Overview

URL gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor
IP46.105.36.47
ASNAS16276 OVH SAS
Location France
Report completed2018-12-16 23:36:31 CET
StatusLoading report..
urlquery Alerts Crypto currency mining script


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-12-16 2 gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor Malware
2018-12-16 2 www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-bir (...) Malware
2018-12-16 2 www.gececi.org/wp-content/themes/porno/js/jquery.plugins.min.js?ver=1.4.6 Malware
2018-12-16 2 www.gececi.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 Malware
2018-12-16 2 www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3 Malware
2018-12-16 2 www.gececi.org/wp-includes/js/jquery/jquery.js?ver=1.12.4 Malware
2018-12-16 2 www.gececi.org/wp-content/themes/porno/js/modernizr.min.js?ver=2.6.2 Malware
2018-12-16 2 coinhive.com/lib/coinhive.min.js Malware
2018-12-16 2 www.gececi.org/wp-content/uploads/2017/05 Malware
2018-12-16 2 www.gececi.org/wp-includes/js/imagesloaded.min.js?ver=3.2.0 Malware
2018-12-16 2 www.gececi.org/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b Malware
2018-12-16 2 www.gececi.org/wp-includes/js/wp-embed.min.js?ver=4.9.9 Malware
2018-12-16 2 www.gececi.org/wp-content/plugins/akismet/_inc/form.js?ver=4.0.8 Malware
2018-12-16 2 www.gececi.org/player/xhamster2/4412864.html Malware
2018-12-16 2 www.gececi.org/wp-content/uploads/2017/05 Malware
2018-12-16 2 www.gececi.org/beyaz-tenli-kizin-tatli-amcigindan-deli-gibi-hd-sikis-izle/ Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 46.105.36.47

Date UQ / IDS / BL URL IP
2019-01-14 18:29:58 +0100
0 - 0 - 11 bet-on.club/ 46.105.36.47
2019-01-11 23:20:02 +0100
2 - 0 - 11 www.gececi.org/tag/sex-sikis-hikayeleri/ 46.105.36.47
2018-12-30 10:29:26 +0100
2 - 0 - 13 gececi.org/yilbasinda-rezalet 46.105.36.47
2018-12-30 02:45:16 +0100
2 - 0 - 14 www.gececi.org/kalin-yarragi-esmer-kizin-dar- (...) 46.105.36.47
2018-12-29 22:45:50 +0100
2 - 1 - 12 www.gececi.org/konya/ 46.105.36.47
2018-12-29 14:37:32 +0100
2 - 1 - 14 www.gececi.org/kalin-yarragi-esmer-kizin-dar- (...) 46.105.36.47
2018-12-29 09:22:31 +0100
2 - 1 - 11 www.gececi.org/temizlikci/ 46.105.36.47
2018-12-29 07:19:01 +0100
2 - 0 - 10 www.gececi.org/tag/yilbasinda-rezalet-sex-hik (...) 46.105.36.47
2018-12-23 14:06:06 +0100
2 - 1 - 12 www.gececi.org/18lik-kardesim-ve-ben/ 46.105.36.47
2018-12-21 19:26:01 +0100
2 - 1 - 14 www.gececi.org/kocaman-yarraga-sakso-cekmek-i (...) 46.105.36.47

Last 10 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2019-01-16 08:00:34 +0100
0 - 0 - 1 viennecoiffure.net/index.php/cuts/short 213.186.33.17
2019-01-16 07:47:29 +0100
0 - 0 - 3 claric.com.co/ 192.99.5.18
2019-01-16 07:38:49 +0100
0 - 0 - 2 www.pornwoody.com/video/7438/hentai-seule-abu (...) 176.31.106.161
2019-01-16 07:19:11 +0100
0 - 0 - 2 telecharger-gratuit.com/logiciels/antispam.exe 37.59.33.195
2019-01-16 07:15:45 +0100
0 - 0 - 1 https://secursprx.com/downloads/spyrixemployee.exe 158.69.229.62
2019-01-16 07:09:24 +0100
0 - 0 - 1 launcher.orangecraft.ru/scripts/launcher/Laun (...) 149.202.87.182
2019-01-16 06:56:05 +0100
0 - 0 - 1 annur.biz/today/hasten.exe 94.23.58.182
2019-01-16 06:55:58 +0100
0 - 0 - 2 telecharger-gratuit.com/logiciels/declineur.exe 37.59.33.195
2019-01-16 06:55:51 +0100
0 - 0 - 6 mcvillars.com/applicationfile/efile.exe 213.186.33.18
2019-01-16 06:54:15 +0100
0 - 0 - 0 aktywne-kupony.pl 46.105.57.169

