Report - lb.dr.com.tr/eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4

Report Overview

Submitted URL
lb.dr.com.tr/eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
IP
91.235.64.15
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
Submitted
2022-12-21 19:05:43
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	376 B	92 kB	172.217.21.168
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-09T05:13:15Z	362 B	16 kB	151.101.244.157
rt.visilabs.net	65861	2017-01-03T15:03:58Z	2023-03-08T15:04:11Z	853 B	549 B	185.29.195.174
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	3.1 kB	6.4 kB	93.184.220.29
www.dr.com.tr	165972	2012-10-01T02:26:49Z	2023-03-07T11:22:06Z	17 kB	390 kB	46.17.134.217
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-09T13:41:05Z	865 B	1.9 kB	142.250.74.130
ams.creativecdn.com	13154	2017-05-14T13:46:11Z	2023-03-09T15:17:58Z	1.9 kB	2.1 kB	185.184.8.90
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-09T07:43:12Z	599 B	708 B	64.233.164.156
fledge-eu.creativecdn.com	unknown	2022-04-27T09:58:00Z	2023-03-09T18:07:06Z	596 B	988 B	185.184.8.90
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-09T05:17:29Z	2.1 kB	1.0 kB	162.247.241.14
i.dr.com.tr	243545	2016-02-13T12:54:08Z	2023-03-07T11:17:09Z	2.3 kB	191 kB	143.204.55.128
vsh.visilabs.net	123161	2015-10-19T17:21:20Z	2023-03-08T15:04:10Z	431 B	467 B	185.29.195.172
per2.segmentify.com	90645	2021-08-25T11:41:50Z	2023-03-08T15:04:10Z	2.1 kB	2.9 kB	95.214.74.47
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	780 B	349 B	31.13.72.36
lgr.visilabs.net	65410	2017-01-03T15:03:58Z	2023-03-08T15:04:11Z	854 B	390 B	185.29.195.171
rpdn.relateddigital.com	53426	2020-12-21T23:01:09Z	2023-03-08T15:04:10Z	435 B	734 B	13.107.246.53
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	64 kB	34.120.237.76
adservice.google.com	76	2021-02-20T17:10:48Z	2023-03-09T13:58:16Z	884 B	1.0 kB	142.250.74.130
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-09T13:53:17Z	758 B	65 kB	142.250.74.110
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-09T05:09:57Z	371 B	29 kB	31.13.72.12
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
cdn.segmentify.com	45412	2014-11-29T05:41:53Z	2023-03-08T18:30:26Z	402 B	58 kB	34.120.65.227
wps.relateddigital.com	68279	2018-01-24T14:20:05Z	2023-03-08T15:04:10Z	1.3 kB	2.6 kB	91.235.64.232
4876222.fls.doubleclick.net	328848	2019-10-02T10:08:40Z	2023-03-07T11:17:11Z	878 B	1.3 kB	142.250.74.38
adservice.google.no	96969	2018-06-20T01:38:38Z	2023-03-09T05:13:18Z	876 B	1.1 kB	172.217.21.162
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-09T05:18:04Z	922 B	613 B	104.244.42.3
dr.api.useinsider.com	306009	2018-11-09T13:30:47Z	2023-03-07T11:17:13Z	373 B	1.1 kB	162.159.134.61
ssc-cms.33across.com	851	2017-06-16T18:07:10Z	2023-03-09T06:26:50Z	423 B	120 B	67.202.105.23
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T11:25:06Z	2.7 kB	7.7 kB	172.64.155.188
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	4.1 kB	8.4 kB	216.58.211.3
static.hotjar.com	641	2014-11-01T06:14:27Z	2023-03-09T05:17:26Z	375 B	628 B	54.230.111.66
cdn.sgmntfy.com	unknown	2022-06-14T06:56:35Z	2023-03-08T15:04:10Z	354 B	4.5 kB	34.149.223.191
t.co	569	2012-07-25T21:09:44Z	2023-03-09T05:18:03Z	905 B	593 B	104.244.42.69
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-09T09:24:51Z	1.4 kB	1.5 kB	142.250.74.67
lb.dr.com.tr	unknown	2017-02-15T22:41:45Z	2023-02-15T06:28:21Z	645 B	1.2 kB	91.235.64.15
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.7 kB	7.1 kB	95.101.11.115
avlsh.visilabs.net	70906	2021-08-15T14:56:18Z	2023-03-08T15:04:11Z	417 B	729 B	13.107.213.53
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	1.4 kB	1.5 kB	216.58.207.228
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-09T05:17:29Z	373 B	19 kB	151.101.130.137
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	54.188.211.138

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-21	medium	sgmntfy.com	Sinkholed

JavaScript (44)

	URL	Size	First Seen	Last Seen
	www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137	288 kB	2023-03-10	2023-03-12
Pretty URL www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:54 Last Seen2023-03-12 10:09:44 Times Seen1 Hash e391d232d82d7ac3fcee08fb1e9735d1 9275ace6d7ba5b60fffa9bab262bb4cf83c5f22a b2dad3c6f778c8424278e89c40a82f0a14c97ca1691378321edb1262d3a8342e Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	479 B	2023-03-08	2023-05-10
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:00 Last Seen2023-05-10 16:07:52 Times Seen36 Hash 9f4b1ca2d684b1522000b692d91388f8 312fb4b90308d650d821c11d61744430e1d949a9 be0bab12bc662d146eb750c24cd3c16d602a51d884a3595c1df5858b50b2df45 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	301 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:54 Last Seen2023-05-04 16:03:05 Times Seen27 Hash b3d54ca31a6bb44182060793a359ba15 a6882f733b32d3c7a765442c145a63b35e9f05fb ede1b23e50c52f850dce9cd34811992d5b1d08f64462b45c3b83036b755a4f8c Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4	2.3 kB	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4 IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:23:19 Last Seen2023-03-10 01:23:19 Times Seen1 Hash c05e98572c8dc54348a46198a6fe1bbb c72dbea585af0be0f6143632032b77d353599064 b1510839d7a762748d2b0b7f437a53ecb593ceb09832308e7a343a47f2a0bb94 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	566 B	2023-03-10	2023-03-12
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-03-12 19:28:10 Times Seen1 Hash b0b9fbe299f2ed6584f5b743c61a7e53 13b0d5089c874370c3b763d3691b7aa734cac62d ddee1d863ca0ec2b39bb0f3c29674370b3aff4ee59a148169b6cfe78469eb43c Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-04 19:13:00 Times Seen1637 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A	1.2 kB	2023-03-10	2023-03-10
Pretty URL fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A IP 185.184.8.90 ASN #204995 Rtb House S.A. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:23:19 Last Seen2023-03-10 01:23:19 Times Seen1 Hash d8b2111733f2657d256105a3c5e956ec b284483ce029e5861233e50b5f30917de581b667 43a3c8f2240df1ac053fd9e4b4dc3abef2c2309a0c2fca2107f27453a5809c8e Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	31 kB	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash 2e6e59f2c517431ea368e3a116121040 3ae106438c0c6c969c81d89510e04517600fb9ba 19eb6bffbdd057b62e02e9232074fb9af1a7fec9e5a9137dee60c7542bf52b85 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	303 B	2023-03-10	2023-03-25
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-03-25 22:32:52 Times Seen3 Hash 4b9964eb4f89d47e83aace6ed77acc43 71f727e91ffc0f25eeaaa1cb4b402beba3717d0a de5b1939a78b77ec2588691979756124449d59b4cbf0923087723dec17cbb0dc Loading...

