Overview

URL gedik.com
IP95.0.25.113
ASNTurk Telekom
Location Turkey
Report completed2022-10-04 12:23:59 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

URL webservice.foreks.com/foreks-web-widget/assets/themes/gedik/css/ecalendar.css
IP  95.0.13.134
Magic gzip compressed data, max compression\012- data
Size 9684
MD5 ab17e2f93eea8919ac01b8b1784846fd
SHA1 020f726c316163109e305a1c699e41a46a9aec68
SHA256 e24f55ddfa3819b9be64569e2aae068a404e799e1c19f58be58dd51ae27e0570
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (58)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (5) 86 2012-05-21 07:02:23 UTC 2022-10-04 07:51:20 UTC 93.184.220.29
mnemonic passive DNS web-node-cdn.foreks.com (23) 588028 2020-11-25 14:40:18 UTC 2022-07-20 11:02:34 UTC 54.230.111.85
mnemonic passive DNS static.ads-twitter.com (1) 614 2017-01-30 05:00:15 UTC 2022-10-04 04:41:32 UTC 151.101.84.157
mnemonic passive DNS web-swarm.foreks.com (11) 567633 2021-08-23 07:54:50 UTC 2022-10-03 14:05:05 UTC 18.194.59.104
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-10-04 11:01:42 UTC 143.204.55.118
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-10-04 04:31:36 UTC 23.36.76.121
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-10-04 09:27:47 UTC 142.250.74.66
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-10-04 10:22:24 UTC 143.204.55.40
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-10-04 08:54:14 UTC 142.250.74.3
mnemonic passive DNS gedikyatirim.zendesk.com (3) 0 2020-03-05 01:20:42 UTC 2022-05-01 02:34:55 UTC 104.16.53.111 Domain (zendesk.com) ranked at: 1020
mnemonic passive DNS widget-mediator.zopim.com (1) 2693 2022-02-08 08:03:56 UTC 2022-10-04 04:48:17 UTC 18.185.150.199
mnemonic passive DNS ocsp.pki.goog (16) 175 2017-06-14 07:23:31 UTC 2022-10-04 04:17:09 UTC 142.250.74.3
mnemonic passive DNS webservice.foreks.com (43) 792190 2017-02-01 12:19:01 UTC 2022-09-17 04:48:49 UTC 95.0.13.134
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-10-04 08:39:57 UTC 142.250.74.174
mnemonic passive DNS mc.yandex.ru (3) 2672 2017-01-29 05:34:36 UTC 2022-10-04 08:04:40 UTC 77.88.21.119
mnemonic passive DNS analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2022-10-04 04:41:33 UTC 104.244.42.3
mnemonic passive DNS web-swarm.foreks.com (11) 567633 2021-08-23 07:54:50 UTC 2022-10-03 14:05:05 UTC 18.198.156.120
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-04 04:25:35 UTC 142.250.74.164
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-10-04 04:17:22 UTC 23.36.77.32
mnemonic passive DNS www.googleadservices.com (1) 107 2012-07-21 05:05:30 UTC 2022-10-04 11:33:30 UTC 142.250.74.66
mnemonic passive DNS ocsp.godaddy.com (3) 698 2012-05-20 19:28:57 UTC 2022-10-04 04:40:22 UTC 192.124.249.23
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-10-04 04:19:22 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS wsdkapi.netmera.com (8) 0 2022-09-08 10:24:45 UTC 2022-10-04 06:50:44 UTC 185.57.65.123 Domain (netmera.com) ranked at: 90758
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-04 09:13:54 UTC 143.204.55.36
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-10-04 04:17:03 UTC 31.13.72.36
mnemonic passive DNS trc.taboola.com (1) 602 2013-07-11 10:17:31 UTC 2022-10-04 04:32:55 UTC 151.101.85.44
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-04 04:16:51 UTC 34.117.237.239
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-10-04 04:19:28 UTC 151.101.85.229
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-10-04 09:37:43 UTC 142.250.74.168
mnemonic passive DNS cdn.segmentify.com (1) 45412 2014-11-29 04:41:53 UTC 2022-10-04 08:26:35 UTC 34.120.65.227
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-10-04 10:27:31 UTC 142.250.74.10
mnemonic passive DNS ekr.zdassets.com (1) 2396 2018-08-30 11:19:59 UTC 2022-10-04 04:50:12 UTC 104.18.72.113
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-04 04:29:41 UTC 143.204.55.49
mnemonic passive DNS cdn.netmera-web.com (2) 145154 2017-02-13 14:25:09 UTC 2022-10-04 06:50:43 UTC 54.170.121.144
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-10-04 09:09:40 UTC 104.18.32.68
mnemonic passive DNS ntm.netmera-web.com (1) 0 2022-09-14 05:48:31 UTC 2022-10-04 06:50:43 UTC 54.230.111.43 Domain (netmera-web.com) ranked at: 144706
mnemonic passive DNS adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-10-04 07:12:09 UTC 142.250.74.34
mnemonic passive DNS connect.facebook.net (1) 139 2012-05-22 02:51:28 UTC 2022-10-04 04:17:21 UTC 31.13.72.12
mnemonic passive DNS gandalf.segmentify.com (1) 0 2019-04-05 15:49:05 UTC 2021-03-12 13:05:04 UTC 95.214.74.48 Domain (segmentify.com) ranked at: 103112
mnemonic passive DNS adservice.google.no (1) 96969 2017-09-26 14:23:08 UTC 2022-10-04 04:17:30 UTC 142.250.74.98
mnemonic passive DNS gedik.com (2) 147560 2014-07-14 13:30:00 UTC 2022-06-30 07:29:37 UTC 95.0.25.113
mnemonic passive DNS gedik-cdn.foreks.com (3) 0 2016-02-11 22:01:50 UTC 2019-01-24 18:40:19 UTC 143.204.55.47 Domain (foreks.com) ranked at: 91390
mnemonic passive DNS fonts.gstatic.com (4) 0 2014-08-29 13:43:22 UTC 2022-10-04 09:46:16 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS px.ads.linkedin.com (2) 522 2017-08-08 16:28:50 UTC 2022-10-04 10:00:24 UTC 13.107.42.14
mnemonic passive DNS 11217282.fls.doubleclick.net (1) 0 No data No data 142.250.74.70 Domain (doubleclick.net) ranked at: 2267
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-10-04 04:18:32 UTC 34.120.237.76
mnemonic passive DNS cdn.taboola.com (1) 1040 2013-07-19 23:48:03 UTC 2022-10-04 05:06:26 UTC 151.101.85.44
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-10-04 04:17:12 UTC 143.204.55.98
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-10-04 05:06:06 UTC 74.125.131.157
mnemonic passive DNS ocsp.globalsign.com (3) 2075 2012-05-25 06:20:55 UTC 2022-10-04 04:22:54 UTC 104.18.21.226
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-04 04:45:06 UTC 35.164.56.167
mnemonic passive DNS www.gedik.com (26) 0 2012-06-28 10:07:18 UTC 2022-09-27 12:27:23 UTC 95.0.25.113 Domain (gedik.com) ranked at: 147560
mnemonic passive DNS status.thawte.com (2) 5123 2017-11-27 12:33:51 UTC 2022-10-04 04:53:20 UTC 93.184.220.29
mnemonic passive DNS www.linkedin.com (1) 608 2014-04-09 13:16:08 UTC 2022-10-04 04:38:48 UTC 13.107.42.14
mnemonic passive DNS gedik.api.useinsider.com (1) 0 2020-06-10 03:36:12 UTC 2020-06-10 03:36:12 UTC 162.159.133.61 Domain (useinsider.com) ranked at: 17538
mnemonic passive DNS ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-10-04 10:58:46 UTC 216.58.207.202
mnemonic passive DNS t.co (1) 569 2012-07-25 19:09:44 UTC 2022-10-04 04:43:29 UTC 104.244.42.69
mnemonic passive DNS static.zdassets.com (7) 2154 2018-06-23 22:11:55 UTC 2022-10-04 04:50:12 UTC 104.18.70.113


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 95.0.25.113

Date UQ / IDS / BL URL IP
2022-10-04 12:23:59 +0000
0 - 0 - 0 gedik.com 95.0.25.113

Last 5 reports on ASN: Turk Telekom

Date UQ / IDS / BL URL IP
2022-12-04 17:12:17 +0000
0 - 0 - 2 harcabitmez.com/numero/vicencio/mucrejre8754h (...) 95.0.0.237
2022-12-02 21:45:12 +0000
0 - 0 - 2 www.harcabitmez.com/numero/vicencio/mucrejre8 (...) 95.0.0.237
2022-11-21 01:25:17 +0000
0 - 0 - 47 88.247.129.144/ 88.247.129.144
2022-11-12 19:50:05 +0000
2 - 0 - 0 onlybaby.duckdns.org/Chrome.exe 95.15.62.75
2022-11-12 19:50:05 +0000
2 - 0 - 0 onlybaby.duckdns.org/payload.exe 95.15.62.75

Last 1 reports on domain: gedik.com

Date UQ / IDS / BL URL IP
2022-10-04 12:23:59 +0000
0 - 0 - 0 gedik.com 95.0.25.113

No other reports with similar screenshot



JavaScript

Executed Scripts (87)


Executed Evals (4)

#1 JavaScript::Eval (size: 111, repeated: 1) - SHA256: 24843771ee33b703c6842a4584b8177edfeb3e1c1ad9cb45b14ffb04cf35b05a

                                        (function() {
    var userid = google_tag_manager["GTM-MMXVM23"].macro(2);
    return userInfo[userInfo.length - 1].telNo
})();
                                    

#2 JavaScript::Eval (size: 55, repeated: 1) - SHA256: 5843c8ed6082d66f25235ed0f7a888fa401f63537f828be37ae8b1796a51cf01

                                        (function() {
    return sessionStorage.getItem("telNo")
})();
                                    

#3 JavaScript::Eval (size: 135, repeated: 1) - SHA256: c7a62f5f3114ea2336011314599b188eef791794cb8277f45d034a90eb2903e3