Last 10 reports on domain: gececi.org

Date UQ / IDS / BL URL IP
2019-01-11 23:20:02 +0100
2 - 0 - 11 www.gececi.org/tag/sex-sikis-hikayeleri/ 46.105.36.47
2018-12-30 10:29:26 +0100
2 - 0 - 13 gececi.org/yilbasinda-rezalet 46.105.36.47
2018-12-30 02:45:16 +0100
2 - 0 - 14 www.gececi.org/kalin-yarragi-esmer-kizin-dar- (...) 46.105.36.47
2018-12-29 22:45:50 +0100
2 - 1 - 12 www.gececi.org/konya/ 46.105.36.47
2018-12-29 14:37:32 +0100
2 - 1 - 14 www.gececi.org/kalin-yarragi-esmer-kizin-dar- (...) 46.105.36.47
2018-12-29 09:22:31 +0100
2 - 1 - 11 www.gececi.org/temizlikci/ 46.105.36.47
2018-12-29 07:19:01 +0100
2 - 0 - 10 www.gececi.org/tag/yilbasinda-rezalet-sex-hik (...) 46.105.36.47
2018-12-23 14:06:06 +0100
2 - 1 - 12 www.gececi.org/18lik-kardesim-ve-ben/ 46.105.36.47
2018-12-21 19:26:01 +0100
2 - 1 - 14 www.gececi.org/kocaman-yarraga-sakso-cekmek-i (...) 46.105.36.47
2018-12-21 16:43:19 +0100
2 - 1 - 15 gececi.org/rus-kizin-pantalonunu-cikarmadan-g (...) 46.105.36.47


JavaScript

Executed Scripts (25)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (53)


Request Response
                                        
                                            GET /kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor HTTP/1.1 
Host: gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.105.36.47
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 16 Dec 2018 22:36:26 GMT
Connection: close
X-Powered-By: PHP/5.6.33
X-Pingback: http://www.gececi.org/xmlrpc.php
Location: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/
Content-Length: 20
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   20
Md5:    a4745abc5e7fdb89cc6df3069f3c6e69
Sha1:   74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/ HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
Date: Sun, 16 Dec 2018 22:36:26 GMT
Connection: close
X-Powered-By: PHP/5.6.33
X-Pingback: http://www.gececi.org/xmlrpc.php
Link: <http://www.gececi.org/wp-json/>; rel="https://api.w.org/", <http://www.gececi.org/?p=280>; rel=shortlink
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   11347
Md5:    03f481724e5d12532a26b61b767553c5
Sha1:   22ebf48712ceb72e5f9f96ee6c892b5dc5c18052
Sha256: dc2f7a509f7fcd825f648674c0f7255671bac2abbe445eb22694711435eb6728

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 12 Dec 2018 13:21:30 GMT
Etag: C6B64C56F618599F3D712EE59FAB037859F776C4
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=225298
Expires: Wed, 19 Dec 2018 13:10:55 GMT
Date: Sun, 16 Dec 2018 22:35:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    0ac182e9f196f7508899ec62ecee52d0
Sha1:   c6b64c56f618599f3d712ee59fab037859f776c4
Sha256: 46de7d7883760c7ae7e37ba9f30ffef99b1b72172dd35dc2f6cc13c9b45626c2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 11 Dec 2018 14:14:26 GMT
Etag: A9FDB55703B7012768C8781B0C4BF5C81AD36AA4
X-OCSP-Responder-ID: (null)
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=142118
Expires: Tue, 18 Dec 2018 14:04:35 GMT
Date: Sun, 16 Dec 2018 22:35:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    2dc644411e9b04988e6d3ee24732d667
Sha1:   a9fdb55703b7012768c8781b0c4bf5c81ad36aa4
Sha256: 597f8acf1da9ea3bddbff8479f504028762348e1f3db0963aef29527adc2f7b0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Tue, 11 Dec 2018 14:14:26 GMT
Etag: 888D5FC4B0835169497CCCBE3030E1E8D59FED77
X-OCSP-Responder-ID: (null)
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=142120
Expires: Tue, 18 Dec 2018 14:04:37 GMT
Date: Sun, 16 Dec 2018 22:35:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d55c7b89fc25a262f8272f9c2e169ba9
Sha1:   888d5fc4b0835169497cccbe3030e1e8d59fed77
Sha256: 7dab7f594b34e7483f7d4d6d8076140fda6696cb3c11b2cc432c23a6a4e4e75f
                                        