	js-agent.newrelic.com/nr-spa-1216.min.js	50 kB	2023-03-07	2024-03-22
Pretty URL js-agent.newrelic.com/nr-spa-1216.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:43 Times Seen568 Hash 63e2df852d15ab21d7ff8fc4363222e8 7ee401ba652db0a4ec960350e17216cda01e22fb 545156adeae44dadc82b98d504f805ebe77fb79c928ef34eed1057bb9d4cb8fe Loading...

	tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js	4.0 kB	2023-03-08	2024-03-28
Pretty URL tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:07:51 Last Seen2024-03-28 05:34:49 Times Seen118 Hash 78b3a4445c5c913a617366319a3ea25b e59bf900f39ded98d067e541f5f6387a37402b53 a18ebd731b20d7404e2eed45ad15a0e9068ec7c4eb6d95da6727c086e366227d Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	25 B	2023-03-10	2024-01-20
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:09:19 Last Seen2024-01-20 23:13:09 Times Seen490 Hash aff218c01abf016336a31ccf1430c558 f41e8543f74530e76b2369a99b0ae8d31a21f5f7 4afbd5db19ae81a885a97db30464bdfc5b02554a4e97b50b2e1fb4972cb3eb88 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	413 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:54 Last Seen2023-05-04 16:03:05 Times Seen27 Hash 93195b714ddcd4c4ad7ea5e1fa323a76 1cd40578067093cd1c79b60af3429be35d65ea10 9396d58eb402ab78c8a1c73101e39b08d3b6f84549a1a65059d4ea8f7456879d Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	422 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash 4e5c50dceeb2e6578d0dbb807a2ab314 77feb98233e36059648604af14f11d00e0d5e5a0 e9efb1e33aff28057658d0a0676bb3d5e697b66b048fba0d14385967461c0eeb Loading...

	wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81	90 kB	2023-03-10	2023-03-12
Pretty URL wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81 IP 91.235.64.232 ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:54 Last Seen2023-03-12 19:28:10 Times Seen1 Hash edd241d463164865bbeb03cf116814a5 75edb34268c4f6567c62a8ec023c3766c0f8071d dd57e31790110205f6827188b65f39ffa2f4ee57cebbd6cc8c48a8f60b8a820d Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	339 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash 7ff1e97ec2c7f5b06a56399550253157 48d16208a77f4a1ba967e78b15d577e028e0b6be c84628270feb38fa3145dd1243e3212527956d0a82b5298b924685178cac597a Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-05-02
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.244.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-05-02 22:13:05 Times Seen4333 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js	2.2 kB	2023-03-08	2023-05-10
Pretty URL www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:00 Last Seen2023-05-10 16:07:52 Times Seen58 Hash 0dc2ff8c89badf59fc9f7b65f67655eb c40c66983b96a9fcaecba0413de813a336835126 b95984f1f4c16cd399f59047d1f3d92d0cc35e7331eb4206bc15cced4a6d712e Loading...

	unknown	0 B	2023-03-07	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 20:57:37 Times Seen37346112 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	449 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen26 Hash 7f56037f989e283890e5b2508548abde fc8367ee281ee92e17a68ae628a93f7fe49daff6 c403d478c63974b106050e240eefd959ee338f4066a0ab6de31a04a99374737e Loading...

	cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js	300 kB	2023-03-10	2023-03-12
Pretty URL cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js IP 34.120.65.227 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-03-12 10:09:44 Times Seen1 Hash 17a76d480371879ce43bd5bf75ec8f03 a4d5ffbd4a970406d48d82aff5d823a544ab36fc ef3fdebe74228a19f05f6454880a44c116804b5dbbd899ff7e21c1a270fa4578 Loading...

	bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=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%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=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%3D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	56 B	2023-03-07	2024-05-01
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:33:50 Last Seen2024-05-01 00:42:32 Times Seen874 Hash 8f4922fb31b62ff8d488fc268afb7888 10c55c702fbf04e6bc65d18fe606a0b5d716d965 7d00d8d5526624338907213c65a10f69fd9b329cf8f0bfa19a19060448c079f8 Loading...

	vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR	93 kB	2023-03-10	2023-05-04
Pretty URL vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR IP 185.29.195.172 ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash b03ec0a2e279b5b8abcf30195fffa65f 17064271d7a97d26040a95435e2047c29c0539df 9fbd9c4a9797b57860defda12a09c826a66edca3b15440a905572c5c96cd79b3 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	370 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash e45126367507aea0d62f5b0093f76c9e e5040b4ff8475e44b769f16aa9305615af8f5f6e 31e78d4db76a5bc52dfdfd468ca33348b5b5b485f33ab7d906f38c5b1518dcc9 Loading...

	www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137	2.0 kB	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:23:19 Last Seen2023-05-04 15:54:49 Times Seen14 Hash cc6b2d68ed0deb84241bdc0bbf704ba7 642c6befffee4b4d1fab0666df89bbaa613ac3eb 183b97b5ad78faaa493a95e80d1cebca215521bdab2e23cc09e23f3eca766d74 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	200 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:54 Last Seen2023-05-04 16:03:05 Times Seen27 Hash e34f2a48556389ad8efda47fd5191fde 0fa1f1298e30d637b24ab670188dc71470b2161c 270a8f8c57a87e487ed64fcde06c2cfeb03a0a1d07bb1abc34ab1e4a056a60f4 Loading...

	cdn.sgmntfy.com/pa.js	3.7 kB	2023-03-07	2024-01-08
Pretty URL cdn.sgmntfy.com/pa.js IP 34.149.223.191 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:09 Last Seen2024-01-08 08:17:20 Times Seen259 Hash 7327381bba6f249fe470d17c0dca2cb4 b6fac12855c66c4841a38d07934fc22302e881ef 393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	905 B	2023-03-10	2023-03-10
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:23:19 Last Seen2023-03-10 01:23:19 Times Seen1 Hash e36f5de31408fd025a80b170a3a31360 78584784fae078a1ddbda46911c4bc5a6164e5b1 6d97bb8019255c2ec4cce2bbc07f33a2dfb278bf9b5ad27dd701e627899f31d8 Loading...

	www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137	18 kB	2023-03-10	2023-03-12
Pretty URL www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-03-12 19:28:10 Times Seen1 Hash a2386fa54c7f4846837bf99d1b8ae6f3 d7e575f021a1422c860ddc059195d08b8edff51e 3cd27d8e82a53e7b8169225763912affff526cf4d95c9630a20ef18b7d6bbd1e Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	271 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash bf2bfde0b32b28bbb854a6a5975e3491 2bb71b1e3d16c588bbc0171db475b2c4955d905b fb8c16b053bb8c17992fc3c5898e0dbf4b841fc4fc95fd15955b6c3c7843c18b Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	2.5 kB	2023-03-08	2023-05-10
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:19:00 Last Seen2023-05-10 16:07:51 Times Seen36 Hash 4fcc9dd21249e0c7de15ce1862076ebc 16ed48765888d9259b781ac80b82e3629633c23d cfd72fc2cce843b9d29841f523c3a056857ef66c13b618b252dfc6a657ce7bd2 Loading...

