 2017 21:51:37 GMT
Expires: Thu, 11 Oct 2018 21:51:37 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:46 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 96672


--- Additional Info ---
Magic:  data
Size:   17068
Md5:    db70d0b9cb27ada1a260a2b35e756b8b
Sha1:   691945e705abf1cb1d2547c29f4ac9120dd661de
Sha256: 74644b8261f222f21307a0fa346bf91268885da41906625e18827f2aa4651f6e
                                        
                                            GET /s/opensans/v15/k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18476
Date: Wed, 11 Oct 2017 21:51:37 GMT
Expires: Thu, 11 Oct 2018 21:51:37 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:41 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 96672


--- Additional Info ---
Magic:  data
Size:   18476
Md5:    623e3205570002af47fc2b88f9335d19
Sha1:   b5f79d1934da79c8a4ba381092dad82ffb0582cb
Sha256: 5e03e0c7668266486cab9529702019d75c219fcec2b1e82a7c11797ba9b78506
                                        
                                            GET /wp-content/uploads/2017/08/ak1-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 15914
Last-Modified: Fri, 04 Aug 2017 14:33:23 GMT
Connection: keep-alive
Etag: "598485b3-3e2a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15914
Md5:    bb91e4f5143b09f4fac90e0823d59b8a
Sha1:   322d14424dcb64b317af3e7c61560b30e2d1a3f7
Sha256: bea46c5f0ae6b20ed29813b872a6c39f98eb55eb20a2f2eb2844f98bba61d611
                                        
                                            GET /s/roboto/v16/2UX7WLTfW3W8TclTUvlFyQ.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18904
Date: Thu, 21 Sep 2017 13:39:36 GMT
Expires: Fri, 21 Sep 2018 13:39:36 GMT
Last-Modified: Mon, 17 Apr 2017 21:22:19 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 1854193


--- Additional Info ---
Magic:  data
Size:   18904
Md5:    a9fc51fd0214c75ee5953dda0f2a06a6
Sha1:   7a4ddb6733c33dfe9ec94c82a5e7f5da885f5182
Sha256: 8740f04a97202a2483d54a5781598c30cceac029a1522b6c5dd270250b9d1a17
                                        
                                            GET /wp-content/uploads/2017/10/derekapigures-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 35263
Last-Modified: Tue, 10 Oct 2017 14:25:51 GMT
Connection: keep-alive
Etag: "59dcd86f-89bf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   35263
Md5:    4e00d9e7856a69043083e87771ace2b1
Sha1:   8f25a8dac529672aafd35a029003609ad3561cd7
Sha256: eff293cd840842695d530b39b6940e7440ceb740ec950773f913d14a4d276884
                                        
                                            GET /wp-content/uploads/2017/10/15621966_1332213756818491_1999941309799886160_n-1-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 6719
Last-Modified: Tue, 10 Oct 2017 12:27:00 GMT
Connection: keep-alive
Etag: "59dcbc94-1a3f"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6719
Md5:    38f4a203f9a9a6478c1d5c06866efbdf
Sha1:   759bb71a2ad08b6160e591c11057e2df5a3fe9af
Sha256: e79e1848667cd7f0edf44492832d18ccdec2962605a1797577384eb39d3c8932
                                        
                                            GET /s/opensans/v15/MTP_ySUJH_bn48VBG8sNSnhCUOGz7vYGh680lGh-uXM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18296
Date: Wed, 11 Oct 2017 21:52:32 GMT
Expires: Thu, 11 Oct 2018 21:52:32 GMT
Last-Modified: Sat, 07 Oct 2017 03:50:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 96617


--- Additional Info ---
Magic:  data
Size:   18296
Md5:    1cd5320f8937d337b61d5117cf9d7b28
Sha1:   24798ef7ac55ba93aaa033fefdb7ca4d57da44ad
Sha256: e19b28ad1aafcb23735d02cbec4e2697ebbf7d608cf47fb8f8565def01b28c2a
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193619_01-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 22279
Last-Modified: Tue, 10 Oct 2017 13:35:34 GMT
Connection: keep-alive
Etag: "59dccca6-5707"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   22279
Md5:    523ced94f4e6f11901d2828f70ac8c63
Sha1:   9786f09fb3ded351105c6bae57e7fb8ff0229003
Sha256: 1e0bffb583f3d842b09eed71eb86803a11d35b052fc1093b4eef82119fa435f5
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193297_01-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 15354
Last-Modified: Tue, 10 Oct 2017 10:31:29 GMT
Connection: keep-alive
Etag: "59dca181-3bfa"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15354
Md5:    576afd2b73238c90617f20f3a1b93295
Sha1:   98f64109b62710904e016183bea44f9c3d030d6d
Sha256: 374b541f96f5693fe01be0698069977efa0742eaccb41ef6c9d6ca2f4b6a93da
                                        