                                            GET /css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.9 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Sun, 16 Dec 2018 22:35:57 GMT
Date: Sun, 16 Dec 2018 22:35:57 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   385
Md5:    3c9b33500148cc0e98b9f69541d500bd
Sha1:   5be80b3dbcf7c606e91edb830b6b0185cc22a3c5
Sha256: e7c0fc741f480742ccd47a56bb7288d847acc0de5c3f535be2d3353cf771b2e2
                                        
                                            GET /wp-content/themes/porno/js/jquery.plugins.min.js?ver=1.4.6 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:26 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "27fd-58ecc43a-0"
Last-Modified: Tue, 11 Apr 2017 11:55:38 GMT
Content-Length: 4057
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   4057
Md5:    2aefb6c07798dd073973ebdd0151abc2
Sha1:   2cf48d0d45a3285945711e211c4cb5de1c47bc84
Sha256: e434190ef9aa89c614f28eb5c2137b5ecd8480b63a4158882303c951107438e7

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/responsive.css?ver=1.4.3 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 22:36:26 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "1cdc-58ecc42f-0"
Last-Modified: Tue, 11 Apr 2017 11:55:27 GMT
Content-Length: 2134
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   2134
Md5:    57b73b101ba5bd1330f48aed6a860522
Sha1:   c475cdf25cb8ede0e3500045031a298bbb95ca98
Sha256: 13386cc3993dcee4537e0904f839a947da3cf4efecd19c67a3c6dbcf63407c73
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:26 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "2748-573e8060-0"
Last-Modified: Fri, 20 May 2016 03:11:28 GMT
Content-Length: 4303
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   4303
Md5:    0df88ae07a2ac7a10e32c822b372b77b
Sha1:   c7f8b59c6cb732b80411bc2183fbdb24712e9a96
Sha256: 51b4557fe0f0a5431753c398cd9e04b5b6389151816e4dc80b66ef0fa8c958de

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/style.css?ver=1.4.3 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sun, 16 Dec 2018 22:36:26 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "11ed4-58ecc430-0"
Last-Modified: Tue, 11 Apr 2017 11:55:28 GMT
Content-Length: 17810
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   17810
Md5:    af65e0d81e0a5c724eb3f4712290d526
Sha1:   c59585500c54cbe8a1db62c37badc38d7818548d
Sha256: ed48938ffc433cac2183f0285d23211821c6ff1cc4a6afa16247868b092bd88f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:26 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "17ba0-57429c7e-0"
Last-Modified: Mon, 23 May 2016 06:00:30 GMT
Content-Length: 39407
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   39407
Md5:    11ce2598dd8bfd0c4a5698bcf4eb2671
Sha1:   3acdcbf4d26d0eb4d58f731be2f2fbd87f1c3c4e
Sha256: 9382bc810545a9b59877f5000477402706605e2da44c3e62f5a7382b6841295b

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/js/modernizr.min.js?ver=2.6.2 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:26 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "37bf-58ecc43b-0"
Last-Modified: Tue, 11 Apr 2017 11:55:39 GMT
Content-Length: 6284
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   6284
Md5:    9d48ea36d04fe4adc043d5d0b6c954cf
Sha1:   8e5545d8653fdceaefff594a4d9ee6b5d23e7380
Sha256: de93c3f253d41a233027747eb1c16887f699e612aa0d0afab7c4c74d0a4ff781

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /lib/coinhive.min.js HTTP/1.1 
Host: coinhive.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         104.20.208.59
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Sun, 16 Dec 2018 22:35:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d50eddb4e7ccc7d401edb78232eb19c9c1544999757; expires=Mon, 16-Dec-19 22:35:57 GMT; path=/; domain=.coinhive.com; HttpOnly
Last-Modified: Mon, 15 Oct 2018 11:58:03 GMT
Etag: W/"5bc480cb-423b4"
Expires: Mon, 17 Dec 2018 06:35:57 GMT
Cache-Control: public, max-age=28800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 48a4a042c9c93d43-CPH


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   70162
Md5:    b6bb44f95a22a27e8b92d2ccbc591524
Sha1:   b5f4bf87301fb5291d70f392758d9c56ae374cc3
Sha256: e32b7829c99619bfa2c1de9e1ed9e9e515863b2d094e86c629c67c7350e8c96d