	www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221	219 B	2023-03-10	2023-05-04
Pretty URL www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 IP 46.17.134.217 ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash ff697f70193bb9b2ffdd4c49d6bbc1fd 1073e221ca54d1ba2b61be65252cf074a25b4525 e6f80685d6ca1873bea2a25fd57282f2f86bcf9b77a2c95fa9c07317b99f2886 Loading...

	connect.facebook.net/signals/config/163956504148268?v=2.9.90&r=stable	300 kB	2023-03-10	2023-03-12
Pretty URL connect.facebook.net/signals/config/163956504148268?v=2.9.90&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:22:55 Last Seen2023-03-12 10:09:44 Times Seen1 Hash 50ecfee37842dc8e0b8b1e76785466e6 94158b5fe0c2ddd51f1eb8bc4f50894d935e4d38 8b54e3016ceb4cce2d299395768706a44f407bdebeb9117ae97b458afca6ffa4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - eacd458c2751cd23eabb2fcb04a657eb	92 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 12:10:59 Last Seen2024-05-04 17:56:50 Times Seen2276 Hash eacd458c2751cd23eabb2fcb04a657eb 78a01d75760bc72949e89d743a6824b893287ab4 2a967b9ccbab6ad1d3eed94b9157cb3dd9cbb57286e20a481d5a5c62a11fd8ca Loading...

	#2 Eval - 9ac0b4708663724dffb4c6f2b814a6df	87 B	2023-03-07	2024-05-02
Pretty Observations First Seen2023-03-07 01:03:00 Last Seen2024-05-02 23:41:37 Times Seen4657 Hash 9ac0b4708663724dffb4c6f2b814a6df 7faabe0595feb52fef2eb924693458608d16a66e aab310ed9d84ead154e032927d4a74c007f4b03655f5596b12339ea61881ba4e Loading...

	#3 Eval - 07b20753904f72299f85ac423665c932	192 B	2023-03-10	2023-05-04
Pretty Observations First Seen2023-03-10 01:23:19 Last Seen2023-05-04 16:03:05 Times Seen3 Hash 07b20753904f72299f85ac423665c932 ad4e1d200b4080505fb985742d30420fbfae8ed4 129a1c8898c4084570e54897917e71e2477b5b8c8af19392f4e7a48fc449b3b7 Loading...

	#4 Eval - c14638f0e6014a6631951f0dd59e9ecd	37 B	2023-03-08	2023-05-30
Pretty Observations First Seen2023-03-08 02:19:00 Last Seen2023-05-30 05:32:09 Times Seen38 Hash c14638f0e6014a6631951f0dd59e9ecd d6ab3c1d632fd5fd0092b40c08dfd2d4ff9fa6a1 51f7c020346092165a606ed238aa9b3ac5c4918c121c3c79c6829ccd53df5cca Loading...

	#5 Eval - dafcca6e54daf962f72961bd920c9028	536 B	2023-03-10	2023-05-04
Pretty Observations First Seen2023-03-10 01:23:19 Last Seen2023-05-04 16:00:53 Times Seen15 Hash dafcca6e54daf962f72961bd920c9028 4635ea9773a43542ddc1b5d8ab5c3635f370da40 37c3047a22fac6fbc16e0629c29bbf37aecdc21c534d9a5e51391a740e8caa28 Loading...

	#6 Eval - 849172a291bf27d72bc3d312bea98870	311 B	2023-03-07	2024-05-03
Pretty Observations First Seen2023-03-07 12:03:32 Last Seen2024-05-03 16:58:53 Times Seen2879 Hash 849172a291bf27d72bc3d312bea98870 a428bce2774cfb221ebef3a44ebe48042fe32a47 f23377476f3e798ff6e03a399b3a0f275a09b79afdfd766e87aae1e42787aa73 Loading...

	#7 Eval - 1330ba04084d4f31ef87405a8bd0d232	98 B	2023-03-10	2023-05-04
Pretty Observations First Seen2023-03-10 01:22:55 Last Seen2023-05-04 16:03:05 Times Seen27 Hash 1330ba04084d4f31ef87405a8bd0d232 ab397e9f501b8659b21303fc7515b5dfdb1d6cef c3c2abc6af4979dde4fe97a2a6581588bae7997591ccd58e2902f964e493872e Loading...

	#8 Eval - 15f2b5dadacd96b5ed4f59907bf8ba5b	43 B	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:10:12 Last Seen2024-05-04 03:37:43 Times Seen1525 Hash 15f2b5dadacd96b5ed4f59907bf8ba5b 62f15ce101e9fe91b63334fd9048073f7a152fbc 007cddfce59ab3c7b0d940e987ebe2c27ee1c2a171052809bdfd91f94a66f1db Loading...

	#9 Eval - 6b98c2022d092ae8cbd4e59ad813f442	37 B	2023-03-08	2023-05-30
Pretty Observations First Seen2023-03-08 02:19:00 Last Seen2023-05-30 05:32:09 Times Seen38 Hash 6b98c2022d092ae8cbd4e59ad813f442 99b4abcb8f8ddff54f9996f7aa24ae044c8c867e 9f32ef3f1186a41942e351fb8b23a69f26709341b010a592b13fbcf8278408ad Loading...

	#10 Eval - 02bbbb9522f3bf5d8a229d955a0f7b56	170 B	2023-03-10	2023-05-04
Pretty Observations First Seen2023-03-10 01:23:19 Last Seen2023-05-04 16:00:53 Times Seen15 Hash 02bbbb9522f3bf5d8a229d955a0f7b56 21136e8f8a5b0258ee05adf18eba86fcf607efa7 9fad6e9591d871e6e2a1e5e59957ab4fd8dfdf34292aca2a197f174113409ba5 Loading...