                                            GET /s/roboto/v16/1pO9eUAp8pSF8VnRTP3xnvesZW2xOQ-xsNqO47m55DA.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20524
Date: Tue, 29 Aug 2017 11:06:45 GMT
Expires: Wed, 29 Aug 2018 11:06:45 GMT
Last-Modified: Mon, 17 Apr 2017 21:21:56 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 3850564


--- Additional Info ---
Magic:  data
Size:   20524
Md5:    bad78f935b0182bd83ac29a45edcdb25
Sha1:   5e4c693705045632d3564b270abc20569111398b
Sha256: 0882c4684cb747e18699bccb146157c01ebec7706d716584b573ed4037cecee5
                                        
                                            GET /s/roboto/v16/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18944
Date: Tue, 29 Aug 2017 15:01:42 GMT
Expires: Wed, 29 Aug 2018 15:01:42 GMT
Last-Modified: Mon, 17 Apr 2017 21:22:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 3836467


--- Additional Info ---
Magic:  data
Size:   18944
Md5:    89b469433216121ca9d12c1aef1353d1
Sha1:   2fc9bb16fbfee39e2559e5cbf5f90b225e0a8b92
Sha256: 8c615f8bcc28a0293b56f2b33be4d62985f9e1938e37b96f40231b2259bdd6b9
                                        
                                            GET /s/roboto/v16/OLffGBTaF0XFOW1gnuHF0YbN6UDyHWBl620a-IRfuBk.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700%7CRoboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900&ver=8.0
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 20528
Date: Tue, 29 Aug 2017 16:08:04 GMT
Expires: Wed, 29 Aug 2018 16:08:04 GMT
Last-Modified: Mon, 17 Apr 2017 21:21:38 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 3832485


--- Additional Info ---
Magic:  data
Size:   20528
Md5:    01ef9f5b9fc166ecdf86e02e34b8fd64
Sha1:   657349e673f8034ab4c60b97402294b4fbcabbf0
Sha256: 365b91348d2650d3fb8b810703e8a9466eb51ef5f4c8d1d5f02cc5f96edf3b95
                                        
                                            GET /wp-content/themes/guven/images/icons/newspaper.woff?14 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/wp-content/themes/guven/style.css?ver=8.0
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/font-woff
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 15184
Last-Modified: Wed, 24 May 2017 11:08:08 GMT
Connection: keep-alive
Etag: "59256998-3b50"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  data
Size:   15184
Md5:    34874304d80fdcbe202d44126defd76f
Sha1:   192bea38c37e42eef7a6e0527dc8e99454dccef6
Sha256: dc7375f568ea439c4f544ac6488b963a8d57d6cd65b0a8a551230d330e55483f
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193219_03-Kopya-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 18021
Last-Modified: Tue, 10 Oct 2017 07:49:47 GMT
Connection: keep-alive
Etag: "59dc7b9b-4665"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   18021
Md5:    a22856b132c99e9d2a6c66f762762764
Sha1:   4f5ed23241dd6d1f1f4444527486c19c2aee80ef
Sha256: fde68c6578635cd5a65a5816009be893ed88baa54407d2115d4d82e38dde3b20
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193264_01-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 19516
Last-Modified: Tue, 10 Oct 2017 08:22:30 GMT
Connection: keep-alive
Etag: "59dc8346-4c3c"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   19516
Md5:    6353b84fc06331022d44a488c0082a4e
Sha1:   20cb436704b8a488e38771eb8c3f8bf86540716f
Sha256: 93c27a219727074f70eeceaf09aa2f00cdcc53e612cbca3356d7f42ac3e39849
                                        
                                            GET /wp-content/uploads/2017/10/22407487_1637581099615087_541388765_n-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 17344
Last-Modified: Tue, 10 Oct 2017 08:18:04 GMT
Connection: keep-alive
Etag: "59dc823c-43c0"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   17344
Md5:    868916507913324e8140a5c7a9b44ae4
Sha1:   760ff1033ff95a11aae0bd499e6e0c6995dd91fe
Sha256: 548321d26b8c6b408a522017d495beef5219f7e3da37279d0c3fe7c1cb93ad62
                                        