                                        (function() {
    ZamanFarki = google_tag_manager["GTM-MMXVM23"].macro(3) - google_tag_manager["GTM-MMXVM23"].macro(4);
    return ZamanFarki / 1E3
})();
                                    

#4 JavaScript::Eval (size: 75, repeated: 1) - SHA256: 116ce4844064c32081a79490c314206e6b8bee1a46414990366cdb302f488fb9

                                        (function() {
    return document.getElementById("accountId") ? "false" : "true"
})();
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 0, repeated: 1) - SHA256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                    


HTTP Transactions (217)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 11:40:45 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7q_Dk2ToKjFOmc1ONOlTsNaI6__GFDAUImIgXFjxhnzkZ_lpis8RaA==
Age: 2571


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET / HTTP/1.1 
Host: gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         95.0.25.113
HTTP/1.1 302 Object moved
Content-Type: text/html
                                        
Location: https://gedik.com:443/
Content-Length: 74


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   74
Md5:    d8f3cac4ba5181c905b7e407ed2a6287
Sha1:   6b36dab0c36dcdc83c358a10a21df04a9dff83e4
Sha256: 00d9e7efee0bf52a7c90c51696fe60aad8f1c7d8fdb4da66b5a061d885b21220
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6585
Expires: Tue, 04 Oct 2022 14:13:22 GMT
Date: Tue, 04 Oct 2022 12:23:37 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V-kUlqoaIeBpWzKtX9Fvk2g6exiDta0BprNzu8_EE94Br-sFDRjj2Q==
age: 24910
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 04 Oct 2022 12:23:37 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 11:29:33 GMT
Expires: Tue, 04 Oct 2022 12:17:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jBbeDZ4Vhs4wczu_8HdJ6F3Zemx2YMjLqVTb_48Z7eL1s9nSRIuLDA==
Age: 3245


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:38 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 08 Oct 2022 11:40:49 GMT
ETag: "4dc7d6c20d6e7cb7a6dbd9229780fb73579985d2"
Last-Modified: Tue, 04 Oct 2022 11:40:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754de3cddda60b45-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    5d610c444593f233d134c3cf65d25bdf
Sha1:   4dc7d6c20d6e7cb7a6dbd9229780fb73579985d2
Sha256: 7a08a34637e9453becd65494c14f6dd17c7976c21691bf1b93557e28397942a4
                                        
                                            GET / HTTP/1.1 
Host: gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         95.0.25.113
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:38 GMT
Content-Length: 88
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; connect-src *; img-src * data:
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: autoplay 'self'; camera 'self'; encrypted-media *; fullscreen *; microphone 'self';
Location: https://www.gedik.com/
Cache-Control: no-cache
X-Request-Id: 4d2c240a-3882-4a8b-9b56-d81e799ae287
X-Runtime: 0.006762
Set-Cookie: cookiesession1=678A8C33TUV0123456789891234AC1B9;Expires=Wed, 04 Oct 2023 12:23:37 GMT;Path=/;HttpOnly


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   88
Md5:    6d69a3cab73603cb2e4f4adad2df76d1
Sha1:   75b66d6bbf54dd24626ef1e378c33259c918cdb4
Sha256: 373163da3d7ec4513408698eb35bd788da88efc083486ab2c4b6e6d79cc779db
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2969
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 12:23:38 GMT
Last-Modified: Tue, 04 Oct 2022 11:34:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ct1m0OO71kxjASaKk6s39g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.164.56.167
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: c+LuLl6u8nRe2Irp7aqFFeGHZbk=

                                        
                                            GET / HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:38 GMT
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; connect-src *; img-src * data:
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: autoplay 'self'; camera 'self'; encrypted-media *; fullscreen *; microphone 'self';
Etag: W/"4499d4b01b6f26034924a312130222d8"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: ae3e4698-cda5-4022-9264-bd276a8d5cf5
X-Runtime: 0.257798
Content-Encoding: gzip
Set-Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; path=/; secure; HttpOnly; SameSite=Strict cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED;Expires=Wed, 04 Oct 2023 12:23:38 GMT;Path=/;HttpOnly
content-length: 21264


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1676), with CRLF, LF line terminators
Size:   21264
Md5:    6de5a781d9ab6e7ea48a90973a5f5722
Sha1:   75c101a8ecbb29f06df0d8324a1eb3340bd60678
Sha256: cd78ea9412a34e4680ba62cf8c6baa336745e0446ccdccd86ece7ff922351e7a
                                        
                                            GET /ins.js?id=10002339 HTTP/1.1 
Host: gedik.api.useinsider.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.159.133.61
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Tue, 04 Oct 2022 12:23:39 GMT
content-length: 0
access-control-allow-origin: *
etag: "d41d8cd98f00b204e9800998ecf8427e"
last-modified: Fri, 15 Jul 2022 10:09:21 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: dk43DDRi6tdaHcSKaxXpIUS/9a7SVDJnXDm09N+Z4nkPiUwzSRMLPzdORmZ3Te8QR68xdhZ+O/0=
x-amz-request-id: EBKHSK7E4QBC6M74
x-amz-version-id: jqZfhA2VrexQSShC8JXRQEqjBfLk1gzX
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 6167
expires: Tue, 04 Oct 2022 12:28:39 GMT
cache-control: public, max-age=300
accept-ranges: bytes
set-cookie: __cf_bm=nrqvrQfgCELVoTfTYXIM82gNI4na5kI27687WzXc1Dk-1664886219-0-AcQVUfSeMcoZvWCBQu6l39R+R8my7hsKSdpPArOb+Pp4tIjHBphskbbhA12K2Yos/VHpTkUjjGDAagcIvK0kfRs=; path=/; expires=Tue, 04-Oct-22 12:53:39 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 754de3d56975b529-OSL
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6541
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 12:23:39 GMT
Last-Modified: Tue, 04 Oct 2022 10:34:38 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /yatirim/settings/files/000/000/013/original/gedik-phone-screen-74787aade6115e06b6a53d3434ba62256608bcb6411786a097beeb815c50279c.png?1490045922 HTTP/1.1 
Host: gedik-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.47
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 56159
date: Tue, 04 Oct 2022 10:40:53 GMT
last-modified: Mon, 20 Mar 2017 18:41:05 GMT
etag: "7c1971d7b17a5e2cba38ed366d9f042d"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LbUv0DK7dG-d6Rggm1PlZfQgbDysGw0JIwyo_aQcVCzaFnKm0_sZAA==
age: 6167
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 381 x 799, 8-bit colormap, non-interlaced\012- data
Size:   56159
Md5:    7c1971d7b17a5e2cba38ed366d9f042d
Sha1:   27caccd4647921737b5ac1d38ebc6820e7b4baa7
Sha256: 74787aade6115e06b6a53d3434ba62256608bcb6411786a097beeb815c50279c
                                        
                                            GET /yatirim/settings/files/000/000/009/original/gedikorj1.png?1490045646 HTTP/1.1 
Host: gedik-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.47
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 2598
date: Tue, 04 Oct 2022 10:40:53 GMT
last-modified: Mon, 20 Mar 2017 18:36:14 GMT
etag: "ae603d72e6c5729316c4605424a7fba6"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tdPza0Cb7Z_kCeP9oy-6DzsTyYHChXDrRePUW3e_XWe1F1iZRtPCMg==
age: 6167
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 232 x 38, 8-bit colormap, non-interlaced\012- data
Size:   2598
Md5:    ae603d72e6c5729316c4605424a7fba6
Sha1:   2acb2529e287054d94b2fd4d87f3baeeb0742785
Sha256: 06c3b0acc72f5f0564a4b4d64588ace852ca7339bb84d43f9dfb5f1e293949f1
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6138
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 12:23:39 GMT
Last-Modified: Tue, 04 Oct 2022 10:41:21 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /jquery.jssocials/1.1.0/jssocials.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"1d45-UijCTOjocgmy3NWJijaWidz8mds"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 04 Oct 2022 12:23:39 GMT
age: 1852837
x-served-by: cache-fra19182-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2642
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7381)
Size:   2642
Md5:    cc4971c4ef0608fa5107694d1b29bf5f
Sha1:   5b008ce691d4bd54e5877a265b913af476319a7f
Sha256: 80caf4a0cbe37d1fd822b0ee12d9306a05f8976b616855a1f95d072dea224dac
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "086075CA50D7CAF5450D461EB867CDED6F44893F"
Expires: Tue, 04 Oct 2022 23:00:00 GMT
Last-Modified: Tue, 04 Oct 2022 11:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1651
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754de3d61e660b45-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    849f5b33ea2ba022a00531b0aba4c642
Sha1:   36f76bd448676ae09136bbe0c196e30056da8ee8
Sha256: fdd737d38e7a68ab24eb2e3478697f8a6b85e999b4ca9b5790bc6dfc93de5195
                                        
                                            GET /pagead/conversion.js HTTP/1.1 
Host: www.googleadservices.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 04 Oct 2022 12:23:39 GMT
expires: Tue, 04 Oct 2022 12:23:39 GMT
cache-control: private, max-age=3600
etag: 11313833467736987248
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16840
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2021)
Size:   16840
Md5:    facf633646edbf5b62983e22d11aa160
Sha1:   0373848f224ca40d2982581b205a8cf28b72dd7c
Sha256: ce5955eb70e6611579323a75ba5536d9af9a224a593fe1a2d8d204fa1127f524
                                        
                                            GET /gtm.js?id=GTM-MMXVM23 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 12:23:39 GMT
expires: Tue, 04 Oct 2022 12:23:39 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100698
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (58386)
Size:   100698
Md5:    6f748ab07f5fb0b5832648a1e7ea76c2
Sha1:   9a4dc4ac9a20300178f30da3f2f55cd0236bcd91
Sha256: f09c338130a7a429ad588385c9138b2b1eb6d5ec61550f4f73766724245772c8
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 03 Oct 2022 22:41:42 GMT
Expires: Tue, 04 Oct 2022 22:41:42 GMT
ETag: "5c952b218ad09660ca1294756bdfeec510dca2ef"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    8ad39a93887d6aadcd6c1afafff47cc1
Sha1:   5c952b218ad09660ca1294756bdfeec510dca2ef
Sha256: fdbf40b479156fd02e034e3897492d8a80383fa5ad8e30e0fead25e98a224869
                                        