HTTP Transactions (112)

URL IP Response Size

lb.dr.com.tr/eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4

91.235.64.15

303 See Other

438 B

URL HTTP/1.1
lb.dr.com.tr/eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
IP
91.235.64.15:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
438 B (438 bytes)
Hash
e967b12b6e5ca14b853a32c2d67c0c7d
88e9e95ccd74f07fd697f65bb9d2c664f677b3f9
382afd5815cf895ebddfc2cac96c85cf3b5c97e4e8aaef53c9fb373461489891

HTTP Headers

GET /eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4 HTTP/1.1
Host: lb.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 303 See Other
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Location: http://www.dr.com.tr/Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Server: 
Set-Cookie: ASP.NET_SessionId=mfn5y4qw1dap3rq1doml3q4b; path=/; HttpOnly; SameSite=Lax
Referer: http://lb.dr.com.tr
X-AspNet-Version: 4.0.30319
LB: 19
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:05:32 GMT

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2558
Expires: Wed, 21 Dec 2022 19:48:10 GMT
Date: Wed, 21 Dec 2022 19:05:32 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14589
Expires: Wed, 21 Dec 2022 23:08:41 GMT
Date: Wed, 21 Dec 2022 19:05:32 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f4b32de26d9af2cba6afcdcf716d3fb8
644ead4436a8f2fc1f0dd25e4484b64f6ed63347
525123034cb53d750d5ebd487015911452d2cd3c34301e6628f2f52f3f0bfc88

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "525123034CB53D750D5EBD487015911452D2CD3C34301E6628F2F52F3F0BFC88"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2807
Expires: Wed, 21 Dec 2022 19:52:19 GMT
Date: Wed, 21 Dec 2022 19:05:32 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 18:45:56 GMT
content-type: application/json
age: 1176
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: eKsHjqOE0uMTDJ+FdLGRRGFeJxJRHKMJhToHEskT59k7vbWKdogC4k8GGxF0cxGG5YqbPgypNCY=
x-amz-request-id: NPGS3ESPAGVNGA84
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 18:55:28 GMT
age: 604
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:05:32 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 18:08:02 GMT
age: 3451
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
2b6e894076ea00953c6e5557bc7f61ab
bea101ad8592d25a8f08f8e0b5569bae2c6387fa
ae9cf5b5f6b9c1faeda43ea3bb9296446d330f32447be532234efd9b86a597cc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 00:20:49 GMT
Expires: Tue, 27 Dec 2022 00:20:48 GMT
Etag: "bea101ad8592d25a8f08f8e0b5569bae2c6387fa"
Cache-Control: max-age=450314,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3cf1deab529-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
859d899d982bb69df5fb16b8393fa119
580215f1d4f81cda04012c0889cfd9b18ba11863
38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6158
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:33 GMT
Last-Modified: Wed, 21 Dec 2022 17:22:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.188.211.138

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.188.211.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ssUBK2UfshLtNnPG4yKBmQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wI4MUxnMit0kpN9DGHnnVpYTmY4=

i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137

143.204.55.128

200 OK

560 B

URL HTTP/2
i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
IP
143.204.55.128:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (560), with no line terminators
Size
560 B (560 bytes)
Hash
f8c10caf538998ff6d2c27e1d5b4f2a8
9e67475fa5ff8918e47f376231206895e0241107
de7b0560f57ca54ef83318f3b21787f7afea8c70b1c7a68595b6b92c4371b888

HTTP Headers

GET /pimages/Content/Uploads/Fonts/fonts.css?ver=1137 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/css
content-length: 560
server: nginx/1.8.1
date: Thu, 15 Dec 2022 11:08:31 GMT
last-modified: Mon, 23 Aug 2021 14:21:09 GMT
etag: "6123aed5-230"
expires: Thu, 22 Dec 2022 11:08:31 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kSGlcwMWtu3GQS0VlZ4Wo6MLUPS6bwFUME1RHBq101PFuM0AJHkYqw==
age: 547022
X-Firefox-Spdy: h2

i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg

143.204.55.128

200 OK

85 kB

URL HTTP/2
i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
IP
143.204.55.128:0
ASN
#16509 AMAZON-02

File type
JPEG image data, progressive, precision 8, 1140x60, components 3\012- data
Size
85 kB (84725 bytes)
Hash
2262a6cd553491392cff28836e8d9ab7
73d077b783e2b8ec77e1824c88e792a5e312ac06
3d30c965c09ec72e1dee69a23e69878b910976a54f887269aea21d604b9d8d02

HTTP Headers

GET /pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 84725
server: nginx/1.8.1
date: Tue, 20 Dec 2022 13:41:20 GMT
last-modified: Tue, 20 Dec 2022 13:40:35 GMT
etag: "63a1bb53-14af5"
expires: Tue, 27 Dec 2022 13:41:20 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0iecigGmmr-R1_b2GBG-qzXcBav_Lj4CGhnri8-_de2lsTLifp7WrA==
age: 105850
X-Firefox-Spdy: h2

www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221

46.17.134.217

200 OK

107 kB

URL HTTP/1.1
www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033), with CRLF, LF line terminators
Size
107 kB (106817 bytes)
Hash
1a75710d91e4e24779c10c2475c75952
92b9b22d4ee16dbbf3d0f612e133f4bfdd6407f3
cded7da800a0d5aa22ff6e4c60f4f3fbf2e3b492825c7869c210b4c353d88136

HTTP Headers

GET /common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 106817
X-Frame-Options: SAMEORIGIN
Set-Cookie: DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; expires=Thu, 21-Dec-2023 19:05:33 GMT; path=/; HttpOnly
NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:33 GMT;path=/;secure;httponly

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137

46.17.134.217

200 OK

3.5 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
Unicode text, UTF-8 text, with very long lines (18443), with no line terminators
Size
3.5 kB (3510 bytes)
Hash
cdcd04cd9cb907d47f42e7abfe5d63d4
24ac472ad55bd46125361982c3d6595a98a790e8
65c156a711a67f0f68e9fc78dd118937dc4f3301a27592872a8dea5cc3bb7718

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 11 Nov 2022 21:39:28 GMT
Accept-Ranges: bytes
ETag: "0683e1316f6d81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 3510
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js

46.17.134.217

200 OK

856 B

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
ASCII text, with very long lines (2246), with no line terminators
Size
856 B (856 bytes)
Hash
cf7786410ee1af5bc919a761ea6def31
e654d14a699f6675044c46fb6226285fecddf8d7
d0bba3888a2c237ee488d1162e145826f1597559821b5b74ff0966160600005d

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 2246
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 856

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137

46.17.134.217

200 OK

246 B

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
ASCII text, with very long lines (427), with no line terminators
Size
246 B (246 bytes)
Hash
e5363fddc041491455104aed2a227073
85b45cf2409e9847113499e9b7c74e08c3dbf9fc
f6721da1fadbb82cc9363a4f34470fb00893d88b2c7d7f225882858332663cde

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 427
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 246

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137

46.17.134.217

200 OK

1.4 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
ASCII text, with very long lines (4921), with no line terminators
Size
1.4 kB (1419 bytes)
Hash
af3a6b1f9b2fd02e52462392977586a3
934e40a48caa29fe1e242965b40942573b5b0b8d
8f5b4bf4b9f81ebe90af264355673e7f9eea77807cc2ed58d90530c3f407598f

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 4921
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 1419

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137

46.17.134.217

200 OK

820 B

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
Unicode text, UTF-8 text, with very long lines (1986), with no line terminators
Size
820 B (820 bytes)
Hash
412bdf0074f1e9c2f1c3d47518ad2970
f0b69b868b497d61be36ddfcd745022243ae9e11
79d3db3112173d2eab9d3ecab72d8b3b801af69a100f4a8e001c2ece7f70d04c

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 2009
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 820

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137

46.17.134.217

200 OK

35 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
ASCII text, with very long lines (65536), with no line terminators
Size
35 kB (34741 bytes)
Hash
db9657130b2e2958374ec9b77ea758b4
11b26340ab7f1d05fd653a04634df46e97719f78
3f51e22c0064be3e76df10c8a89b2d3a80ecb33215494dd663745534a548ab5e