Alerts:
  urlquery:
    - Crypto currency mining script
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2017/05 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
Date: Sun, 16 Dec 2018 22:36:27 GMT
Connection: close
X-Powered-By: PHP/5.6.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.gececi.org/wp-json/>; rel="https://api.w.org/"
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   8141
Md5:    5baa714fec81e2ae3008d30dfff349d7
Sha1:   897b9c49f4ecf67bed5775dacd7334cc542c532a
Sha256: 3b8bbfed5f658308a3b1f18d16cebd90e6712209d9344a49096a5811298ef5e0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "1f3a-581ab1b2-0"
Last-Modified: Thu, 03 Nov 2016 03:40:34 GMT
Content-Length: 2777
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   2777
Md5:    d1575e05b1444e3a1a7b071d23c96b6b
Sha1:   9363f13ef2cf40adad9cc668996e3813a1e0286a
Sha256: 6c8167ccee77ee3d9405dc78d4c4ee54405b484fb6e67d7059d0900888fe4ec4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "71b-57b5da72-0"
Last-Modified: Thu, 18 Aug 2016 15:55:30 GMT
Content-Length: 747
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   747
Md5:    dac7443f4f37f1a3ed18332914e64680
Sha1:   f85aec7a247fb85e8cd955de46bcbc7da156d8b7
Sha256: 561f27abf1af74579ea9d0e7635c63691a12cdd87c8583f6d06d4ea1cf11252f

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/js/jquery.fitvids.js?ver=1.0 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "ee8-58ecc43a-0"
Last-Modified: Tue, 11 Apr 2017 11:55:38 GMT
Content-Length: 1465
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   1465
Md5:    9e1c6b9cef4c31e92fcd8147087c9fd6
Sha1:   e5cf003d6f5df7a0e9ba856d880116909d59af6b
Sha256: 03df6f676a665bda7075d6b216f90e9f334e476aa5bec248092da8d2ddd7c52f
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.9 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "2efa-5b8a317e-0"
Last-Modified: Sat, 01 Sep 2018 06:28:14 GMT
Content-Length: 4903
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   4903
Md5:    997a5c030cfd5cce67723bca9a5d72d6
Sha1:   de937beb430f0124460e50af7d1b032ce2bcc84d
Sha256: f8098c08506e8c9246030e13b54692c8bcac486c2fd122fb042b8169b4e0b5cd
                                        
                                            GET /wp-includes/js/comment-reply.min.js?ver=4.9.9 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "436-564cb230-0"
Last-Modified: Wed, 18 Nov 2015 17:15:28 GMT
Content-Length: 597
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   597
Md5:    799f26cd199303d527df0b40e63ff3a3
Sha1:   17fe954944cf07107899b2e20b2c7ab303b7dae1
Sha256: 93e62551de8aef9f1111a4ae6ef5c1be0750c646fc703f3f394c7af361516094
                                        
                                            GET /wp-includes/js/masonry.min.js?ver=3.3.2 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "711a-57729c50-0"
Last-Modified: Tue, 28 Jun 2016 15:48:32 GMT
Content-Length: 9984
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   9984
Md5:    90be357fb2b60df0541019589cc57a58
Sha1:   c24ef3dbfb23db2795fffbb464cf338da867acd9
Sha256: 412939e4b8a240a47909bffd69b26143544a53bf6d4effc15811a3490fadce52
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.9.9 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "57b-5c11d2db-0"
Last-Modified: Thu, 13 Dec 2018 03:32:43 GMT
Content-Length: 767
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   767
Md5:    a61ebc7c5ffaff82a4cafec6d131776c
Sha1:   ff664a87d02b9ffb52f86e69000362bf0f003679
Sha256: e2a5d0254d6982b26fa1b5ffe3f4d598c23dc8ce64bf6c9d0cd3f32150b904c4

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/plugins/akismet/_inc/form.js?ver=4.0.8 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "2bc-5be67932-0"
Last-Modified: Sat, 10 Nov 2018 06:22:42 GMT
Content-Length: 326
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   326
Md5:    c30ca94cf0d6d4c53344e3db5b9ee594
Sha1:   f9b180a219f84519c1542323ac1c2ec9d61f1530
Sha256: 899cc0487447f627afc97380efad1f9f0d7dd4c306e8374598b676c5824c2df9

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/js/theme.js?ver=1.4.6 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "2b95-58ecc43b-0"
Last-Modified: Tue, 11 Apr 2017 11:55:39 GMT
Content-Length: 3750
Content-Encoding: gzip
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   3750
Md5:    6e4372dcc9a66f786630e7c7123015e1
Sha1:   bee56c238a7e19f94faae9e54447f9653360b4f6
Sha256: b81682cfc20c4c18e8ded191531f17cff114790a190f8d171f72e2fa553fd0db
                                        