                                            GET /wp-content/uploads/2017/10/daf9fee7-0d42-4a8b-94eb-13241a5f6bd4-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 3136
Last-Modified: Wed, 11 Oct 2017 13:18:36 GMT
Connection: keep-alive
Etag: "59de1a2c-c40"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3136
Md5:    d116efebd2dec1030bf0744c5e636b56
Sha1:   460487651e148fe93aad38aac60d880af2f15046
Sha256: 4da17a10b58df0b9463019eae00bf0095ef354cf578873ed1be76a12214572c2
                                        
                                            GET /banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         54.230.128.86
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Content-Length: 2342
Connection: keep-alive
Date: Fri, 13 Oct 2017 00:42:50 GMT
Last-Modified: Tue, 22 Aug 2017 13:09:43 GMT
Etag: "a879e045f4275bfac7691752623d13f1"
Content-Encoding: gzip
x-amz-version-id: xR0jDAF.jJwcf_1W8g4jcsSQmz4R3NZU
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Miss from cloudfront
Via: 1.1 4973b351452bebd97817a8a5711b6576.cloudfront.net (CloudFront)
X-Amz-Cf-Id: Yu2Zey8hgQYtaNE7KTZ9QDe2t30CSG3YmUGl-1mq8OiVwN5iOGGEXw==


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2342
Md5:    a879e045f4275bfac7691752623d13f1
Sha1:   4f57b359ed16f749ef71e97b7d05af46b42f9adc
Sha256: a66d393a333043b319fc6cd5f741952929d1c2a7aee7ecd72f40d9c8ae2cdf53
                                        
                                            GET /iframe/embed.js HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
If-Modified-Since: Mon, 22 May 2017 13:14:11 GMT
If-None-Match: "8e2ffa155bbdc17ae6b85fed8e9cbc1f"

                                         
                                         54.230.128.86
HTTP/1.1 304 Not Modified
                                        
Connection: keep-alive
Date: Fri, 13 Oct 2017 00:42:49 GMT
Etag: "8e2ffa155bbdc17ae6b85fed8e9cbc1f"
x-amz-meta-cb-modifiedtime: Mon, 22 May 2017 13:05:56 GMT
x-amz-version-id: CVPsnWlXMwY1bovQGQjXy.ZBs7GgJJQT
Server: AmazonS3
Age: 41101
X-Cache: Hit from cloudfront
Via: 1.1 6ff79e2331ef6a1ff8089b821bbb1a1f.cloudfront.net (CloudFront)
X-Amz-Cf-Id: D5XYBssemPiimWLlJuBT0ZA-ulgHfZwMB-XVZxbyyJ_i41wiJuSE1w==


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193619_01-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 8198
Last-Modified: Tue, 10 Oct 2017 13:35:34 GMT
Connection: keep-alive
Etag: "59dccca6-2006"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   8198
Md5:    8933ba2d5b0895f5de92016413557c99
Sha1:   7dd2673093aee5d395348ab4031be70064f809e6
Sha256: 007130549931292a057724aae43363bf11e9f18b805a3e5571ac5ebe603d7069
                                        
                                            GET /wp-content/uploads/2017/08/20624123_1574002069306324_387569188_n-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 5962
Last-Modified: Tue, 01 Aug 2017 22:24:43 GMT
Connection: keep-alive
Etag: "5980ffab-174a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5962
Md5:    5fce2348ce3d6b30dc4ce76665c75c8c
Sha1:   44cd5abc28a4518ad19f8cfd67a9a10efa42482d
Sha256: 87c21e5bd283f142732c9f2d1d6b0c08673a1d53d093c7ed0a9df2a14e470ac8
                                        
                                            GET /wp-content/uploads/2017/10/derekapigures-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 19167
Last-Modified: Tue, 10 Oct 2017 14:25:51 GMT
Connection: keep-alive
Etag: "59dcd86f-4adf"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   19167
Md5:    d35e4b21f0e973622131783a26b6ae53
Sha1:   a2fc6e5afd145f19805f9a8c9f21c6a4bf5dda18
Sha256: 1cdb1eac98b71d7b85cf42fceb422610985f15cb3ec86ec8fab9c2ec36561f24
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193074_01-324x160.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 22167
Last-Modified: Tue, 10 Oct 2017 07:37:58 GMT
Connection: keep-alive
Etag: "59dc78d6-5697"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   22167
Md5:    b954f7e9974d4090cc1735525d5e8fee
Sha1:   cd895761ebfd44647528acef4a08777e869897ce
Sha256: 008dde45111747a2d0a04f9ed57acc4734943f2817800f0374d8b440b18d6283
                                        