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 13 Dec 2022 11:44:02 GMT
Accept-Ranges: bytes
ETag: "06d1b32e8ed91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 34741
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137

46.17.134.217

200 OK

86 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
86 kB (85838 bytes)
Hash
e839ab16baedf7b7b7be15a7fe6a43da
01d849a4d9057c5e70a37bd356a84fe7b568b5ac
50127c56ebea364ae378a7fcc1809aa3d9b27541844a741b65274455a1673a72

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 14 Dec 2022 12:31:06 GMT
Accept-Ranges: bytes
ETag: "061c1efb7fd91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 85838
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
aa0fe09ecba18f88fff720b69e5d69b0
759143cbf2206b629dd39262a73f27a77b134cce
2f90277833fd4c55f26417e3e253b0144b8baac4c89d6be80fc5ebd845294608

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 22:45:49 GMT
Expires: Mon, 26 Dec 2022 22:45:48 GMT
Etag: "759143cbf2206b629dd39262a73f27a77b134cce"
Cache-Control: max-age=444613,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3d55e43b529-OSL

vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR

185.29.195.172

301 Moved Permanently

209 B

URL HTTP/1.1
vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
IP
185.29.195.172:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
209 B (209 bytes)
Hash
adc57312fe24beffd292aad33f6676fb
fa2d7dc3501390d3d70f24c7acb253be0176c62a
71f3dfd046f58a1db35fcf5861d4116355b2f07bee4e9fb4413debe0f8f28f01

HTTP Headers

GET /Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR HTTP/1.1
Host: vsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 209

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg

46.17.134.217

200 OK

7.3 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1693)
Size
7.3 kB (7348 bytes)
Hash
7faeb100a61b5d33f7928e1caac5154b
da91c2b07077417ccdb0766d8eef3ba8c0b6e1da
06d578c63b95c8189e7035f3d5e8f964302ef0a91267b3da25d4ee20234059dc

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/svg+xml
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Length: 7348
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly

i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2

143.204.55.128

200 OK

38 kB

URL HTTP/2
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
IP
143.204.55.128:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 37552, version 1.0\012- data
Size
38 kB (37552 bytes)
Hash
1983ab3b86a7b25f4ee8be0dd1d5b9cf
aee7222e1fd8cccc6cc7dfa222db0b5b645e8136
2ecb993e7339264ad246a68d7b9155ed199e08799f4362168bfbbddd0cba8bc4

HTTP Headers

GET /pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37552
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:24 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Mon, 19 Dec 2022 05:30:45 GMT
expires: Mon, 26 Dec 2022 05:30:45 GMT
cache-control: max-age=604800
etag: "611389b0-92b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GyUrKQxEFN3tDpHukVliYkhkNTLsMdpjcF_Q4IGsfAY66jYxW8-Ltw==
age: 221689
X-Firefox-Spdy: h2

i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2

143.204.55.128

200 OK

44 kB

URL HTTP/2
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
IP
143.204.55.128:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 43980, version 1.0\012- data
Size
44 kB (43980 bytes)
Hash
30328c47ca087fd5694c7071932b6b27
f4addbdae2ea5a68aef371b9cf61046a735387c3
74840d37499f126d3e68507b5634f72c9e6038c18f92eed5568786bc7d7a1fb7

HTTP Headers

GET /pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: application/font-woff2
content-length: 43980
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:20 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Fri, 16 Dec 2022 05:35:02 GMT
expires: Fri, 23 Dec 2022 05:35:02 GMT
cache-control: max-age=604800
etag: "611389ac-abcc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZUqQ3BeWIMERhVXBVWyrFPI8N3e2e5qUIsp4k9P1cWYlNcoxfWlReQ==
age: 480632
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9069 bytes)
Hash
3bd6359db3b908389343275ee839466b
9094f8e9275252a8e9d5e65fd3e87851b2f80bd7
7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:41 GMT
age: 77274
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9044 bytes)
Hash
8f5b2e482a0944dfc0de3a69659fa002
64dd897d9163a6eceadc0c5460cdd135d323abb3
feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:02:35 GMT
age: 43380
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9493 bytes)
Hash
8218fde73bff9978e07b0e06e1f7f0fb
ab15f8d74ea032d89f65603b4eef2377dc97e358
134d5a1046ea50f37f0234a4d1d167130b2950a1d61e93e2340dccbc922b4844

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9493
x-amzn-requestid: 54028261-e98d-4bb6-98da-51d41edc6d2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da61jElIIAMFl8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b56-7eeb3b142dd3d0f92e9fa9ba;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:09:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: oXQy1PwLBW8u0kv_sHcypb8QB6xwLtYMy4eWRZVQaD2xYjpw2dGA3A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 03:55:09 GMT
age: 54626
etag: "ab15f8d74ea032d89f65603b4eef2377dc97e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10154 bytes)
Hash
b67d0976563ea9460d94e27ff920f9da
f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92
c7ec3c4b87b700796008690562a6033481a7ad826fb2f45875cd6add06189568

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10154
x-amzn-requestid: f317432b-7dda-439b-bc02-9c76412e9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DGlfoAMF5Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-13a5af4c477a1019544222f4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: zee8fH2mx78hr5oICfnTrdmJeFcioNt_4_eo8ffiKApLll4cbLR82A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:50:12 GMT
age: 76523
etag: "f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8450 bytes)
Hash
c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _nupdrdRDG-S085FRNoJgzDQVg9Ngb_nYDR5C1AkkterWy8vlXBxGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:41:22 GMT
age: 77053
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11535 bytes)
Hash
d4aa7e9e3fe28e9c401786f7415171f7
8482a47175ff105957d640269bc14ee1fbc97448
2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: daGQIEuSoAMFnBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: axz1LSfJfBvAFuJl53Sl6Kh7r2R4FiTuDB3Xb_XI5AwXB20Gs4rg5A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:49:59 GMT
age: 76536
etag: "8482a47175ff105957d640269bc14ee1fbc97448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-ZGV7

172.217.21.168

200 OK

92 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-ZGV7
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (38373)
Size
92 kB (91575 bytes)
Hash
479abcc37618ec37beaf330283160121
a706cc8dceb7baa466702716cd67afd23826ce02
642be2d2c690f8f9f29ba13084d931f6a504ba818d5ab7f63c176ee8d9d349c1

HTTP Headers

GET /gtm.js?id=GTM-ZGV7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Wed, 21 Dec 2022 19:05:35 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91575
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
889441ff71167088eed6563ca890f2ea
d89ea0020abd17c99cd8753c6d079faa0ec8db96
a70e96254fd4f3eb53467b04dc4944a3c98e951e5271b99b80d2075ee21eab39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 05:26:15 GMT
Expires: Wed, 28 Dec 2022 05:26:14 GMT
Etag: "d89ea0020abd17c99cd8753c6d079faa0ec8db96"
Cache-Control: max-age=555038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3dacd16b529-OSL

i.dr.com.tr/pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png

143.204.55.128

200 OK

22 kB

URL HTTP/2
i.dr.com.tr/pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png
IP
143.204.55.128:0
ASN
#16509 AMAZON-02