                                            GET /d.js HTTP/1.1 
Host: waust.at
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         185.225.208.133
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sun, 16 Dec 2018 22:35:57 GMT
Last-Modified: Mon, 10 Dec 2018 18:29:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: W/"5c0eb094-2f33"
Expires: Mon, 17 Dec 2018 22:35:57 GMT
Cache-Control: max-age=86400, private
Access-Control-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6810
Md5:    4d2930f630349b23f25df54ee4dcc182
Sha1:   7c408f36f4bf819c22852cdbf6a31cfb93dd0fd4
Sha256: 9ff589592fc16e83b35ddaea306891af5408fe1d8c40b68b23d33a5d0cc43ded
                                        
                                            GET /wp-content/themes/porno/images/bg-pattern.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "2548-58ecc436-0"
Last-Modified: Tue, 11 Apr 2017 11:55:34 GMT
Content-Length: 9544
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 100 x 100, 8-bit/color RGBA, non-interlaced
Size:   9544
Md5:    10a303fccdf8b27aea15f303788114d5
Sha1:   f0224b7a06d73dec652e36a2c75226ffa1131323
Sha256: 857b087e75fdb2df18704d4454e6763cff3d4d4fc62f0851869dc663ae6c4d97
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: s.wordpress.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.143.164.252
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 16 Dec 2018 22:35:57 GMT
Content-Length: 178
Connection: keep-alive
Location: https://s.wordpress.org/favicon.ico


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            GET /player/xhamster2/4412864.html HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sun, 16 Dec 2018 22:36:27 GMT
Connection: close
X-Powered-By: PHP/5.6.33
Content-Length: 527
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   527
Md5:    87402fd530f2f810b60ac1f698639d70
Sha1:   b235ede6d753b6b0c04ac7a8f44ef0484bb7dd26
Sha256: 9ac48e30aad9ade5787f7ea9ea0a86f02fa1073fe0813d6b96bee305cff97b5a

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/images/s.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "2264-58ecc438-0"
Last-Modified: Tue, 11 Apr 2017 11:55:36 GMT
Content-Length: 8804
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 320 x 480, 8-bit/color RGBA, non-interlaced
Size:   8804
Md5:    ab7ee580d958da2999109eec89957585
Sha1:   f2ae70e19a69800885b919917af4a382349b93e6
Sha256: fa7cd2236735bd83c60a9b6d5bd3de2e3344d269d06c5fbade93739bff07a45e
                                        
                                            GET /swidget/IDDD.png HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         67.202.94.93
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sun, 16 Dec 2018 22:35:57 GMT
Transfer-Encoding: chunked
Connection: close
Etag: W/"5c0eb073-aad"
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1240
Md5:    819b6b406e1d7b2632b6bc7b6d37e0c5
Sha1:   70ab99632d3b0eeb72eb07a9055f6029d3d2b04a
Sha256: ae739428ef8195c93a6c406b3c8483808277421cb9b054e3a3b8dada39156450
                                        
                                            GET /wp-content/themes/porno/images/nav-sep.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "b0b-58ecc438-0"
Last-Modified: Tue, 11 Apr 2017 11:55:36 GMT
Content-Length: 2827
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 2 x 42, 8-bit/color RGBA, non-interlaced
Size:   2827
Md5:    268cee49d0ed8562d6e8b6270b5c0f64
Sha1:   1c6cddd4a3b83f617ab344dc97ac02b34e45a67b
Sha256: 85a772781124b45dc6d026e069528d6eae5bb2935f23bf0dc1ac19505fb654a0
                                        
                                            GET /wp-content/themes/porno/images/bg-grad.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "b06-58ecc435-0"
Last-Modified: Tue, 11 Apr 2017 11:55:33 GMT
Content-Length: 2822
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 1 x 50, 8-bit/color RGBA, non-interlaced
Size:   2822
Md5:    cc9b9db1d9a3182973bedf7fc2541bd9
Sha1:   38e006adf2083bda4412636085d789099c573ab7
Sha256: de1186f271db5a233a6be6c42535fbf56b230781cb1d8b498d618e0bc06f6d98
                                        
                                            GET /wp-content/themes/porno/images/actions.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "f17-58ecc435-0"
Last-Modified: Tue, 11 Apr 2017 11:55:33 GMT
Content-Length: 3863
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 16 x 300, 8-bit/color RGBA, non-interlaced
Size:   3863
Md5:    38f9b7eb34bf8cb0ba180f007d80bc29
Sha1:   8fb53ea41f6c80ad5dbf701c50c315c686d26055
Sha256: 8c17d64cf3b9ae53f0c3fbc65cfceaf1167a47be7a8695c3c80ff51b74b053ce
                                        