                                            GET /wp-content/uploads/2017/07/91-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 1853
Last-Modified: Thu, 20 Jul 2017 09:36:43 GMT
Connection: keep-alive
Etag: "597079ab-73d"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1853
Md5:    657b045a2f0fd2e0cf6c04a7a2bf2459
Sha1:   856bb5599d300a0ba8229819f691617fef11ed6e
Sha256: 706f2d7169f0ca3ad4fb4f800c4974528d24e6392edf6d707fef9e72aa3fd60f
                                        
                                            GET /wp-content/uploads/2017/09/634c70c6-34f2-48e5-8a0a-96ee8c13e1a2-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 2554
Last-Modified: Wed, 13 Sep 2017 08:59:34 GMT
Connection: keep-alive
Etag: "59b8f376-9fa"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   2554
Md5:    077ee670d6c94d5fda052441bc96e398
Sha1:   c9ab53beb75c0b77fec5512a85223afa09f65bf7
Sha256: 41dbb02686b2c5e66d8975a9d4b5e532760d86cbe6cb9b637f6cc9bf65886eb3
                                        
                                            GET /wp-content/uploads/2017/10/daf9fee7-0d42-4a8b-94eb-13241a5f6bd4-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 11082
Last-Modified: Wed, 11 Oct 2017 13:18:36 GMT
Connection: keep-alive
Etag: "59de1a2c-2b4a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11082
Md5:    d0efb3e71e3a29698ec9007e6403a90d
Sha1:   056999d6ee54911a540795b70188058374b89a95
Sha256: b7b9bd7a3ddef6950408f8673a8f543c629f7755e82081cba74435d43b52b227
                                        
                                            GET /wp-content/uploads/2017/10/9a38199f-c364-4947-b2a0-887ef7d7b793-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 10210
Last-Modified: Wed, 11 Oct 2017 13:12:58 GMT
Connection: keep-alive
Etag: "59de18da-27e2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   10210
Md5:    1e7e93af7893ac63de5daa6679f08145
Sha1:   b75a9b7fbd62afe9308952f55f9e74051ab0716d
Sha256: f87af9784c54faeefc3840091c9514b823bfe0812b17d5dc956401c0a0b3ce41
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193619_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 16682
Last-Modified: Tue, 10 Oct 2017 13:35:34 GMT
Connection: keep-alive
Etag: "59dccca6-412a"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16682
Md5:    dd85407ef22c7b1a9de80cb80b3ec49c
Sha1:   0f7d0363952ebf2413928e6c445e6136ae601560
Sha256: 84d22b6a1520e181361368876a45bbaa018b09218f55f5dd663f612b2bcdbdb0
                                        
                                            GET /wp-content/uploads/2017/10/derekapigures-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 28254
Last-Modified: Tue, 10 Oct 2017 14:25:51 GMT
Connection: keep-alive
Etag: "59dcd86f-6e5e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   28254
Md5:    f1fa01b574811f24a7df4a4a97fc3337
Sha1:   2e5f4a91bf2ac5fd56fcadb143c524776a6b3317
Sha256: d2b9984e93b881c2f830954253d48c5411f0f172341619b4e4694227a446d870
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193264_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 15075
Last-Modified: Tue, 10 Oct 2017 08:22:30 GMT
Connection: keep-alive
Etag: "59dc8346-3ae3"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   15075
Md5:    2e3f0bccd196ffc97fb4eab496ee0e3c
Sha1:   8de9a19804c923b6b59a8e070fceddc24e182042
Sha256: 8fdaefcac2427f5f4b3281c684fc6495e882d6cdea02efa8f2f15944ee337cdd
                                        
                                            GET /wp-content/uploads/2017/10/15621966_1332213756818491_1999941309799886160_n-1-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 5671
Last-Modified: Tue, 10 Oct 2017 12:27:00 GMT
Connection: keep-alive
Etag: "59dcbc94-1627"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   5671
Md5:    5bcd8a92c9c4b1e9372082cc72845d10
Sha1:   f41375d0c09ad29eff8d60eb3bf001bac8be06aa
Sha256: 8b75acfc067540bf55f1d7cfe1eb7876e8fe16a393fb2257812802efb5858b7a
                                        
                                            GET /wp-content/uploads/2017/10/9a38199f-c364-4947-b2a0-887ef7d7b793-100x70.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 3083
Last-Modified: Wed, 11 Oct 2017 13:12:58 GMT
Connection: keep-alive
Etag: "59de18da-c0b"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   3083
Md5:    51b4a5224b8c02bd1528877a66144916
Sha1:   142418a81735ae9736b420c096b38dcb3e4cf343
Sha256: a33b2401452ab3a29cfa3302f56f19ca0be7adfbe6da2880e72bbebffac90f62
                                        