                                            GET /assets/vendor/modernizr-e5e9742b5821ce505a850d937a95481d65f99c9f82713400335e024afcc4eaae.js HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 11044
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "e5e9742b5821ce505a850d937a95481d65f99c9f82713400335e024afcc4eaae"
X-Request-Id: 8849f126-0bcd-4ffe-91b8-31fbf125a151
X-Runtime: 0.005164


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11044), with no line terminators
Size:   11044
Md5:    539e800442839d2af444e21b93fb7913
Sha1:   c19c8312f77d337217d13ebab3940d965a30d542
Sha256: e5e9742b5821ce505a850d937a95481d65f99c9f82713400335e024afcc4eaae
                                        
                                            GET /wsdkjs/hHqCjlXQ8eb9yLR6w82ijuiK25hLa7seQYRbIomE3zegSsU4eDTTGA HTTP/1.1 
Host: cdn.netmera-web.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.170.121.144
HTTP/2 302 Found
content-type: text/html
                                        
server: nginx
date: Tue, 04 Oct 2022 12:23:39 GMT
content-length: 154
location: https://ntm.netmera-web.com/wsdk2/nmweb/netmera_sdk.js
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   154
Md5:    cfbeaf604823f038b8b46f0ac862b98c
Sha1:   7b9eb1dac48e74fa5f418bc456cb410f88b81d98
Sha256: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 02:06:55 GMT
Expires: Mon, 10 Oct 2022 02:06:54 GMT
Etag: "25625f5cec8ead8bc9c6715f7e4e3256d29ce8f4"
Cache-Control: max-age=480794,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 754de3d5cd1b1c02-OSL

                                        
                                            GET /0ea75def-edc4-4112-bf95-ccc93cdf7053/segmentify.js HTTP/1.1 
Host: cdn.segmentify.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.65.227
HTTP/2 200 OK
content-type: application/javascript
                                        
x-guploader-uploadid: ADPycdtgA7i0OibM0xK14v7RdVtcghADx01DBCtTyE4s2Nuw7oo3FxqoSOqCLRx5zFjCN46j6dc_H8ZjOATY56S59qTMww
date: Tue, 04 Oct 2022 12:23:39 GMT
cache-control: public, max-age=604800
expires: Tue, 11 Oct 2022 12:23:39 GMT
last-modified: Tue, 02 Feb 2021 05:05:06 GMT
etag: "9863a860d7756cd6bea1c65fd204fdfe"
x-goog-generation: 1612242306095336
x-goog-metageneration: 112629
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41853
x-goog-meta-goog-reserved-file-mtime: 1612028047
content-encoding: gzip
x-goog-hash: crc32c=PZO/KA==, md5=mGOoYNd1bNa+ocZf0gT9/g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 41853
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23470)
Size:   41853
Md5:    9863a860d7756cd6bea1c65fd204fdfe
Sha1:   c8d387e084ee0d20e2b67783b48a5dd1ae1b0eb2
Sha256: 954e12aae3334bb103c5914799573c04252ce9f34f26b5becfbd24659ded26d9
                                        
                                            GET /wsdk2/nmweb/netmera_sdk.js HTTP/1.1 
Host: ntm.netmera-web.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.43
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 08 Sep 2022 08:46:41 GMT
server: AmazonS3
content-encoding: br
date: Tue, 04 Oct 2022 12:23:39 GMT
cache-control: private, max-age=900, s-maxage=604800
etag: W/"e94f201700006b501e4491f032120f68"
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JOSs4TNfuIP1HIDnluLFNc-z5nPELncwx9P8YvyNhXXKSQgT7GclPg==
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (61001), with no line terminators
Size:   17334
Md5:    b18cf15e1c81f2d0ebc8e4d38d57f015
Sha1:   1da31d035fa13bdaf1747f46578bcde670abe6fb
Sha256: 52034bfe73da34e790de76a69dcce4c9826eba42aab0ab9fe46e8bcad2fc0add
                                        
                                            GET /activityi;src=11217282;type=invmedia;cat=sizit00;ord=4797924982280;gtm=2wg9s0;auiddc=459116689.1664886219;~oref=https%3A%2F%2Fwww.gedik.com%2F? HTTP/1.1 
Host: 11217282.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.70
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 12:23:39 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 352
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 12:38:39 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (447), with no line terminators
Size:   352
Md5:    73d7444e7e0b3204409fafdd203f54b4
Sha1:   7835d63345c0e7c19338f776fccac99285f4a56a
Sha256: 011173a30297b2f6b16cef8fc749d9135f8660144be6316fced22eb6b09a1889
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ddm/fls/i/src=11217282;type=invmedia;cat=sizit00;ord=4797924982280;gtm=2wg9s0;auiddc=459116689.1664886219;~oref=https%3A%2F%2Fwww.gedik.com%2F HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11217282.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.34
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 12:23:39 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 352
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (446), with no line terminators
Size:   352
Md5:    389765362b3eb57bf57b98b82e82e061
Sha1:   fd720477897a3e13281061b2d88262b2c6c6d922
Sha256: cf1634c8a97978395ba8a3ebaadf7e06e9805aa307ddfcadcedd1a54b99636ad
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 02:06:55 GMT
Expires: Mon, 10 Oct 2022 02:06:54 GMT
Etag: "25625f5cec8ead8bc9c6715f7e4e3256d29ce8f4"
Cache-Control: max-age=480794,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 754de3d78f171c02-OSL

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ddm/fls/i/src=11217282;type=invmedia;cat=sizit00;ord=4797924982280;gtm=2wg9s0;auiddc=459116689.1664886219;~oref=https%3A%2F%2Fwww.gedik.com%2F HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.98
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 12:23:39 GMT
expires: Tue, 04 Oct 2022 12:23:39 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size:   177
Md5:    9393b28661a65a763699c108887882eb
Sha1:   c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
Sha256: 2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5147
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 12:23:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5147
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 12:23:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5147
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 12:23:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5147
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 12:23:39 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5147
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 12:23:39 GMT
Connection: keep-alive

                                        
                                            GET /assets/application-95cd22bc066f71bd46ad59f53dce6e485615459dcc3b08e3dc04cbdfef1f8d0f.js HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 450110
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "95cd22bc066f71bd46ad59f53dce6e485615459dcc3b08e3dc04cbdfef1f8d0f"
X-Request-Id: 114b217f-e754-4bac-a149-502a5dd0ae0b
X-Runtime: 0.004446


--- Additional Info ---
Magic:  ASCII text, with very long lines (32768)
Size:   450110
Md5:    3874ac65209567349efc46ac30f863de
Sha1:   59662a354633b38003040a72e2742a47072290d1
Sha256: 95cd22bc066f71bd46ad59f53dce6e485615459dcc3b08e3dc04cbdfef1f8d0f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tJwzKfs7HnQ7dVcINwnlzxTChXiEi4JPj8jrS8p5KhurRx_o3ZVOZQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
age: 51160
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11955
Md5:    54b3ef7aa50273b78b59c24511b0c1f9
Sha1:   e2ea2ef6805e391c497e62e101e76a0bdecfce64
Sha256: 296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 52065
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9917
Md5:    d8c08f8066cc732de8befd6ccd629a95
Sha1:   22aab05208a01ae5def4d63dc145085630f57bcb
Sha256: f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962fb2a2-ad40-48cf-87a7-de082c564a5e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8534
x-amzn-requestid: 8ae51cd3-697b-47ed-8493-8f83e2bc7469
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuHlXoAMFucg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-165d72034440cf810d42f3bd;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPt8LUVoKhXjfz-jZHLmnWD15tQgSLRaxl-Bsl0UU83G7wm3jj7_mg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:37:24 GMT
age: 49575
etag: "2b9f6828a38da81b40dcad033572e48b4c5896db"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8534
Md5:    f2287c489794dab0e9ba923a2057988f
Sha1:   2b9f6828a38da81b40dcad033572e48b4c5896db
Sha256: e853fa2acf2425d14cb9746e8bbd45c8765598d2bb630859086b4668182dbf6c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 52013
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4858
Md5:    6779181f9c06975f2a662da743893939
Sha1:   585e7146fd24cdc2496b05baafea04091dc541e2
Sha256: 8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
                                        
                                            GET /assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 701148
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280"
X-Request-Id: d6adc970-ef8e-4382-8a12-c5e7e843ea66
X-Runtime: 0.006075


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65371)
Size:   701148
Md5:    d8e4a74641708dad66cbc22f1687373f
Sha1:   6a70ba1794e53f62f9e14a12cc079db53dee5a90
Sha256: af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280
                                        
                                            GET /assets/news-ea9d4a436fd655cf2ee5dd960a72a02406f42014c62d81debb527b5de4c69166.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 626
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "ea9d4a436fd655cf2ee5dd960a72a02406f42014c62d81debb527b5de4c69166"
X-Request-Id: 9dadc863-ede8-45d1-9c70-53cf0a43c5a7
X-Runtime: 0.003385


--- Additional Info ---
Magic:  PNG image data, 26 x 30, 8-bit colormap, non-interlaced\012- data
Size:   626
Md5:    01458f85f1ac53dc496bd8ba3aa6c41b
Sha1:   fe6201adb8ae63020fe03144c5e87d2ccc529b19
Sha256: ea9d4a436fd655cf2ee5dd960a72a02406f42014c62d81debb527b5de4c69166
                                        
                                            GET /assets/report-bf3f64bc7508060704167c24c41050575e6a294d8ae79c973e1fc694c289fd94.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 1817
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "bf3f64bc7508060704167c24c41050575e6a294d8ae79c973e1fc694c289fd94"
X-Request-Id: a7e5f96f-cc76-4999-a550-c3ef9353f0a7
X-Runtime: 0.003541