                                            GET /wp-content/themes/porno/images/loading-bert.gif HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "b4c-58ecc437-0"
Last-Modified: Tue, 11 Apr 2017 11:55:35 GMT
Content-Length: 2892
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  GIF image data, version 89a, 128 x 15
Size:   2892
Md5:    ac520708d548e10714d308cfa33d32d8
Sha1:   b738b0363b8621a7ac59296de767f03e41dce2f8
Sha256: a80fab8be10e5238cdf8127c9c2e5c8c0a3a365e14b3350c9257851ad2299f9a
                                        
                                            GET /wp-content/themes/porno/images/icon-play-24.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "d2b-58ecc436-0"
Last-Modified: Tue, 11 Apr 2017 11:55:34 GMT
Content-Length: 3371
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 24 x 24, 8-bit/color RGBA, non-interlaced
Size:   3371
Md5:    911cdf11b12ca181486e089c7209357a
Sha1:   10476d8190664747c5333b622dc24d7551a84ac3
Sha256: c841326670d547fafab2d127f3c6b5bda61f49ec614081b9ba98a863abebd8bf
                                        
                                            GET /wp-content/themes/porno/images/social.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "264d-58ecc439-0"
Last-Modified: Tue, 11 Apr 2017 11:55:37 GMT
Content-Length: 9805
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 24 x 210, 8-bit/color RGBA, non-interlaced
Size:   9805
Md5:    a4a56323b4ad115c92501faa9729adf6
Sha1:   f26094fd4fadb3e4f0d53a72dcb07871feb4988a
Sha256: 22611392baf55d9aa4c2f2f9f09b52fd3300a25ef2dee12d7190fde6209f8d70
                                        
                                            GET /wp-content/uploads/2017/05 HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         46.105.36.47
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
Date: Sun, 16 Dec 2018 22:36:27 GMT
Connection: close
X-Powered-By: PHP/5.6.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.gececi.org/wp-json/>; rel="https://api.w.org/"
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max speed
Size:   8141
Md5:    5baa714fec81e2ae3008d30dfff349d7
Sha1:   897b9c49f4ecf67bed5775dacd7334cc542c532a
Sha256: 3b8bbfed5f658308a3b1f18d16cebd90e6712209d9344a49096a5811298ef5e0

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/themes/porno/images/section-shadow.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "4ac7-58ecc439-0"
Last-Modified: Tue, 11 Apr 2017 11:55:37 GMT
Content-Length: 19143
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 620 x 102, 8-bit/color RGBA, non-interlaced
Size:   19143
Md5:    9bcd07dc5875286fef77e1412c6e40f5
Sha1:   bfbeb79769242ecd913740152cad5ec68e01e240
Sha256: 6be831864901eeeac298f2419efb96337fca2593ec597181765ca5c628f90ba5
                                        
                                            GET /wp-content/themes/porno/images/s2.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "10d4-58ecc438-0"
Last-Modified: Tue, 11 Apr 2017 11:55:36 GMT
Content-Length: 4308
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 300 x 300, 8-bit/color RGBA, non-interlaced
Size:   4308
Md5:    a47aae9271fbead06e923160581a4f60
Sha1:   58f5df4323a549da3409dc215f5e19e613bbf00d
Sha256: bb53a20594c1dbd1f4b1a5419ab08e8a90fe15ba1b114dbf452312a8e7b47946
                                        
                                            GET /wp-content/themes/porno/images/stats.png HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/wp-content/themes/porno/style.css?ver=1.4.3

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sun, 16 Dec 2018 22:36:27 GMT
Accept-Ranges: bytes
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
Etag: "103c-58ecc439-0"
Last-Modified: Tue, 11 Apr 2017 11:55:37 GMT
Content-Length: 4156
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image, 15 x 200, 8-bit/color RGBA, non-interlaced
Size:   4156
Md5:    74fa7ca64d5a0a34439585a59d35b141
Sha1:   eafbe9185b9f481c17a1f041fd0ac967d3fb055e
Sha256: 139836deaa547b86bc555bc2e327f702745bba65318b830da2257b0f6b650a94
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         104.122.221.206
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Last-Modified: Fri, 07 Dec 2018 15:34:47 GMT
Etag: "5c0a9317-5762f"
Cache-Tag: client_dist
Surrogate-Key: client_dist
Timing-Allow-Origin: *
Cache-Control: public, max-age=600
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 114016
Date: Sun, 16 Dec 2018 22:35:57 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-Distribution: 99
X-Host: s7.addthis.com