                                            GET /wp-content/uploads/2017/10/22407487_1637581099615087_541388765_n-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 13035
Last-Modified: Tue, 10 Oct 2017 08:18:04 GMT
Connection: keep-alive
Etag: "59dc823c-32eb"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   13035
Md5:    a5571fcb25e5052f5d1f8f54371f7e04
Sha1:   d9ae10e89075e9606e2da6ad6dbf5180f249329f
Sha256: c1a67f78dff9e0c24c47d5a5e4a75abda68bc676a201088ca2c06cf9ba5bbca9
                                        
                                            GET /wp-content/uploads/2017/10/indir-218x105.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 6852
Last-Modified: Tue, 10 Oct 2017 07:16:23 GMT
Connection: keep-alive
Etag: "59dc73c7-1ac4"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   6852
Md5:    cf5f7f7b0eb00299f1b7fbee54a97e21
Sha1:   bd533952b5fab002c35703e1f744b5dda7857010
Sha256: 665f36b93f2ee728d0ff500dddf632484a17b1f40fdc4c85bc46ebba03d0fa68
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193297_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 12927
Last-Modified: Tue, 10 Oct 2017 10:31:29 GMT
Connection: keep-alive
Etag: "59dca181-327f"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12927
Md5:    06489dfa728f35f4d2db3a5d4de7c73b
Sha1:   022ba60692148e931511131951d1d19c1061c79a
Sha256: 96174f63b91a2817dc5da73889b13c518fbf3a867747de8ebd953ef79e90c24b
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193097_02-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 12248
Last-Modified: Tue, 10 Oct 2017 07:08:30 GMT
Connection: keep-alive
Etag: "59dc71ee-2fd8"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   12248
Md5:    83e3f4bec0564e3ac5e1f7c28e3ec259
Sha1:   84901d8ac8c66547db4a6ce99e6458fdc935a91f
Sha256: 9b7c369563e536b0144460a8c2c3eec27473d95f0edf29fc610248a71af1881f
                                        
                                            GET /wp-content/uploads/2017/10/20171010AW193074_01-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 21110
Last-Modified: Tue, 10 Oct 2017 07:37:58 GMT
Connection: keep-alive
Etag: "59dc78d6-5276"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   21110
Md5:    9dc4a029cffa4cd1aa1b0e5d8963aaf1
Sha1:   8ee46b6627b4c78288e92a77cabb1b52d9e4750d
Sha256: 3e8708896dbbf33f7d6292d528eb7956eb3161fc91cc221be1c6b5b7728e9cbc
                                        
                                            GET /wp-content/uploads/2017/10/22446946_1637557032950827_2108192324_n-218x150.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 11584
Last-Modified: Tue, 10 Oct 2017 07:25:23 GMT
Connection: keep-alive
Etag: "59dc75e3-2d40"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   11584
Md5:    00cd13df0529289993bb361bfd8ad605
Sha1:   bd4ddda0ef4d283106451fc72b8a66e7008e6c39
Sha256: 1421bb4b705d1e2cac10f72f70faa1f61680e5545f24c15eac1a267f47eeb185
                                        
                                            GET /wp-content/themes/guven/images/sprite/elements.png HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/wp-content/themes/guven/style.css?ver=8.0
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 4324
Last-Modified: Wed, 24 May 2017 11:08:08 GMT
Connection: keep-alive
Etag: "59256998-10e4"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 90 x 2100, 8-bit colormap, non-interlaced
Size:   4324
Md5:    e3b4773ac34c9cbc1cdafccb22fd6a88
Sha1:   609371398297b8a94c2e16c6b9d3cc64e6d1d0e3
Sha256: f6287abfc98a913c318b4348a67f84a2d5432ee57f2ece29904a76fb4eff1167
                                        
                                            GET /wp-content/uploads/2017/06/p4.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:55 GMT
Content-Length: 63062
Last-Modified: Mon, 19 Jun 2017 11:26:27 GMT
Connection: keep-alive
Etag: "5947b4e3-f656"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   63062
Md5:    bd049ba4b83ad70342840d9e5352e341
Sha1:   0d3ddaab4b389bd004a045a90d3f0734e4eac297
Sha256: 071f5056b40783103bac18a75f341478f58ecc9e565595af3e7d51312f8485fb
                                        
                                            GET /embed/css/index.css?v=6.3 HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cdn.bannersnack.com/banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true