--- Additional Info ---
Magic:  PNG image data, 20 x 21, 8-bit/color RGBA, non-interlaced\012- data
Size:   1817
Md5:    362fb7fcb46d6be236858e319608ca4a
Sha1:   607ea55ee9a26cba718c4941b1844a667a746d9f
Sha256: bf3f64bc7508060704167c24c41050575e6a294d8ae79c973e1fc694c289fd94
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gedik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 03:08:55 GMT
expires: Sun, 01 Oct 2023 03:08:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
age: 292485
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /assets/right-banner-7d8b9d16805979c72263520c69933fd6374f505172217bb44749444093e0dd76.jpg HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 71250
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "7d8b9d16805979c72263520c69933fd6374f505172217bb44749444093e0dd76"
X-Request-Id: 9b8cde16-d6ee-4b00-a067-0a07fb79addb
X-Runtime: 0.006775


--- Additional Info ---
Magic:  PNG image data, 300 x 200, 8-bit/color RGB, non-interlaced\012- data
Size:   71250
Md5:    ff08e9f3787884157727c49c8b7acfcf
Sha1:   502ca0508fe1ee03fdffd966855ca2022df13265
Sha256: 7d8b9d16805979c72263520c69933fd6374f505172217bb44749444093e0dd76
                                        
                                            GET /assets/logo-5baa9b78f74318b99a4701b12156d0248dfff8e0daafe199c063f44f87672f47.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:39 GMT
Content-Length: 47527
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "5baa9b78f74318b99a4701b12156d0248dfff8e0daafe199c063f44f87672f47"
X-Request-Id: d50b520c-9393-482c-869e-4022e5fd2d9b
X-Runtime: 0.008209


--- Additional Info ---
Magic:  PNG image data, 2202 x 628, 8-bit/color RGBA, non-interlaced\012- data
Size:   47527
Md5:    384fa9f4242ff2df301c550fb2a96405
Sha1:   77f8787c47500d0f7f8831dd1849648ff9c52d50
Sha256: 5baa9b78f74318b99a4701b12156d0248dfff8e0daafe199c063f44f87672f47
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /g/collect?v=2&tid=G-JQ83J74YHE&gtm=2oea30&_p=1586273522&cid=87565218.1664886219&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664886219&sct=1&seg=0&dl=https%3A%2F%2Fwww.gedik.com%2F&dt=Gedik%20Yat%C4%B1r%C4%B1m%20%7C%20Hisse%20Senedi%2C%20VIOP%2C%20Yurtd%C4%B1%C5%9F%C4%B1%20Hisseler%2C%20Eurobond%2C%20Forex%20%C4%B0%C5%9Flemleri&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Origin: https://www.gedik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.gedik.com
date: Tue, 04 Oct 2022 12:23:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gedik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:57:58 GMT
expires: Tue, 03 Oct 2023 18:57:58 GMT
cache-control: public, max-age=31536000
age: 62742
last-modified: Mon, 15 Aug 2022 18:11:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Size:   31320
Md5:    3fe71527811fbfedd2c07962e1bc49e7
Sha1:   f63e158a0480c5d711b5e268db0e75e57d87a8a5
Sha256: 24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
                                        
                                            GET /s/sen/v7/6xKjdSxYI9_3nPWN.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gedik.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 22:02:51 GMT
expires: Tue, 03 Oct 2023 22:02:51 GMT
cache-control: public, max-age=31536000
age: 51649
last-modified: Wed, 27 Apr 2022 16:33:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16244, version 1.0\012- data
Size:   16244
Md5:    dde25f34f3abf16bd639d63eb8d8c6fd
Sha1:   40e9d20fafbe9f33bb25230c88d5a7b9f943a390
Sha256: 952d0124577741a92bf7acd3838367a2678a77c33f6f2ea348c35cdb2237fa20
                                        
                                            GET /assets/icon-phone@2x.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 767
Connection: keep-alive
Cache-Control: public, must-revalidate
Etag: "f8c3f050b90c1b56791978680c00f6a629e260b20eafeca6810f3c5197b06188"
Vary: Accept-Encoding
X-Request-Id: 228f6ac4-14bd-4dcb-84e4-28c05c780f99
X-Runtime: 0.015409


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   767
Md5:    7193d95c5d1a466044f8df146cb734f6
Sha1:   0b88f52cd32ac30c9bac5fd52123e7410f70853b
Sha256: f8c3f050b90c1b56791978680c00f6a629e260b20eafeca6810f3c5197b06188
                                        
                                            GET /assets/icon-news.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 1332
Connection: keep-alive
Cache-Control: public, must-revalidate
Etag: "a51ca830974201aa242666ae61f888e4bc337ee7c2875d2fc1d01a0e126a621a"
Vary: Accept-Encoding
X-Request-Id: 8fade276-3d12-4ea7-971f-b3032f10546a
X-Runtime: 0.008977


--- Additional Info ---
Magic:  PNG image data, 64 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size:   1332
Md5:    b1783f0883dfde8bc164d8d52e4d94d3
Sha1:   0e01b5f812358e3a70d9d81a19114c6b29b436f8
Sha256: a51ca830974201aa242666ae61f888e4bc337ee7c2875d2fc1d01a0e126a621a
                                        
                                            GET /assets/market-icon-1-cb5c6253a913ee7226eb36ecaaa1d000f166b0df4a3ce40f293639c96b2519dd.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 700
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "cb5c6253a913ee7226eb36ecaaa1d000f166b0df4a3ce40f293639c96b2519dd"
X-Request-Id: 5eac3903-77b2-4482-b008-30962e1c2c80
X-Runtime: 0.006307


--- Additional Info ---
Magic:  PNG image data, 36 x 33, 8-bit colormap, non-interlaced\012- data
Size:   700
Md5:    d05d20b93bae41b850f15f84899a568c
Sha1:   954226547b5539774f1621a6c3720245bf13a645
Sha256: cb5c6253a913ee7226eb36ecaaa1d000f166b0df4a3ce40f293639c96b2519dd
                                        
                                            GET /assets/market-icon-3-a9e5c4115f79bb9445b62efc54d9f4a47d5d1c09170194b8db68e3c9f022b208.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 927
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "a9e5c4115f79bb9445b62efc54d9f4a47d5d1c09170194b8db68e3c9f022b208"
X-Request-Id: 3530d368-10b3-4318-aa72-a2fabd308235
X-Runtime: 0.004775


--- Additional Info ---
Magic:  PNG image data, 26 x 26, 8-bit colormap, non-interlaced\012- data
Size:   927
Md5:    e7ddca2a4c1578112df8288068087e0e
Sha1:   a9b9403b16cc6b967d375504ace9af68d2cf5287
Sha256: a9e5c4115f79bb9445b62efc54d9f4a47d5d1c09170194b8db68e3c9f022b208
                                        
                                            GET /assets/report.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 1817
Connection: keep-alive
Cache-Control: public, must-revalidate
Etag: "bf3f64bc7508060704167c24c41050575e6a294d8ae79c973e1fc694c289fd94"
Vary: Accept-Encoding
X-Request-Id: 382ed622-44d8-4681-aea5-31e6ef85e521
X-Runtime: 0.003897


--- Additional Info ---
Magic:  PNG image data, 20 x 21, 8-bit/color RGBA, non-interlaced\012- data
Size:   1817
Md5:    362fb7fcb46d6be236858e319608ca4a
Sha1:   607ea55ee9a26cba718c4941b1844a667a746d9f
Sha256: bf3f64bc7508060704167c24c41050575e6a294d8ae79c973e1fc694c289fd94
                                        
                                            GET /assets/market-icon-4-15ae1a31ecf99db72763231e5afc63f65f48d089be376487bf6ed7aa07b43dbf.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 613
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "15ae1a31ecf99db72763231e5afc63f65f48d089be376487bf6ed7aa07b43dbf"
X-Request-Id: 3763aa7f-c0e3-40a0-972c-9e7df85eda90
X-Runtime: 0.006596


--- Additional Info ---
Magic:  PNG image data, 26 x 31, 8-bit colormap, non-interlaced\012- data
Size:   613
Md5:    e87ff7baee58937d276eaf4f270e3da4
Sha1:   6dd23481c840b240c48f0c75880cb3abbcf493d3
Sha256: 15ae1a31ecf99db72763231e5afc63f65f48d089be376487bf6ed7aa07b43dbf
                                        
                                            GET /assets/market-icon-2-7faf3da364084c00d527808270ff7450caff077a15a66fe8e76d11b986832134.png HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 690
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "7faf3da364084c00d527808270ff7450caff077a15a66fe8e76d11b986832134"
X-Request-Id: ed75e554-3e1d-4467-a35d-1e37ba57477c
X-Runtime: 0.005406


--- Additional Info ---
Magic:  PNG image data, 33 x 34, 8-bit colormap, non-interlaced\012- data
Size:   690
Md5:    0d67f49bbf7cc389de882c57365edd23
Sha1:   bb67820640e09b3567e9ba656287337e586f4df4
Sha256: 7faf3da364084c00d527808270ff7450caff077a15a66fe8e76d11b986832134
                                        
                                            GET /foreks-web-widget/gainloss/view/gainloss-gedik/currency/TL/amount/1000?theme=gedik&lang=tr HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Set-Cookie: org.springframework.web.servlet.i18n.CookieLocaleResolver.LOCALE=tr; Path=/; HttpOnly JSESSIONID=31015E76D5081F638AD8C91170E176BC; Path=/foreks-web-widget; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Language: tr
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   2338
Md5:    0c32d2247880d111d866765fa9b78ca7
Sha1:   a15febf438f0056979aab0e61f45158fabfec33f
Sha256: b6e035d397a43f5855608cbe96d6f88a2d3da4760f1ed4bd772452af3aebf4a7
                                        