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21702 bytes)
Hash
b6288a41ab215477cf69da06bf65eae0
774faea5139c23a6e882b54fdad6dd27e19495a0
867829e68b4e041687361d78163491896fe851436f0ddf1c2bf706f2e7879b57

HTTP Headers

GET /pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 21702
via: TMGRUP, 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Thu, 01 Sep 2022 07:10:23 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Thu, 15 Dec 2022 20:00:29 GMT
expires: Thu, 22 Dec 2022 20:00:29 GMT
cache-control: max-age=604800
etag: "63105adf-54c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bmaWNtYE_JaJyDrA5hIaFpnDHrH6TfW5zQVp7UROHdvwqIzuCO3J5A==
age: 515103
X-Firefox-Spdy: h2

wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81

91.235.64.232

301 Moved Permanently

227 B

URL HTTP/1.1
wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
IP
91.235.64.232:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
227 B (227 bytes)
Hash
4ced202284e35d115e8a52a74c443a6e
2bf08f5db6e34d99d560d3af9f6eb21b183020fb
5e649992b9355c98784feb8bc639af08a2df3cf6c245f5e9faf37286b86849fd

HTTP Headers

GET /relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81 HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
Server: 
Set-Cookie: BlueStripe.PVN=1a440009613a; path=/
X-AspNet-Version: 4.0.30319
LB: 17
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 227
Strict-Transport-Security: max-age=157680000

www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico

46.17.134.217

200 OK

1.2 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
826b8858eadc52a7b2eb04efb945a1e4
84b1c4ca4cbea50ee4bc8f7cbeb454095c675a97
c7e236c7f42a7d653df97e4c7e11d8b0e9ce12f0a4e155837e965feba4802d8f

HTTP Headers

GET /Themes/DR/Content/NewTheme/images/favicon.ico HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Length: 1150
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137

46.17.134.217

200 OK

86 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
MS Windows icon resource - 1 icon, -112x-112, 32 bits/pixel\012- data
Size
86 kB (85886 bytes)
Hash
64695caf1623b5cd7c04d0d6d2e01fd3
2b37e14bf6a4712ea5ba0ab1b3af5617a9b5e6ac
a643fd7986e61950a09c2985116d34f8b00050a13c299748c14aac54772be637

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Thu, 29 Sep 2022 06:38:56 GMT
Accept-Ranges: bytes
ETag: "040e625ced3d81:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Length: 85886
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
80fefa4e0a7e3acbce76a9e7f57a8eab
0612504d0ae9664127c3eafd43867ae57b75a832
dffec6e9deab94fb10ba4f22908241fc2d27f629421ef6ad12a90b4ee02ca7a0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221?

142.250.74.38

200 OK

359 B

URL HTTP/2
4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221?
IP
142.250.74.38:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (708), with no line terminators
Size
359 B (359 bytes)
Hash
694207f2b17c73a4ac121b51db434e45
f50dc3fc21925cc654059c4ab9006ac8434c938a
2c929b1b081f955037321e4f6790d5897da2f9113b4483d0ddb9297edcffe510

HTTP Headers

GET /activityi;src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221? HTTP/1.1
Host: 4876222.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 359
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:20:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4e09fbe8c7f13b5f2593bfb7b654f35
2f0ab877a5de8ede3d0cf8d47614e4f847f12cc1
ebf6a6c3c22bf48f663ced84746989c300b5a8268a980df2e0410bf060ff0e1f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.dr.com.tr/manifest.json

46.17.134.217

200 OK

0 B

URL HTTP/1.1
www.dr.com.tr/manifest.json
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /manifest.json HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6ImQyMjJmODQwNzE1ZTY1ZGMiLCJ0ciI6IjNhMjE5ZDU2MjU2ZDRkM2FjYTgzYWQwYWExOTJjM2JmIiwidGkiOjE2NzE2NDk1MzU0MjF9fQ==
traceparent: 00-3a219d56256d4d3aca83ad0aa192c3bf-d222f840715e65dc-01
tracestate: 510794@nr=0-1-510794-10449929-d222f840715e65dc----1671649535421
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Length: 63
Content-Type: application/json
Last-Modified: Wed, 24 Jul 2019 10:34:06 GMT
Accept-Ranges: bytes
ETag: "023b251b42d51:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly

www.dr.com.tr/relatedpush_sw.js

46.17.134.217

200 OK

81 B

URL HTTP/1.1
www.dr.com.tr/relatedpush_sw.js
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
ASCII text, with no line terminators
Size
81 B (81 bytes)
Hash
fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224

HTTP Headers

GET /relatedpush_sw.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1; OfferMiner_ID=LSEDJPBPQOWCGPPO20221221190535; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22LSEDJPBPQOWCGPPO20221221190535%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%5D%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
ntCoent-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221

142.250.74.130

200 OK

360 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (707), with no line terminators
Size
360 B (360 bytes)
Hash
d2a5e61e622698d053cc61c920c7ee63
75d5efd636f1803c55050d8f69bb14720d6e5752
19130eefc47616c538b37219a41e35415c64c8278c59f34d860fe8e4f8632859

HTTP Headers

GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4876222.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=370277,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3dc3ef8b529-OSL

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js

34.120.65.227

200 OK

57 kB

URL HTTP/2
cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
IP
34.120.65.227:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (47012)
Size
57 kB (57201 bytes)
Hash
cf208de6ef6b42e769ac8c64c4756c59
2b51a1912f98f59c4d2e9f09a1ed9d7d655a24c8
a18a56c6f555c61ca5c765f33bb681afe71b3241b4eadd29c4867a62e0a8bb90

HTTP Headers

GET /2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdshuURpLHjSf5aEK1fEXShFS4G_FzKDQbb8KhXuovxlaSjobPvafuWd-jMviNg5Wm5hXrCDrgSeSveH-hH_JYktigtNOEoI
x-goog-generation: 1671595307284668
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 57201
content-encoding: gzip
x-goog-hash: crc32c=MBIsWg==, md5=zyCN5u9rQudprIxkxHVsWQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 57201
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Wed, 21 Dec 2022 04:10:49 GMT
expires: Wed, 28 Dec 2022 04:10:49 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Dec 2022 04:01:47 GMT
etag: "cf208de6ef6b42e769ac8c64c4756c59"
content-type: application/javascript
age: 53686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

wps.relateddigital.com/relatedpush_sw.js

91.235.64.232

200 OK

1.2 kB

URL HTTP/1.1
wps.relateddigital.com/relatedpush_sw.js
IP
91.235.64.232:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1217 bytes)
Hash
3c3509db30711bfee335f7e7dfbac78f
f0100abfb12b1648f87a1ffa05bb16a525ebf86b
fc5c3cb1a954e456fcf97f20a12458f801204969f2ce30c5b9ae2f96eead4e91