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   114016
Md5:    3032d2ef0fb875533c68bc49b3a07558
Sha1:   88c1c715ab17d6be3cc1cc7cbcf3764c7e2a01a5
Sha256: f6b47d49fea13a5e51136ff3369d75e7d02f6974f541bae8543e55222474250f
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.9
Origin: http://www.gececi.org

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18296
Date: Wed, 12 Dec 2018 03:34:57 GMT
Expires: Thu, 12 Dec 2019 03:34:57 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:52 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 414061


--- Additional Info ---
Magic:  data
Size:   18296
Md5:    1cd5320f8937d337b61d5117cf9d7b28
Sha1:   24798ef7ac55ba93aaa033fefdb7ca4d57da44ad
Sha256: e19b28ad1aafcb23735d02cbec4e2697ebbf7d608cf47fb8f8565def01b28c2a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Thu, 13 Dec 2018 02:24:23 GMT
Etag: 2112C6F386DB433A3F3C2E0A12034C924F0D983A
X-OCSP-Responder-ID: (null)
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=272273
Expires: Thu, 20 Dec 2018 02:13:51 GMT
Date: Sun, 16 Dec 2018 22:35:58 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    fd34269bec728dcf12a05d3117558d6e
Sha1:   2112c6f386db433a3f3c2e0a12034c924f0d983a
Sha256: 19e51a9b514991b052a1cfffcdaac5c85a96599fc49e39b06348fa0397b31f4b
                                        
                                            GET /s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhv.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Arimo%3A400%2C700%7CDroid+Serif%3A400%2C700%7COpen+Sans%3A600%2C700&ver=4.9.9
Origin: http://www.gececi.org

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 18476
Date: Wed, 05 Dec 2018 11:01:49 GMT
Expires: Thu, 05 Dec 2019 11:01:49 GMT
Last-Modified: Wed, 11 Oct 2017 21:49:43 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 992049


--- Additional Info ---
Magic:  data
Size:   18476
Md5:    623e3205570002af47fc2b88f9335d19
Sha1:   b5f79d1934da79c8a4ba381092dad82ffb0582cb
Sha256: 5e03e0c7668266486cab9529702019d75c219fcec2b1e82a7c11797ba9b78506
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "E0F40B020F4B284171CA339C77B255E069EDBA3A2C76E33EC7EC91B5095CAEA2"
Last-Modified: Sat, 15 Dec 2018 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19093
Expires: Mon, 17 Dec 2018 03:54:12 GMT
Date: Sun, 16 Dec 2018 22:35:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    42f71566f9f2bf5b135568df0adef624
Sha1:   0be4ee743fb50664038c92c12b699078aa6f4d69
Sha256: e0f40b020f4b284171ca339c77b255e069edba3a2c76e33ec7ec91b5095caea2
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.113
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Sun, 16 Dec 2018 15:51:37 GMT
Etag: "0a03b473bb75897687a49f55527efcfd75887c7c"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=20696
Expires: Mon, 17 Dec 2018 04:20:55 GMT
Date: Sun, 16 Dec 2018 22:35:59 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    d451f5abd71b3e1936c35e5cd993ca11
Sha1:   0a03b473bb75897687a49f55527efcfd75887c7c
Sha256: a22b10b3fb06dd0a134927419cf50ed73ab044b5e38c7893ef0ebae99ea60905
                                        
                                            GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         104.19.199.151
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sun, 16 Dec 2018 22:35:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 17 May 2018 09:20:15 GMT
Etag: W/"5afd494f-15283"
Expires: Fri, 06 Dec 2019 22:35:59 GMT
Cache-Control: public, max-age=30672000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Served-In-Seconds: 0.554
CF-Cache-Status: HIT
Strict-Transport-Security: max-age=15780000; includeSubDomains
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 48a4a04fc9b04255-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   30388
Md5:    839ea6d40b314e1a1d99365999531070
Sha1:   c3df8f9c3f72c4365b02c9b991896f49c48f15c6
Sha256: 7b8eb2ea2cfda6af8796dde18078b512d6f69f29d31663c95277b43372513209
                                        