                                            GET /css?family=Open+Sans:400,600,300&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 12:23:39 GMT
date: Tue, 04 Oct 2022 12:23:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /foreks-web-widget/news/foreks/stock/*?lang=tr&theme=gedik HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: CloudFront-Signature=gx3sYgqLie1CYm4d~NlN3b~pQnGVk73D3nfcotbfqTl4-CJp~AKD2~sUpXXLxk9L4m21vTnRIEwW0QN1A8dHOwWnDV38b~Q~wSrzKToMEMqfywW96QibSJPinZsBGPwlrpJ4sYBgyvysKNiNSBOSwk0kl3s0oT4E4oGShvtgzlWeVFo43wTz4u4AKRfMKsBm0ujwSKyxda2itZ90891iaOB5on58co7nXn0Ybd1xJ-pH9hr3ET2h-3ER7fb19FOnXJdvMriWcX3TDO7t~nPsFVQ-rKNQlZmv4ulq9769rTuWCvfx4yR1ohU0eKyXpCy3e31YccJAhtmphv-AD-iOyw__; Path=/; Domain=.foreks.com; Secure; HTTPOnly CloudFront-Key-Pair-Id=APKAIVVJE7R23ILHVNCQ; Path=/; Domain=.foreks.com; Secure; HTTPOnly CloudFront-Policy=eyJTdGF0ZW1lbnQiOiBbeyJSZXNvdXJjZSI6Imh0dHBzOi8vbmV3cy1jb250ZW50LmZvcmVrcy5jb20vKiIsIkNvbmRpdGlvbiI6eyJEYXRlTGVzc1RoYW4iOnsiQVdTOkVwb2NoVGltZSI6MTY2NDg4OTgyMH19fV19; Path=/; Domain=.foreks.com; Secure; HTTPOnly JSESSIONID=DFDC257536037BEC95DF01CB186281E4; Path=/foreks-web-widget; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Language: tr
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   5355
Md5:    0524e921f0013162e194b86e6fbac9fd
Sha1:   9554f839bd54458bbbba605c558b08d1bbadbcd0
Sha256: 34683b5bd0892f8653dc069b8bf93f6d7129bde9e5b6b9aa5dc4e36149463158
                                        
                                            GET /foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/html;charset=UTF-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Set-Cookie: org.springframework.web.servlet.i18n.CookieLocaleResolver.LOCALE=tr; Path=/; HttpOnly JSESSIONID=34CDFD6AE73D8843A115A02E54096604; Path=/foreks-web-widget; HttpOnly
Cache-Control: no-cache
Pragma: no-cache
Expires: 0
Content-Language: tr
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   16118
Md5:    19ed11047c5b31d7b61c08b98d8db3c3
Sha1:   0a120df0d813a2819c2d932b497ab7809713ec42
Sha256: caacede2236b1b13198528cd4c6085e08b62a42f052e41fdd22d653b7fc0c653
                                        
                                            GET /widgets/widget-translate/0.0/widget-translate.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 30308
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 17:19:26 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 12:06:49 GMT
cache-control: max-age=450000
etag: "af05f077d32fcc82b188e18ad146c5fa"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DNdHddq61rGAIV-vP_gQFuj5e4DRBqA9oivLgjhC5QIxDmI5L1kCcA==
age: 1012
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30308), with no line terminators
Size:   30308
Md5:    af05f077d32fcc82b188e18ad146c5fa
Sha1:   ded96d5e6259348c275ae83465f7d3919fcd3ef7
Sha256: fabf2112c9654bd47520a0d384098c17fa37d89c9a668dd83ff8ad420363d396
                                        
                                            GET /assets/fontawesome-webfont-2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe.woff2 HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 77160
Connection: keep-alive
Cache-Control: public, max-age=31536000
Etag: "2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe"
X-Request-Id: 3bc9bcde-7853-48fa-992d-819386da44a5
X-Runtime: 0.006065


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /widgets/service-discovery/1.5/service-discovery.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:39:30 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:23:40 GMT
cache-control: max-age=450000
etag: W/"8fdabc2c1ef923502346dcaa9ba4e053"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YeFp5qEPGmvEnmUb0Pwd3tN5YE19demnZMcrxjZQ9IVDv3fxCWXvyg==
age: 275
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5194
Md5:    042ad017f89090d4677e3dc6ea882138
Sha1:   d0ddb909394dcf5ef700bfa670260bb2839c1777
Sha256: 54552e87c42b3cd336e39465c91e39e5318c6d507ce8312498ed99998c323b17
                                        
                                            GET /widgets/top-bottom/0.0/top-bottom.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:43:46 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:11:46 GMT
cache-control: max-age=450000
etag: W/"927290056add92a73a23af9641b2ee7f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BNdPzdFzhKOOaISSsenDI7irq1CoT-0Mdud3tBZnKYdp_V7u_oSSIQ==
age: 715
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2098
Md5:    387d3ad833f4d5a15c8060519ebb331d
Sha1:   b87d1270b0bb774799d5b8de7f700d4d70a2a5c5
Sha256: 4e4bde6d7bc0998505f95ac4ed5621dba6885a5ce5f51a2a0751d29a749bc0a8
                                        
                                            GET /foreks-web-widget/assets/themes/gedik/css/gainloss-extend.css HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/gainloss/view/gainloss-gedik/currency/TL/amount/1000?theme=gedik&lang=tr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 959
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   959
Md5:    277c9aff050a5ccff5e60fa89dbf2d45
Sha1:   df0ee0c30ef945580d6b2add6833f2599893abd5
Sha256: dcbce135419aebcc48a245e91559d4c873174f048dd8ca9af971ad1194d7bde7
                                        
                                            GET /widgets/pubsub-connector/0.19/pubsub-connector.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:38:37 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:09:28 GMT
cache-control: max-age=450000
etag: W/"12053b5f084a8e1c16b2be09610c0d48"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: acTL4nE4HTB4ysk70NPkhGbNGVUQJ1AtrSgw9Mmha8GmFFNAX6NkoA==
age: 853
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   51566
Md5:    bf9f13347801f559be004dcb4e5aa6dc
Sha1:   22a5623cc36fb6aa0ea3f1b176aa0c2f7563a232
Sha256: 0fc680236f13ece80ccbd91b306c6badbee6ae1d7bb1710d87fdf79c61165f93
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 03 Oct 2022 22:22:20 GMT
Expires: Tue, 04 Oct 2022 22:22:20 GMT
ETag: "0abfaf9977359ff13658fc879cdeadfad373c410"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    9e6f3d2fcc226e7122343a4faf2c0cec
Sha1:   0abfaf9977359ff13658fc879cdeadfad373c410
Sha256: 4b6b23bc78fc6e03e4e791b8be777380596c7cb2dff2010b8d1b33d3062eb97a
                                        
                                            GET /foreks-web-widget/assets/js/iframeResizer.contentWindow.js HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/gainloss/view/gainloss-gedik/currency/TL/amount/1000?theme=gedik&lang=tr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 29819
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   29819
Md5:    d5a94813e680b02fadf7f73aa2749c3a
Sha1:   d0a1e70aac1018e6398dc033522b1a65a6a63274
Sha256: 6f52f52d1dbb7f99eca99184894e52b7d79ca5c248ea2e31b2b79acf015cf6a2
                                        
                                            GET /widgets/widget-utils/0.0/widget-utils.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 17:19:32 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:23:40 GMT
cache-control: max-age=450000
etag: W/"f6a7d5603d49a2aa7feef3342eff47ba"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ner2DXiT4BDCVCuXJkFPM7LpEx2wEFtFupotn1w3hrX33CL-iXmLIA==
age: 173
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6605
Md5:    0f19263428378b7e37825c96cd9d0e85
Sha1:   e2f786d0c221f58e2581a4131d5627dfabea09d7
Sha256: 520f9e39f7b9382daffcbe5f1c7cb59b3b009dcec6a3d30b71606bd43a1b4ba2
                                        
                                            GET /foreks-web-widget/assets/themes/gedik/css/news.css HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/news/foreks/stock/*?lang=tr&theme=gedik
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 5073
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   5073
Md5:    5cbbf55827d4177372f33d51f584c9c9
Sha1:   48defe206a6c80068a12b10674b012749197ef34
Sha256: a001a2cdfc31188bceb21fe52c5cf4fcf46d8fd562a2602340c6993dc4cbd0b9
                                        
                                            GET /widgets/domestic-foreign-markets/0.7/domestic-foreign-markets.html HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Origin: https://www.gedik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: text/html
                                        
access-control-allow-origin: *
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD
access-control-max-age: 1209600
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:27:34 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:09:32 GMT
cache-control: max-age=450000
etag: W/"0273dfa1beb8df0922b84be1bd135e69"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: COq-StXV0ciZwiT6Yoj3ERez9JvvGBjI-2dcWbJFQph_x0zK3vNRBA==
age: 849
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2982
Md5:    0cacfa12981f03eb99ed3bfc02b5bdb8
Sha1:   5755faef76e2c0d9886b7de996245d73eaa82501
Sha256: 1a9304499ad73264f30aef23eb086e45dfa804827bf232c0ea305ddb1ee20361
                                        
                                            GET /foreks-web-widget/assets/tools/DataTables-1.9.4/media/css/jquery.dataTables.css HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 4623
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   4623
Md5:    6f54932bf542f8cf1917b726f8a9e39c
Sha1:   031c097c1ccc093713ef8296d82783c2f203a2c9
Sha256: 579c06bda3a56708a5f2043688054db830f201f1c1a774f49acb68ddcd45bc63
                                        
                                            GET /foreks-web-widget/assets/themes/gedik/css/ecalendar.css HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 9082
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   9684
Md5:    ab17e2f93eea8919ac01b8b1784846fd
Sha1:   020f726c316163109e305a1c699e41a46a9aec68
Sha256: e24f55ddfa3819b9be64569e2aae068a404e799e1c19f58be58dd51ae27e0570

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            GET /widgets/symbol-search/0.1/symbol-search.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:40:56 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:11:46 GMT
cache-control: max-age=450000
etag: W/"321b86b2c529c017001af25e5f44fadd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hiM0UeuWmfkoMh8qe_wv_3TC5M8QLTL9HKWTJIeXYTO1DaY4-JGY_w==
age: 715
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12870
Md5:    f9342ad6b2ccca2e8d7c1b4a09374859
Sha1:   e10336defad9c65caff4cfda9beec90f833e8237
Sha256: aae2a7c3c9c3b50fb7aa64a9230bc1b61acde15382cca532ea993df77bee20e3
                                        