                                         
                                         54.230.128.86
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 819
Connection: keep-alive
Date: Mon, 14 Aug 2017 01:59:52 GMT
Last-Modified: Thu, 27 Jul 2017 06:33:35 GMT
Etag: "fa40bdcdb2d7382fb018921b2ed21dbc"
Content-Encoding: gzip
x-amz-meta-cb-modifiedtime: Thu, 27 Jul 2017 06:32:07 GMT
x-amz-version-id: bKXJKcjLvs3VoOdevj0G4l_Hts_IyZ3g
Accept-Ranges: bytes
Server: AmazonS3
Age: 70854
X-Cache: Hit from cloudfront
Via: 1.1 4973b351452bebd97817a8a5711b6576.cloudfront.net (CloudFront)
X-Amz-Cf-Id: wZffXsbkTk3GPFzBZ7YZv3yLv5L4q4b1EIg-o8cv5xRXpta46JQ3pw==


--- Additional Info ---
Magic:  gzip compressed data
Size:   819
Md5:    fa40bdcdb2d7382fb018921b2ed21dbc
Sha1:   502f3147f768f801da528fc771d0e6b654da519f
Sha256: 57f0f13f2d1de94d9550f8619c3998590e76704a7901a2177c8be6b3f76c2569
                                        
                                            GET /embed/js/EmbedCanvas.js?v=6.3 HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cdn.bannersnack.com/banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true

                                         
                                         54.230.128.86
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Content-Length: 28219
Connection: keep-alive
Date: Wed, 06 Sep 2017 12:48:14 GMT
Last-Modified: Wed, 06 Sep 2017 12:47:51 GMT
Etag: "798041d20d93bf631289e0e56c277d3c"
Content-Encoding: gzip
x-amz-meta-cb-modifiedtime: Wed, 06 Sep 2017 12:45:49 GMT
x-amz-version-id: ImyQQQbabLJdrkLUhZ8BAR2PrwvDABMZ
Accept-Ranges: bytes
Server: AmazonS3
Age: 42844
X-Cache: Hit from cloudfront
Via: 1.1 6ff79e2331ef6a1ff8089b821bbb1a1f.cloudfront.net (CloudFront)
X-Amz-Cf-Id: T5R5Kdk-26M0YNZE_PwcaP_yI0T192YWWnkK7EVW5DwANsx8wj4UFA==


--- Additional Info ---
Magic:  gzip compressed data
Size:   28219
Md5:    798041d20d93bf631289e0e56c277d3c
Sha1:   c5191b212244d9b7d52448e6fa74bdb8017702e8
Sha256: 8fdce86634a2f302aadc2c0486f2fec986e61ff19b73950687bf112fa0e804df
                                        
                                            GET /banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
If-Modified-Since: Tue, 22 Aug 2017 13:09:43 GMT
If-None-Match: "a879e045f4275bfac7691752623d13f1"

                                         
                                         54.230.128.86
HTTP/1.1 304 Not Modified
                                        
Connection: keep-alive
Date: Fri, 13 Oct 2017 00:42:55 GMT
Last-Modified: Tue, 22 Aug 2017 13:09:43 GMT
Etag: "a879e045f4275bfac7691752623d13f1"
x-amz-version-id: xR0jDAF.jJwcf_1W8g4jcsSQmz4R3NZU
Server: AmazonS3
X-Cache: RefreshHit from cloudfront
Via: 1.1 4973b351452bebd97817a8a5711b6576.cloudfront.net (CloudFront)
X-Amz-Cf-Id: geqNyZXTweqiJGpirkPDQYr--PP44toJwllvTpUtUm2wvxr-AK2PYw==


--- Additional Info ---
                                        
                                            GET /wp-content/themes/guven/js/tagdiv_theme.js?ver=8.0 HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:52 GMT
Content-Length: 521201
Last-Modified: Wed, 24 May 2017 11:08:18 GMT
Connection: keep-alive
Etag: "592569a2-7f3f1"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode C++ program text, with very long lines, with CRLF line terminators
Size:   521201
Md5:    27317065eb9e93bbc9fa0b49df4da594
Sha1:   01d2177d6b7ade78427b510b54d72a992a12de60
Sha256: 77af58aa4ad7ad7498cb7eacff48d9cf5f72559da46506b598689869390cd18e
                                        
                                            GET /embed/css/index.css?v=6.3 HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cdn.bannersnack.com/banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true
If-Modified-Since: Thu, 27 Jul 2017 06:33:35 GMT
If-None-Match: "fa40bdcdb2d7382fb018921b2ed21dbc"