                                            GET /pingjs/?k=6unyjmdhfp&t=Kendisini%20kasl%C4%B1%20ve%20g%C3%BC%C3%A7l%C3%BC%20erkek%20arkada%C5%9F%C4%B1n%C4%B1n%20sert%20siki%C5%9Fine%20b%C4%B1rak%C4%B1yor%20%7C%20Porno%20Video&c=d&y=&a=0&r=9697 HTTP/1.1 
Host: whos.amung.us
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         67.202.94.93
HTTP/1.1 200 OK
Content-Type: text/javascript;charset=UTF-8
                                        
Date: Sun, 16 Dec 2018 22:35:59 GMT
Transfer-Encoding: chunked
Connection: close
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   49
Md5:    c0210c3e8daa1c5fd5c16eb649e693e7
Sha1:   a344f6c0d32a7e1d68b7c8b4acc5d871140b603b
Sha256: 0e443833540ffaf3d02ab251fdc68c0f91cd6f760c7904a5d4dcdcf97b8a10bd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 108
Content-Type: application/ocsp-request

                                         
                                         50.63.243.230
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 16 Dec 2018 22:35:59 GMT
Server: Apache
Content-Transfer-Encoding: Binary
Cache-Control: max-age=110406, public, no-transform, must-revalidate
Last-Modified: Sun, 16 Dec 2018 18:52:56 GMT
Expires: Tue, 18 Dec 2018 06:52:56 GMT
Etag: "3632a304dfd439f9bacf94ea94010dece5ec6822"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
Content-Length: 1778
Connection: close


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    d10671d185adb15f0662ef2f90657169
Sha1:   3632a304dfd439f9bacf94ea94010dece5ec6822
Sha256: 6110e0e8fa85ad7ff3d3e424da71fcdb9e436415182d97630369f66d44d8a151
                                        
                                            GET /NZXa9Y.gif HTTP/1.1 
Host: i.hizliresim.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         78.46.156.74
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Server: nginx
Date: Sun, 16 Dec 2018 22:35:59 GMT
Content-Length: 146
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document text
Size:   146
Md5:    9fe3cb2b7313dc79bb477bc8fde184a7
Sha1:   4d7b3cb41e90618358d0ee066c45c76227a13747
Sha256: 32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: s.wordpress.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         198.143.164.252
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Sun, 16 Dec 2018 22:36:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 11 Jan 2018 16:48:13 GMT
X-Frame-Options: SAMEORIGIN
X-nc: HIT ord 1
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1315
Md5:    321f1a09fa54a04252669961ad755659
Sha1:   456a5119d4ced13281a10abe4651c8b984c59cc3
Sha256: 02850d10f21f73ebf47cf82c32fdae67b0bdcd5a32fb471be5ab1dca544d84b2
                                        
                                            GET /2dl6b9u.jpg HTTP/1.1 
Host: oi68.tinypic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/

                                         
                                         209.17.68.209
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Apache
Last-Modified: Wed, 28 Mar 2018 14:24:39 GMT
Etag: "6063a-56879c46ef4e0"
Cache-Control: max-age=21600
Expires: Mon, 17 Dec 2018 00:38:45 GMT
Content-Length: 394810
Accept-Ranges: bytes
Date: Sun, 16 Dec 2018 22:35:58 GMT
X-Varnish: 970271939 963681652
Age: 14232
Via: 1.1 varnish
Connection: keep-alive
X-Varnish-Server: den2tpv63
X-Cache: HIT


--- Additional Info ---
Magic:  GIF image data, version 89a, 300 x 250
Size:   394810
Md5:    8c08a5b05434208af42696049c8fbe9d
Sha1:   f058e6a62e85bd5a697a2d16a04550d8953abc03
Sha256: aa8828f71984e9affd0301e7384e5ea9ba26b74a26ba75b63d66fc4899170670
                                        
                                            GET /beyaz-tenli-kizin-tatli-amcigindan-deli-gibi-hd-sikis-izle/ HTTP/1.1 
Host: www.gececi.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/kendisini-kasli-ve-guclu-erkek-arkadasinin-sert-sikisine-birakiyor/
X-Moz: prefetch

                                         
                                         46.105.36.47
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
Date: Sun, 16 Dec 2018 22:36:29 GMT
Connection: close
X-Powered-By: PHP/5.6.33
X-Pingback: http://www.gececi.org/xmlrpc.php
Link: <http://www.gececi.org/wp-json/>; rel="https://api.w.org/", <http://www.gececi.org/?p=282>; rel=shortlink
X-Frame-Options: SAMEORIGIN


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /1129/xhamster2/4412864.html HTTP/1.1 
Host: vidyoplayer8.yarbot.xyz
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.gececi.org/player/xhamster2/4412864.html

                                         
                                         0.0.0.0
                                        


--- Additional Info ---