                                            GET /yatirim/displays/images/000/000/154/original/Web_Banner_Yazili.jpg?1663749185 HTTP/1.1 
Host: gedik-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.47
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 1012373
date: Tue, 04 Oct 2022 10:40:56 GMT
last-modified: Wed, 21 Sep 2022 08:40:21 GMT
etag: "ea1d02b4c291409445916b593349595a"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CSimO0J2fsCUYeKk3u1bUvGp1POZR3seXgiZVax1hFKPS0OAYQRIwA==
age: 6166
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 4000x1383, components 3\012- data
Size:   1012373
Md5:    ea1d02b4c291409445916b593349595a
Sha1:   0dbbe1b463befd0ef56eccbae3359e16aec000ee
Sha256: bfc3faac973bbfbe0fd60bde63c8301c36ab2e69349e239c308f5019195260b5
                                        
                                            GET /foreks-web-widget/assets/js/jquery-1.9.1.min.js HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/gainloss/view/gainloss-gedik/currency/TL/amount/1000?theme=gedik&lang=tr
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 92593
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (32089)
Size:   92593
Md5:    ace6bda2067c29bcd15eb89a8221df3d
Sha1:   b5926d5e80b94d7eee4e9f1c18b91427d47f2530
Sha256: f76e9ad77bc5d73afc3d4208a860b9447a6e6a41fcfd8336a0ed30dd35252e82
                                        
                                            OPTIONS /sdk/3.0/config/get HTTP/1.1 
Host: wsdkapi.netmera.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type,x-netmera-api-key,x-netmera-device-type,x-netmera-os,x-netmera-sdkv
Referer: https://www.gedik.com/
Origin: https://www.gedik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         185.57.65.123
HTTP/2 204 No Content
content-type: *
                                        
server: nginx
date: Tue, 04 Oct 2022 12:23:40 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: *
access-control-max-age: 1728000
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://webservice.foreks.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 18:53:39 GMT
expires: Tue, 03 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 63002
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size:   16740
Md5:    e43b535855a4ae53bd5b07a6eeb3bf67
Sha1:   6507312d9491156036316484bf8dc41e8b52ddd9
Sha256: b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
                                        
                                            GET /foreks-web-widget/assets/themes/gedik/img/bg-1000tl.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/assets/themes/gedik/css/gainloss-extend.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 2928
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 260 x 225, 8-bit/color RGBA, non-interlaced\012- data
Size:   2928
Md5:    b85497b145d39abc86463ff1a59e46ed
Sha1:   fd12aa3138bc1d5912dc0b617924c2f3d438e6d7
Sha256: 9aa5fa936f0b49a079d7a58290bc5ef56bd90d65d46d0fbfde763d9a6af57190
                                        
                                            GET /widgets/feed-listener-cell/1.3/feed-listener-cell.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:29:49 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:23:40 GMT
cache-control: max-age=450000
etag: W/"588048a97c36d9a2eb22112c855fd272"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jzns_HT9fTqsVxxePV7utgOtrXsY3pMU8KcR9wgq54ywBdDEXD6AVg==
age: 561
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   75151
Md5:    e5c3a5ff9c616fc3eb498148a4ca8326
Sha1:   dfeb0e246eac5d3136c3e1cd4d8578ae7a42761e
Sha256: b24901408c5bbb6381b0de18f4702166284ed241cc89cc06d0e0bef698d7ad2b
                                        
                                            GET /widgets/widget-translate/0.0/locales/angular-locale_tr.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 2413
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 17:19:12 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 12:11:33 GMT
cache-control: max-age=450000
etag: "df7babb5d312b64ee5c891615d91472e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3zibeE7mwip9hUm3Xn5ruvZZF3AQzCFJkKYWH24N5SMwFkT-l-xuYQ==
age: 728
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2413
Md5:    df7babb5d312b64ee5c891615d91472e
Sha1:   22293eea853219f6d0e60aa7cd593dc8d9fd6548
Sha256: b5bec9c5a7f1941d7db7a1076eafb8a76afea6331a08a7722528dcf9b3f2d781
                                        
                                            GET /widgets/domestic-foreign-markets/0.7/domestic-foreign-markets.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:27:34 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 12:09:31 GMT
cache-control: max-age=450000
etag: W/"e90520af97ef5a47fe8469b702a48d79"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PWCCXrY-1LE4PFKiKT0A9YouYvwuo8zCTGU8R-XiOE_bFDyXA2qpLA==
age: 850
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   295695
Md5:    61b0591df7ded3a44dbca27887f55d62
Sha1:   d939a2ba3d7ccf3541c18057356303d910761e70
Sha256: 1ca6d524ab8754fd4831cea3ab1bc0d3b00e29f486296fe0f2aa9f0fa801729b
                                        
                                            GET /foreks-web-widget/assets/tools/highstock-1.3.9/js/highstock.js HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:40 GMT
Content-Length: 183629
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (576)
Size:   183629
Md5:    092a5f3d728475cd6cbf6327b06ee275
Sha1:   661f6a036e09a66e21f124651a2c04ad79405953
Sha256: dfeb0b81515ec8753784d17cc397c2b06c5cbfc34efd78695e7db23c184915bf
                                        
                                            OPTIONS /web-services/stocks/laggers?delay=true HTTP/1.1 
Host: web-swarm.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://www.gedik.com/
Origin: https://www.gedik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         18.198.156.120
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 12:23:41 GMT
content-length: 28
server: Apache-Coyote/1.1
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, origin, content-type, accept, authorization, mobile-id, mobile-company, foreks-auth, foreks-profile, company, resource
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-origin: https://www.gedik.com
access-control-max-age: 1209600
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   28
Md5:    8060fdc1bab2fb411088d7096fd3cdd9
Sha1:   187bce7de3b40b8d4989664a49f35ec327046b6f
Sha256: f748f99cda64cb6adf384bbdf8fcca34141d6ece0c220e5365a25fe410d14787
                                        
                                            GET /sdk/3.0/config/get HTTP/1.1 
Host: wsdkapi.netmera.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
content-type: application/json
x-netmera-api-key: hHqCjlXQ8eb9yLR6w82ijuiK25hLa7seQYRbIomE3zegSsU4eDTTGA
x-netmera-device-type: DESKTOP
x-netmera-os: FIREFOX
x-netmera-sdkv: 4.2.14
Origin: https://www.gedik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         185.57.65.123
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
                                        
server: nginx
date: Tue, 04 Oct 2022 12:23:41 GMT
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-methods: GET, POST, PUT, OPTIONS
x-robots-tag: noindex
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (5733), with no line terminators
Size:   5733
Md5:    778c5e19d3959869991a448ee4ec73e8
Sha1:   d8c01e888860072205a8e6cb22b4e36ad57074ae
Sha256: fb2ef241799b675babc57d5c17a3b425002511a9a6024b04ca0f62140c8bf1cd
                                        
                                            GET /foreks-web-widget/assets/images/flags/AT.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 114
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 2-bit colormap, non-interlaced\012- data
Size:   114
Md5:    c198b5daf821236030723cf7d44eff02
Sha1:   4ed285bd624b8c0540933874820f851450068601
Sha256: af314d8b41bb668c14078f3c0cf10350f13593ae9b08b7f51ee513d8774bfab0
                                        
                                            GET /foreks-web-widget/assets/images/flags/NZ.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1600
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1600
Md5:    07ccf321cd33b23effb553aa7d453b5a
Sha1:   7fb387c5d2775156a7e93f58f364d8c8353b64f9
Sha256: b757cd35c215fb412c552a7aa143adfb384d70bd64b8be3c18cec844ee85a52a
                                        
                                            GET /foreks-web-widget/assets/images/flags/GR.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 256
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   256
Md5:    0dc4ca7cfb47af4206576c601204cd63
Sha1:   ab9212c29eaf9ecbbf08e399b1e168cbebfd723c
Sha256: adb2b47256f6a3467fea15d603c91fead1d065cc0e573dbcf32d3be0c6f14a97
                                        
                                            GET /foreks-web-widget/assets/images/icons/arrow_down_blue.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 674
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 44 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size:   674
Md5:    1304be91b5f7b9dba1897b8a00900bb0
Sha1:   08abdbe53a865964923e006220be5c9594407054
Sha256: df00bb1e088a302849174713605a9cd3d07e59019c1e47db6f59db10c18c706c
                                        
                                            GET /foreks-web-widget/assets/images/flags/AU.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1206
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1206
Md5:    0628a407a3df73d658e75a721f3a106d
Sha1:   b7f17806b8889ec27114fb2170b429ae87b301ed
Sha256: 8bf063b3a1d08d13ae150c64c6bd7472f2cd138d5d0ff283e72e23d249f569b9
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 10:41:09 GMT
expires: Tue, 04 Oct 2022 12:41:09 GMT
cache-control: public, max-age=7200
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
age: 6152
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /foreks-web-widget/assets/images/flags/AR.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1464
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit/color RGB, non-interlaced\012- data
Size:   1464
Md5:    116b4bb6789ded0d23298e94648019b1
Sha1:   a7c76924dabc1ca7b6dec37b9575a3a893eec30a
Sha256: 951faae967b8ff53ecaf047bcdcc3ddb32bbc249db2346f311e29cdc783c8ad3
                                        
                                            GET /AjaxLoader.gif HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gedik.com/assets/application-af4ab796de6d50f7a3c1c9526c7ee3ce3b0febec979a3a03cbda7d41ba70b280.css
Cookie: _gedik-yatirim-client_session=anFERmZITElacmg2ZTBuZzczQm9tb3owdm1zQVVKM2orVlNPcHVzWldTVE9sc3RSNUgxb0J0Qjg1c3NVL2Y0TkZWemh1ZE5sWXREK2ZtZ3dodklQVjZXS0hGb2NKUnI0VnJKQWdidkttTm9ZRkExeVpHL1NGTFpNVFZlejVIbzF1VFdvVUJBNENQU002Y0tkWTg3Tk9BPT0tLVRCUlJScmxEa0lsbGFKaHYrcUkzRmc9PQ%3D%3D--8f632a724a9e3ed441777c2ac893dabca4e414f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219; _n_did=7e8787e9-37d1-4678-ae35-5084dbcedb70; _n_iid=xOsnK2jWz73; _n_uid=BS1bphQamC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; connect-src *; img-src * data:
Referrer-Policy: strict-origin-when-cross-origin
Feature-Policy: autoplay 'self'; camera 'self'; encrypted-media *; fullscreen *; microphone 'self';
Etag: W/"0878380f7955c9276b3566ac1ef402a4"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: c8341ec3-29f1-4c82-8bcb-907a6839e68e
X-Runtime: 0.268768
Set-Cookie: _gedik-yatirim-client_session=VWFyNkRNTkhkTy8wNldaRFhoZDZnQnlncXoxV2kzSzFVQU8wTHJEZDVtbzVuUkVzM3JTSjE4clFXM21ycngvaEFKYWhQUkpVNmh0dERmcm1iQ0tYZDZxcFlwU1hZYktyQk5oK0lVMHcybGpiYU9vRmxRRWRxT3ROb0RoMFZkZnNFUUJyVDdHWnRxVURZUkhSR2xRZ0NRPT0tLVkyMW84V1FuV1huY0F6NjduZy9UV2c9PQ%3D%3D--eb93a11a0576dd127f4d7157bdc1684a476887f3; path=/; secure; HttpOnly; SameSite=Strict
Content-Encoding: gzip
content-length: 13157