                                         
                                         54.230.128.86
HTTP/1.1 304 Not Modified
                                        
Connection: keep-alive
Date: Fri, 13 Oct 2017 00:42:55 GMT
Etag: "fa40bdcdb2d7382fb018921b2ed21dbc"
x-amz-meta-cb-modifiedtime: Thu, 27 Jul 2017 06:32:07 GMT
x-amz-version-id: bKXJKcjLvs3VoOdevj0G4l_Hts_IyZ3g
Server: AmazonS3
Age: 70856
X-Cache: Hit from cloudfront
Via: 1.1 6ff79e2331ef6a1ff8089b821bbb1a1f.cloudfront.net (CloudFront)
X-Amz-Cf-Id: scgfvYZLadRByAzuCnVoxZ3eyXd85lmtSL_6oHEnmTnc8Fi5iUwGHg==


--- Additional Info ---
                                        
                                            GET /embed/js/EmbedCanvas.js?v=6.3 HTTP/1.1 
Host: cdn.bannersnack.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://cdn.bannersnack.com/banners/bc3ao80ft/embed/index.html?t=1503407383&userId=27843636&responsive=true
If-Modified-Since: Wed, 06 Sep 2017 12:47:51 GMT
If-None-Match: "798041d20d93bf631289e0e56c277d3c"

                                         
                                         54.230.128.86
HTTP/1.1 304 Not Modified
                                        
Connection: keep-alive
Date: Fri, 13 Oct 2017 00:42:55 GMT
Etag: "798041d20d93bf631289e0e56c277d3c"
x-amz-meta-cb-modifiedtime: Wed, 06 Sep 2017 12:45:49 GMT
x-amz-version-id: ImyQQQbabLJdrkLUhZ8BAR2PrwvDABMZ
Server: AmazonS3
Age: 42846
X-Cache: Hit from cloudfront
Via: 1.1 4973b351452bebd97817a8a5711b6576.cloudfront.net (CloudFront)
X-Amz-Cf-Id: TQbvLFNEBUXkSeXQFIH48PIDQC80vYzagdu23g_x8-yItoUfRJ2-gA==


--- Additional Info ---
                                        
                                            GET /pagead/js/r20171011/r20170110/show_ads_impl.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Fri, 13 Oct 2017 00:42:56 GMT
Expires: Fri, 13 Oct 2017 00:42:56 GMT
Cache-Control: private, max-age=1209600
Etag: 9188984013347754388
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 66902
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   66902
Md5:    76d5974d83c4e2fc25f5b1bb7eb760ff
Sha1:   809833caef240be74004b17ab8b13a3592aa3a56
Sha256: feeb81e348898222260953b6896052a3a15b1dc25ab943e9c47530b9a7ebc468
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 13 Oct 2017 00:42:56 GMT
Expires: Tue, 17 Oct 2017 00:42:56 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    3d8a495b74c7e4f064054e25fa981bbb
Sha1:   967568074161c120ae20fce669433f561c4360b5
Sha256: 3bb1a9acb7ad7cb6fbf7e13e4673125c602994c91ae6c7dfb3a0fcf302266daa
                                        
                                            GET /pub-config/r20160913/ca-pub-4519589718863245.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 13 Oct 2017 00:41:44 GMT
Expires: Fri, 13 Oct 2017 12:41:44 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
Content-Length: 88
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=43200
Age: 73
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   88
Md5:    447300cfe76a026545c27482e7ada077
Sha1:   995fa7efb4f9b8be29ea4c3c69a361e0a1f27ba1
Sha256: 994d8a1f3b94c1b503343b827ffd37a0a2a50015d48a054812591825cc305a40
                                        
                                            GET /pagead/html/r20171011/r20170110/zrt_lookup.html HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Date: Wed, 11 Oct 2017 20:59:34 GMT
Expires: Wed, 25 Oct 2017 20:59:34 GMT
Etag: 4405804728715842184
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: cafe
Content-Length: 6876
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 99803
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   6876
Md5:    be7c2f915fac8b85beacc3dc31b5edf9
Sha1:   d55bd2323fc911dab3a13f3b4eb29cf0340c763c
Sha256: c4288729e52b6c7f622d484d68f8bcbe3961b637450cfd2fb7e6cf166c5b526a
                                        
                                            GET /pagead/js/r20171011/r20170110/osd.js HTTP/1.1 
Host: pagead2.googlesyndication.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
P3P: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Date: Wed, 11 Oct 2017 20:59:34 GMT
Expires: Wed, 25 Oct 2017 20:59:34 GMT
Etag: 10282765528497536317
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 29984
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=1209600
Age: 99803
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   29984
Md5:    0b811cda7ba7007d161c0c3ae48bb01e
Sha1:   2f66db67bb9be244cdebd02e5f7ec371baf64d40
Sha256: 3cffc0e04894be43bc3ff872d93d025af9efeede4a7e700d2d7946f3d1ec1226
                                        