HTTP Headers

GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Oct 2020 13:16:28 GMT
Vary: Accept-Encoding
Server: 
Set-Cookie: BlueStripe.PVN=1a440009614e; path=/
X-AspNet-Version: 4.0.30319
LB: 17
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 1217
Strict-Transport-Security: max-age=157680000

adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221

172.217.21.162

200 OK

85 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
85 B (85 bytes)
Hash
4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb

HTTP Headers

GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Wed, 21 Dec 2022 19:05:35 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.hotjar.com/c/hotjar-2460279.js?sv=7

54.230.111.66

200 OK

0 B

URL HTTP/2
static.hotjar.com/c/hotjar-2460279.js?sv=7
IP
54.230.111.66:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c/hotjar-2460279.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 21 Dec 2022 19:05:34 GMT
cache-control: max-age=60
etag: W/d41d8cd98f00b204e9800998ecf8427e
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N-cw16WaqgNAqHyvCUXgw2mYB-0Ub66WGjsvlIy9Hvda6jnoyJqZpQ==
age: 1
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3424
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Last-Modified: Wed, 21 Dec 2022 18:08:31 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
52cca9f517da7041f625e7d292a2778e
e196da9a10d5386b958dabbfadfa4d723d7a2250
9c8ef3c85266a8a11267e4f55bc569987e1b9480970fc535ce9eb3b911506514

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 21 Dec 2022 18:41:11 GMT
expires: Wed, 21 Dec 2022 20:41:11 GMT
cache-control: public, max-age=7200
age: 1464
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG

142.250.74.110

200 OK

44 kB

URL HTTP/2
www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43946 bytes)
Hash
e92fad25913092a394452a9682bd9cfa
74845eb88d48befce7266dc5147696edf831b4b5
fab775eee74a253cd3f167dc7cce64258e6266f0ef6cdfa06000bcaee8968057

HTTP Headers

GET /gtm/optimize.js?id=OPT-N8GSXSG HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Wed, 21 Dec 2022 19:05:35 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43946
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.ads-twitter.com/uwt.js

151.101.244.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.244.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:05:35 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4

142.250.74.130

200 OK

1.0 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2270), with no line terminators
Size
1.0 kB (1021 bytes)
Hash
0001321f183a3fd7e55a58a0a92294a1
b4f1b90b65ab423aea71fed290ded140e62087b8
a15e5eb3bde93d74e1f86482a31e58ea8783c623d98ecefbc9b7bd48370cbc4f

HTTP Headers

GET /pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1021
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:20:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27298 bytes)
Hash
8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: j0V53vtA5NIE2qPZssEA9b0N/QtCyfEIq6z41MSFMND5WELSkWBVSofEe9xaDMPdZCsjAVvVqY95tF6P46NuRg==
priority: u=3,i
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 21 Dec 2022 19:05:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3424
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Last-Modified: Wed, 21 Dec 2022 18:08:31 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

www.dr.com.tr/relatedpush_sw.js?1671649535437

46.17.134.217

200 OK

81 B

URL HTTP/1.1
www.dr.com.tr/relatedpush_sw.js?1671649535437
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
ASCII text, with no line terminators
Size
81 B (81 bytes)
Hash
fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224

HTTP Headers

GET /relatedpush_sw.js?1671649535437 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1; OfferMiner_ID=LSEDJPBPQOWCGPPO20221221190535; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22LSEDJPBPQOWCGPPO20221221190535%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%5D%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:05:35 GMT
ntCoent-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3ded80a1c0a-OSL

ocsp.pki.goog/s/gts1d4/GGjoAgr7N70

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0bd2babfb67f762f5a710f5dc916814e
82d053b77671d4a8ac718869de4d0ef42696ee4b
e60f033692cef05af22e008cdde5f77e4c2ffe161c8e7cb72bfaa45787a6c2c3

HTTP Headers

POST /s/gts1d4/GGjoAgr7N70 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.sgmntfy.com/pa.js

34.149.223.191

200 OK

3.7 kB

URL HTTP/2
cdn.sgmntfy.com/pa.js
IP
34.149.223.191:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3744), with no line terminators
Size
3.7 kB (3744 bytes)
Hash
7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdsBgLD22VlTHwelbKiYrQRX1-vpig45pwkGAKDv73RzohBIm4u5UoP657B8aXtvb4VdC-9o3ARCqUamwkufbFRxkJqWtYND
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Wed, 21 Dec 2022 18:29:46 GMT
expires: Wed, 21 Dec 2022 19:29:46 GMT
cache-control: public, max-age=3600
age: 2149
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=370277,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3de18edb529-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
1e241030c5209598a72f9ea976d83aa1
7aeecc0d0821a13950e3278c9dbf7e0fb7dbaa21
376c69ae3d04134dadf60fa39fde4bae27cd782b33079c787f68308e17bd4481

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4900
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Last-Modified: Wed, 21 Dec 2022 17:43:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&gjid=837193314&_gid=1976066439.1671649536&_u=aGhAgAABQAAAAEABM~&z=546333035

64.233.164.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&gjid=837193314&_gid=1976066439.1671649536&_u=aGhAgAABQAAAAEABM~&z=546333035
IP
64.233.164.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&gjid=837193314&_gid=1976066439.1671649536&_u=aGhAgAABQAAAAEABM~&z=546333035 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 19:05:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3df8aacb529-OSL

wps.relateddigital.com/relatedpush_sw.js

91.235.64.232

304 Not Modified

0 B

URL HTTP/1.1
wps.relateddigital.com/relatedpush_sw.js
IP
91.235.64.232:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 15 Oct 2020 13:16:28 GMT
Cache-Control: max-age=0

HTTP/1.1 304 Not Modified
Cache-Control: private
Content-Type: text/javascript
Server: 
Set-Cookie: BlueStripe.PVN=295800039a9d; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:35 GMT
Strict-Transport-Security: max-age=157680000

per2.segmentify.com//get/key/v1.json?count=2

95.214.74.47

200

50 B

URL HTTP/1.1
per2.segmentify.com//get/key/v1.json?count=2
IP
95.214.74.47:0
ASN
#15830 Telecitygroup International Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
a00e32694974ab88b136d6ced54dc866
13a7c9537bcf29ca929ec6b7a15a0e78d207c5c9
64b7134f00ada6a3dba599fa25c3d26dd633ff05160b98d24a3f30508cc6f54d

HTTP Headers

GET //get/key/v1.json?count=2 HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:05:35 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00

t.co/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29

104.244.42.69

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP
104.244.42.69:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:35 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=9a266116-dd97-49aa-aedc-66166cb19fb0; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:05:36 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0d7a4e0884890de9
strict-transport-security: max-age=0
x-response-time: 117
x-connection-hash: 8617d772be5c8f463fd3584e7d267178ac3b7c3591c6ce2247eb80d1577b67ba
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=0&ipr=y

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=0&ipr=y
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3774
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Last-Modified: Wed, 21 Dec 2022 18:02:42 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
ee04940bea32334977d45357ff71701a
01a6bd71066c908aefeadf351ed4cce9c27250b5
81b6314244e3d62d68a932fdba62173de116492ecf8e82c2197b4a3a6d8126de