--- Additional Info ---
Magic:  data
Size:   8597
Md5:    66f9f0f915a78f83eb73b696a23b201d
Sha1:   6812a7d28b7ef33e846d45b266d96e81249d266c
Sha256: 76daabbaf5e9c8df53f9d626e4fcbf3a167b8d21c870411dfb84bb5f452f4326
                                        
                                            GET /web-services/stocks/leaders?delay=true HTTP/1.1 
Host: web-swarm.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Authorization: Basic Zm9yZWtzd2lkZ2V0OjEyMzU2
Origin: https://www.gedik.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         18.198.156.120
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 12:23:41 GMT
content-length: 1580
server: Apache-Coyote/1.1
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, origin, content-type, accept, authorization, mobile-id, mobile-company, foreks-auth, foreks-profile, company, resource
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-origin: https://www.gedik.com
access-control-max-age: 1209600
etag: "1664886214553.1708532886"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1580), with no line terminators
Size:   1580
Md5:    ead7835ef3d8cec2ce3d0c079b8a188c
Sha1:   32abe41e12dd6d54c8a6bccdfe6c3f0aa91f39bd
Sha256: 5c2f3ee3fa0b86d01995b90690bc5a7be5ddd3a99481e4d1e77df80cd11ec1ac
                                        
                                            GET /gtm/optimize.js?id=GTM-K8MHN9P HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 12:23:41 GMT
expires: Tue, 04 Oct 2022 12:23:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50774
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (22554)
Size:   50774
Md5:    2bdd23c51314eeed32d26e07f168c2e4
Sha1:   3f9a2c61bd2fb0af1d56997a0ac13de803cb6ddd
Sha256: ce44110c35a8dd063aabfd95d68846ba956a06a73726d8cad4252279e70bac18
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5606
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 12:23:41 GMT
Last-Modified: Tue, 04 Oct 2022 10:50:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /foreks-web-widget/assets/images/flags/CZ.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 884
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   884
Md5:    a7cf4ce99dec32eed50d8f84ba600b03
Sha1:   cb2bb3337b62e0d978e135cb349fbbb6b7976a99
Sha256: 8f9449503511a0e0e2bd067739fc85cb9231e3972e106768d9490225b5bc1706
                                        
                                            GET /foreks-web-widget/assets/images/flags/GB.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1867
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit/color RGB, non-interlaced\012- data
Size:   1867
Md5:    9070c246b6282b94c6bba1a7225c0d7b
Sha1:   55f954aaf3463bb9bde708b33e2f1c071738c3e1
Sha256: 33f9f205b416ba8b1c17237978b90a53382903a7eeb8047235be5a6e45174101
                                        
                                            GET /foreks-web-widget/assets/images/flags/US.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 2187
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit/color RGB, non-interlaced\012- data
Size:   2187
Md5:    42fab0cd1bddc55387315dc0e1f5dd74
Sha1:   82ef56b18cd4c9a3ba1644d3dfc7bae17432a17b
Sha256: 6f82665da0984babc2e15a6dfdf0fbdc97347cb93fdc03915a37b14ce6285ff6
                                        
                                            GET /foreks-web-widget/assets/images/flags/BR.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 2208
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit/color RGB, non-interlaced\012- data
Size:   2208
Md5:    cde7882aad030b13bfea9c4c4d8a73bd
Sha1:   b554e6f532ce81717ba08ce86798c742827c304c
Sha256: 24afe9ab7483735b4b227a287f513c50277c398b1c15e2d2928df314a97e8f08
                                        
                                            GET /foreks-web-widget/assets/images/flags/CN.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 844
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   844
Md5:    99681879dc9441603f371573234e52d9
Sha1:   71b6e12b9577d52b53db4f685824d4dbc102cc08
Sha256: 6ac0968a5df074add81681652f1f9c329e8e64de89926ed320f874a0a9dd4c4c
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.121
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=60441
date: Tue, 04 Oct 2022 12:23:41 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7751)
Size:   3063
Md5:    57efbbeb3e1d23c82b677511c67c8b0e
Sha1:   f927ba115ef4be362694c22850ddbdd1c1b054d1
Sha256: 873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Tue, 04 Oct 2022 12:23:41 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1646-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57443), with no line terminators
Size:   15317
Md5:    1e9c4d503a9e162d8b549dc3d9c040e2
Sha1:   1fa99d7d7e878cdd45567af4b0c3c65542036c1d
Sha256: f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
                                        
                                            GET /en_US/fbevents.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
                                        
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: SWkynS62TdYsoY24ojvGxA82zP5kygVnkuMEK9xxm5mch+nH4v4j74u8ftlEobnJQ4pJQZgLXkq6lWUFeszyRQ==
content-length: 26840
x-fb-trip-id: 1904183273
date: Tue, 04 Oct 2022 12:23:41 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (64348)
Size:   26840
Md5:    e1327a02d76346c7e23d114e4e508b30
Sha1:   195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
Sha256: 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
                                        
                                            GET /libtrc/unip/1435428/tfa.js HTTP/1.1 
Host: cdn.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.44
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
x-amz-id-2: L8ld0RufbbJLS4+/4yzfMwdi97iyGFQ5ktXSsI8zG/CmQ+psKYpuq28KbqhBi92eFQ7Fy6btmlw=
x-amz-request-id: SM89CTA0365GQ6JK
x-amz-replication-status: COMPLETED
last-modified: Sun, 02 Oct 2022 11:43:43 GMT
etag: "921834c11ba2c4d1a13e19b9519ba26e"
x-amz-version-id: SytVEC9T17rDdwTlZKNNdsWNqhGrgQGk
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Tue, 04 Oct 2022 12:23:41 GMT
via: 1.1 varnish
age: 7239
x-served-by: cache-bma1650-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664886222.518238,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 14
content-length: 17953
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (58491)
Size:   17953
Md5:    ae714067c3964887d8ea4a018ee95615
Sha1:   616a13142f42a1d9c44e3af22453431dd4f52a38
Sha256: 7584764fa9151f29a82217141e23c41cd10ce48def3540af51b81b311a51559d
                                        
                                            GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.202
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 02:47:33 GMT
expires: Mon, 02 Oct 2023 02:47:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 207368
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32086)
Size:   33434
Md5:    430e927c980ad4079de727fa59dd93f2
Sha1:   891aaada9a55a91292999f6d50fd300439905982
Sha256: e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /foreks-web-widget/gainloss/data HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 147
Origin: https://webservice.foreks.com
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/gainloss/view/gainloss-gedik/currency/TL/amount/1000?theme=gedik&lang=tr
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: application/json;charset=UTF-8
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   240
Md5:    e48760b6507a34e7ee105e7fb0e229f8
Sha1:   b7da0da58e8c17d501275cd261ac406e077f08ca
Sha256: 150defa7ecf477852e3f9db03da708c5c9756c7d1333bc579ae2b10315360576
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 04 Oct 2022 12:23:41 GMT
expires: Tue, 04 Oct 2022 12:23:41 GMT
cache-control: private, max-age=3600
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1654)
Size:   15187
Md5:    8766c5a801f08afceca9b66ff9097e6a
Sha1:   ce7640d1d166eddeb9d40be642ec34652f790713
Sha256: f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99
                                        
                                            POST /gseccovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 939
Connection: keep-alive
Expires: Sat, 08 Oct 2022 10:19:09 GMT
ETag: "3e8357b9df39aeca5ccf63ad3e577950f9a06f3f"
Last-Modified: Tue, 04 Oct 2022 10:19:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1729
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 754de3e4befe0b45-OSL

                                        
                                            GET /assets/gedik-smart-banner-icon.jpg HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=VWFyNkRNTkhkTy8wNldaRFhoZDZnQnlncXoxV2kzSzFVQU8wTHJEZDVtbzVuUkVzM3JTSjE4clFXM21ycngvaEFKYWhQUkpVNmh0dERmcm1iQ0tYZDZxcFlwU1hZYktyQk5oK0lVMHcybGpiYU9vRmxRRWRxT3ROb0RoMFZkZnNFUUJyVDdHWnRxVURZUkhSR2xRZ0NRPT0tLVkyMW84V1FuV1huY0F6NjduZy9UV2c9PQ%3D%3D--eb93a11a0576dd127f4d7157bdc1684a476887f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219; _n_did=7e8787e9-37d1-4678-ae35-5084dbcedb70; _n_iid=xOsnK2jWz73; _n_uid=BS1bphQamC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 6011
Connection: keep-alive
Cache-Control: public, must-revalidate
Etag: "226e78f45c32002af740b864e06ebc7c4a9a6e1a11b55b66de332dca2d86c1eb"
Vary: Accept-Encoding
X-Request-Id: f792fda7-183e-4ab6-9b25-2e7e1ea1381d
X-Runtime: 0.004950


--- Additional Info ---
Magic:  PNG image data, 175 x 175, 8-bit/color RGB, non-interlaced\012- data
Size:   6011
Md5:    a61c784ecb4e0284d7d170005d7d4f48
Sha1:   fd3b260c6420bfd0a749e12ba1f88bac469cb2b4
Sha256: 226e78f45c32002af740b864e06ebc7c4a9a6e1a11b55b66de332dca2d86c1eb
                                        