                                            GET /getconfig/ama?client=ca-pub-4519589718863245&plah=guvenhaber.com.tr&url=http%3A%2F%2Fguvenhaber.com.tr%2F HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Origin: http://guvenhaber.com.tr

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Date: Fri, 13 Oct 2017 00:42:57 GMT
Server: cafe
Content-Length: 0
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 13-Oct-2017 00:57:57 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"
Expires: Fri, 13 Oct 2017 00:42:57 GMT
Cache-Control: private


--- Additional Info ---
                                        
                                            GET /pagead/ads?client=ca-pub-4519589718863245&output=html&h=0&adk=1223701170&adf=807048394&w=0&lmt=1507855365&loeid=38893312&plat=1%3A1085448%2C2%3A1085448%2C8%3A32776%2C9%3A32776%2C16%3A8388608%2C25%3A32768%2C26%3A32768&rafmt=12&format=0x0&url=http%3A%2F%2Fguvenhaber.com.tr%2F&ea=0&flash=10.0.45&pra=5&wgl=0&dt=1507855367602&bpp=8616&fdt=8620&idt=8886&shv=r20171011&cbv=r20170110&saldr=aa&correlator=3478543676692&frm=20&ga_vid=254548197.1507855377&ga_sid=1507855377&ga_hid=497833541&ga_fc=0&pv=2&icsg=0&nhd=1&dssz=0&mdo=0&mso=0&u_tz=120&u_his=1&u_java=1&u_h=885&u_w=1176&u_ah=855&u_aw=1176&u_cd=24&u_nplug=10&u_nmime=92&adx=0&ady=0&biw=1159&bih=754&abxe=1&eid=38893302%2C21061122%2C389613001&oid=3&nmo=1&zm=1.02&rx=0&eae=4&fc=784&brdim=%2C%2C-4%2C-4%2C1176%2C0%2C1184%2C863%2C1176%2C754&vis=0&rsz=%7C%7Cr%7C&abl=CS&ppjl=u&fu=272&bc=1&ifi=0&dtd=9698 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/

                                         
                                         172.217.22.162
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Fri, 13 Oct 2017 00:42:57 GMT
Server: cafe
Cache-Control: private
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 13-Oct-2017 00:57:57 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,35",quic=":443"; ma=2592000; v="39,38,37,35"
Expires: Fri, 13 Oct 2017 00:42:57 GMT
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   82
Md5:    87b49554493c15fb23b8e5d2f13b1ebf
Sha1:   328cbcb1c58530fd3f554ca7386ef7a85e1e982f
Sha256: 590b4bba70579d67368d97259fc85f56fda4fa5cb82f404fa8ec67a43369db17
                                        
                                            GET /wp-content/uploads/2017/06/guvenlogo-300x98.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:51 GMT
Content-Length: 1867298
Last-Modified: Wed, 21 Jun 2017 17:28:10 GMT
Connection: keep-alive
Etag: "594aacaa-1c7e22"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1867298
Md5:    4ea624a228290ccd395df66f4dfa5925
Sha1:   a0363d964cd0ab153379b783af777b9ae1528ae6
Sha256: b2e2772fd8df536bae607896f5457054607a59718c943b8eb762825128a5354b
                                        
                                            GET /wp-content/uploads/2017/07/guvenwts.jpg HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://guvenhaber.com.tr/
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:40:54 GMT
Content-Length: 1884141
Last-Modified: Sun, 02 Jul 2017 17:56:26 GMT
Connection: keep-alive
Etag: "595933ca-1cbfed"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1884141
Md5:    b832f2353d01f72f853ec4ce7a30c4d8
Sha1:   f6d999f9a1ef11201fa10ba2da7f3d4b64f21245
Sha256: 398a62a0873631c7cc8c103c5fa54540b13a828cca17bb47728e67fd819f83ef
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: guvenhaber.com.tr
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: wfvt_3956665264=59e00b927dc48

                                         
                                         185.162.145.92
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Fri, 13 Oct 2017 00:41:12 GMT
Content-Length: 113459
Last-Modified: Mon, 19 Jun 2017 11:13:16 GMT
Connection: keep-alive
Etag: "5947b1cc-1bb33"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 7 icons, 256-colors
Size:   113459
Md5:    1db747255c64a30f9236e9d929e986ca
Sha1:   384023452346aa087d40c93c23ca2f5e32ff1b1f
Sha256: 88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544