                                            GET /pagead/viewthroughconversion/866956607/?random=1664886219854&cv=9&fst=1664886219854&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.gedik.com%2F&tiba=Gedik%20Yat%C4%B1r%C4%B1m%20%7C%20Hisse%20Senedi%2C%20VIOP%2C%20Yurtd%C4%B1%C5%9F%C4%B1%20Hisseler%2C%20Eurobond%2C%20Forex%20%C4%B0%C5%9Flemleri&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.66
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 12:23:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1070
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 12:38:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2366), with no line terminators
Size:   1070
Md5:    e7b015f67724d19ffa8ead780acac8f1
Sha1:   e3a3a39e6ae0bef56fe5976e54fa7e1ea2ccce99
Sha256: 1feb700a81869764d76626e231b40d0162370a41b44d52765b54653b724d52e7
                                        
                                            GET /foreks-web-widget/assets/images/flags/ID.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 97
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 1-bit colormap, non-interlaced\012- data
Size:   97
Md5:    636c534681ac1aaf2c99748a23e3c56c
Sha1:   7db81d9043fd4530288fca901ba0a949d72a56e8
Sha256: 2b9da2cb91397de8afb47aefd06421004d78cd1f28b567d38cd5581ff21b1357
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5606
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 12:23:41 GMT
Last-Modified: Tue, 04 Oct 2022 10:50:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.gedik.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Cookie: _gedik-yatirim-client_session=VWFyNkRNTkhkTy8wNldaRFhoZDZnQnlncXoxV2kzSzFVQU8wTHJEZDVtbzVuUkVzM3JTSjE4clFXM21ycngvaEFKYWhQUkpVNmh0dERmcm1iQ0tYZDZxcFlwU1hZYktyQk5oK0lVMHcybGpiYU9vRmxRRWRxT3ROb0RoMFZkZnNFUUJyVDdHWnRxVURZUkhSR2xRZ0NRPT0tLVkyMW84V1FuV1huY0F6NjduZy9UV2c9PQ%3D%3D--eb93a11a0576dd127f4d7157bdc1684a476887f3; cookiesession1=678A8C339890134ABCDEFGHIJKLM10ED; _gcl_au=1.1.459116689.1664886219; _ga_JQ83J74YHE=GS1.1.1664886219.1.0.1664886219.0.0.0; _ga=GA1.1.87565218.1664886219; _n_did=7e8787e9-37d1-4678-ae35-5084dbcedb70; _n_iid=xOsnK2jWz73; _n_uid=BS1bphQamC
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.25.113
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1150
Connection: keep-alive
Last-Modified: Wed, 30 Mar 2022 11:05:21 GMT


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    bcdc301cab111fa8437c68402485be79
Sha1:   560bafda88742945e3ebd8a67fd3eaf0b032084f
Sha256: a419912163a1f5f2963f1b90adfcfbec6db1ff11186b9460577aca7e5001a043
                                        
                                            GET /foreks-web-widget/assets/images/flags/EU.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1098
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1098
Md5:    e7928644d8f9808c70a083658a01be7f
Sha1:   22d2a21e31506b56eec06eefde73b14c31610b9f
Sha256: 91661ceba1e79fdc8f6ef66c0e60f663913060909bf0239676012529ee792e1e
                                        
                                            GET /foreks-web-widget/assets/images/flags/KR.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1711
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1711
Md5:    a34f7bd44d72cea9d7d6631c91609fe1
Sha1:   b13dee70a4cfdca60e177237820eaa74f596a0b5
Sha256: a85dbb7cbcab87a3e1f1a0e85e85ca3d73e80f53dd470ef4956db40df1356061
                                        
                                            GET /modules.61e17720cf639c3e96a7.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.40
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 66156
date: Tue, 04 Oct 2022 09:20:29 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "ca82760cd662a268a9b556ae44a96740"
last-modified: Tue, 04 Oct 2022 07:09:34 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _qsH6riufZoMt7bWuPfztDnRlILFUWDLCjNqYEpRvg9EGI8th7aP9A==
age: 10992
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   66156
Md5:    ca82760cd662a268a9b556ae44a96740
Sha1:   7d7e28b6029ab3449f2183a73b8f0dbb93dd9386
Sha256: 0e98f16bb4945f08b2f0e9be3108864e2f2db7ed792bc9049404cac6038d75d3
                                        
                                            GET /foreks-web-widget/assets/images/flags/FR.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 115
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 2-bit colormap, non-interlaced\012- data
Size:   115
Md5:    56f30b76f84b048c7e70ce56af444e07
Sha1:   1c4743d8532b20308cfb475e03d969567a58f63b
Sha256: 426ab23184af0e6402abb4d740171593c5066eb08a00a101f510b0174ad43516
                                        
                                            GET /foreks-web-widget/assets/images/flags/ZA.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1664
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1664
Md5:    4845a7d5bb06e650055980e70d2111b3
Sha1:   3013ddece4bf5f3b358ba22687e75e3b7e851586
Sha256: 386546ec82643cbc5184b2b57238c06e73258df550d8b6fe9d2797695edd20bd
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 12:23:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /foreks-web-widget/assets/images/gainloss/arrow-up.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/gainloss/view/gainloss-gedik/currency/TL/amount/1000?theme=gedik&lang=tr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1402
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size:   1402
Md5:    791898aa2ca82f4be3826f2c58f01295
Sha1:   449719ee74ee5c74cb087f79696d42585bb8c3a0
Sha256: 7804d060d00d12dd1cd045039504ccc825fb76abcff101d4ad937f577e741410
                                        
                                            GET /metrika/watch.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         77.88.21.119
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 57285
date: Tue, 04 Oct 2022 12:23:41 GMT
access-control-allow-origin: *
etag: "633be002-dfc5"
expires: Tue, 04 Oct 2022 13:23:41 GMT
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (570)
Size:   57285
Md5:    44366cc385a5c0f49df4f22b71434b42
Sha1:   3f56349f8a3fff52e28a3300052bdc2bde97371c
Sha256: 485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd
                                        
                                            GET /c/hotjar-1617364.js?sv=7 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.98
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 12:22:52 GMT
cache-control: max-age=60
etag: W/91b2d4994dd040add53b7cf185363f30
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5mQkgnpqWex2-IPa2NqEEQuiKZgB90ZK6hfKIyqE7LKo2WH7rxb5KQ==
age: 49
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3790)
Size:   3546
Md5:    468581feb7f200f02221a4ce961fa3f3
Sha1:   70342c1cf7d7b5309ed6074025b8a24697deef0c
Sha256: 4f7caa31914edd64ec0390dc9c3ddf1ec005080fe7b89b99f60532f9e66ff762
                                        
                                            GET /foreks-web-widget/assets/images/flags/IN.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1221
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1221
Md5:    449e24ce8fe0636326ea9102975b856e
Sha1:   6e6cde95779b5bec6626d1776ea714efcfd736df
Sha256: f73e716e670099f414d4b48262be43f412cec6a5ca8e4c82f727153d20a0e5af
                                        
                                            GET /widgets/angular/1.8.2/angular.min.js HTTP/1.1 
Host: web-node-cdn.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.85
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-replication-status: COMPLETED
last-modified: Thu, 16 Jun 2022 16:24:13 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Tue, 04 Oct 2022 11:55:33 GMT
cache-control: max-age=450000
etag: W/"a8b55518d979465737523088a9007e74"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DAF4Zkcps4TZFlBss6qsl4NVytynDBUBfIjfew8EUFxh1LxPPvfC_A==
age: 1688
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   62906
Md5:    24ba51f74dc7773ed645971da46db8cc
Sha1:   78433dad7bc0d75d85dffff4fa2c440b6f91562a
Sha256: 768744f00d60eb6638ba49732c3c78b997b2e72c6c76cf5e95023b416ee75c08
                                        
                                            GET /foreks-web-widget/assets/images/flags/JP.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 575
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   575
Md5:    82bcbc57160369a3d1ffcc304318b9de
Sha1:   e8f5acc5fddfaf95d04c8e9d5146879d1c6d260d
Sha256: 7f8f8454da8da3e652a2c6a976820c854bb2af46529e7d999fe6e576ac54ba34
                                        
                                            GET /foreks-web-widget/assets/images/flags/HK.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 1657
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit colormap, non-interlaced\012- data
Size:   1657
Md5:    8c09700e4079038fc9e32c134cd6d9cd
Sha1:   58184ac761f70ef614939f6deeb50dec0c83bd0a
Sha256: 00a7409411b906559f0a42d66e5dc8eaf0ca8d1eff282764530de628413c26fc
                                        
                                            GET /pagead/1p-user-list/866956607/?random=1664886219854&cv=9&fst=1664884800000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.gedik.com%2F&tiba=Gedik%20Yat%C4%B1r%C4%B1m%20%7C%20Hisse%20Senedi%2C%20VIOP%2C%20Yurtd%C4%B1%C5%9F%C4%B1%20Hisseler%2C%20Eurobond%2C%20Forex%20%C4%B0%C5%9Flemleri&fmt=3&is_vtc=1&random=3256131274&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gedik.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 12:23:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /foreks-web-widget/assets/images/flags/ES.png HTTP/1.1 
Host: webservice.foreks.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://webservice.foreks.com/foreks-web-widget/table/ecalendar-advanced?lang=tr&theme=gedik
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         95.0.13.134
HTTP/1.1 200
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 04 Oct 2022 12:23:41 GMT
Content-Length: 2323
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: POST, GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
Last-Modified: Wed, 28 Sep 2022 09:59:06 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 84 x 84, 8-bit/color RGB, non-interlaced\012- data
Size:   2323
Md5:    ed37d3e74554142de5922c018304fd78
Sha1:   b8452b1ae05a3e4a87152f6dc7420983ac202f6c
Sha256: 4d613ef7a0739c9142d2f98cc6b16063a0635ba1851091116da97f3f4ff261ba
                                        
                                            GET /foreks-web-widget/assets/images/flags/CH.png HTTP/1.1 
Host: webservice.foreks.com