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3878
Cache-Control: max-age=105470
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a242d8-139"
Expires: Fri, 23 Dec 2022 00:23:26 GMT
Last-Modified: Tue, 20 Dec 2022 23:18:48 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313

www.google.no/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=1&ipr=y

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=1&ipr=y
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1&gtm=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116

216.58.207.228

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3645
Cache-Control: max-age=115702
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a26bb9-1d7"
Expires: Fri, 23 Dec 2022 03:13:58 GMT
Last-Modified: Wed, 21 Dec 2022 02:13:13 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

ams.creativecdn.com/tags/v2?type=json

185.184.8.90

200 OK

0 B

URL HTTP/2
ams.creativecdn.com/tags/v2?type=json
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:36 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2

ams.creativecdn.com/tags/v2?type=json

185.184.8.90

307 Temporary Redirect

0 B

URL HTTP/2
ams.creativecdn.com/tags/v2?type=json
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.dr.com.tr
Content-Length: 316
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
date: Wed, 21 Dec 2022 19:05:36 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=ljL2cy005C9tvMGaC11V;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:05:36 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1671649536;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:05:36 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://ams.creativecdn.com/tags/v2?type=json&tc=1
content-length: 0
X-Firefox-Spdy: h2

per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b

95.214.74.47

200 OK

0 B

URL HTTP/1.1
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP
95.214.74.47:0
ASN
#15830 Telecitygroup International Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sfy-api-key
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, X-Switch-User, X-Switch-Account, X-Switch-Region, X-Sfy-Api-Key
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3600
Connection: keep-alive
Content-Length: 0
Content-Type: application/json
Date: Wed, 21 Dec 2022 19:05:36 GMT
Server: nginx
X-Server-Name: 287260ae76fedca0934bc740be560e00

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29

104.244.42.3

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:35 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_orE5MpwlflQ/HuXD9KnGiQ=="; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:05:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 71d4c300b1a460d1
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: ff3b7e36403a043a5b681b8f9acc243f5ca7bd18a4e0fb81a859f7d48a5fad5f
X-Firefox-Spdy: h2

per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b

95.214.74.47

200

1.5 kB

URL HTTP/1.1
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP
95.214.74.47:0
ASN
#15830 Telecitygroup International Limited

File type
JSON data\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4867), with no line terminators
Size
1.5 kB (1525 bytes)
Hash
8ad0eb8f2ac4fc1897bc709172a1a93d
ec2e7b6b3de6dd5c0fe1a77f3f2107f612542408
163d04a31ad6f1e9f46c9411f92a043849ea6dc0cc0c411117a0c9a39a5330c4

HTTP Headers

POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 9126
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:05:36 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00

ams.creativecdn.com/tags/v2?type=json&tc=1

185.184.8.90

200 OK

0 B

URL HTTP/2
ams.creativecdn.com/tags/v2?type=json&tc=1
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:36 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649536247&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649536246.884401885&it=1671649535867&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649536247&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649536246.884401885&it=1671649535867&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649536247&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649536246.884401885&it=1671649535867&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 21 Dec 2022 19:05:36 GMT
X-Firefox-Spdy: h2

ams.creativecdn.com/tags/v2?type=json&tc=1

185.184.8.90

200 OK

245 B

URL HTTP/2
ams.creativecdn.com/tags/v2?type=json&tc=1
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type
JSON data\012- , ASCII text, with no line terminators
Size
245 B (245 bytes)
Hash
fafa83267aa27524d7e8e7fd613f423a
fba6656c5b6896029a6f12bbe5bad5a015621461
66b50e3d39aae15842a265610e1f12efa51ea3f2430c6b6c0efdd453ceba8a04

HTTP Headers

POST /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 316
Origin: https://www.dr.com.tr
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/json;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Wed, 21 Dec 2022 19:05:36 GMT, Wed, 21 Dec 2022 19:05:36 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 245
X-Firefox-Spdy: h2

www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5

46.17.134.217

200 OK

54 kB

URL HTTP/1.1
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3928)
Size
54 kB (54039 bytes)
Hash
f331aa8a71e90cf9ce7c886b038c707f
2799241a6e213d34aa93bd8afb5f7b486f89211f
cbcd276809baa39b8aa07c38a12b220d3855cbec2b989ca567d89a53853644de

HTTP Headers

GET /Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6IjUyNzU0YWM3Njg2ZTlmODgiLCJ0ciI6Ijk5YTQ4MTdjZTc5NTYxYTg4MzAzNWYyMDhlNDMyNWE2IiwidGkiOjE2NzE2NDk1MzY0MDF9fQ==
traceparent: 00-99a4817ce79561a883035f208e4325a6-52754ac7686e9f88-01
tracestate: 510794@nr=0-1-510794-10449929-52754ac7686e9f88----1671649536401
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1; OfferMiner_ID=LSEDJPBPQOWCGPPO20221221190535; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22jTmlQu4ZeIp4GhUOrbht%22%7D; _ga=GA1.4.1213785094.1671649536; _gid=GA1.4.1769228684.1671649536; dr_ua_cookie=GA1.4.1213785094.1671649536; dr_ua_cookie_gid=GA1.4.1976066439.1671649536; _dc_gtm_UA-36126232-1=1; _sgf_user_id=-6139773874847252479; _sgf_session_id=-6139773874847252480; _fbp=fb.2.1671649536246.884401885; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22LSEDJPBPQOWCGPPO20221221190535%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A36%22%7D%5D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 54039
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:36 GMT;path=/;secure;httponly

js-agent.newrelic.com/nr-spa-1216.min.js

151.101.130.137

200 OK

18 kB

URL HTTP/2
js-agent.newrelic.com/nr-spa-1216.min.js
IP
151.101.130.137:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32010)
Size
18 kB (18216 bytes)
Hash
6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a

HTTP Headers

GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: QKJbZH0tUcMtAsLZitbfwcPpTgZbXYEZElUcFQJ41NzHawdKY70ohMytOmE+mYAGFiIaDXcfKyI=
x-amz-request-id: 6WVZ36C2EBPHWFVA
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:05:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 1065
x-timer: S1671649536.474445,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
0f31422ae936eb89a3622e05026ba27b
2398469b858daa8a1a315460786ecdd10d8dd22b
6e71073e63a36cc568448f7896db4d34f8734b1d7de4ef7c41beae49792f6504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4648
Cache-Control: max-age=114892
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a264a5-117"
Expires: Fri, 23 Dec 2022 03:00:28 GMT
Last-Modified: Wed, 21 Dec 2022 01:43:01 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A

185.184.8.90

200 OK

440 B

URL HTTP/2
fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type
HTML document text\012- HTML document, ASCII text
Size
440 B (440 bytes)
Hash
8aa0879bba5a89a97ad226cf10629421
5a7bba47174fcfe5e67e5986b77c120a70722724
136a380ae71cfeecc72cb53485cee866a5b0e63140be7630187cf1b78ac6c7ba

HTTP Headers

GET /fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A HTTP/1.1
Host: fledge-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html;charset=utf-8
origin-trial: Anlqio5K3Dr7Hn1oMh2faiLECLxb8MnD1hPnDOlNZXdzpbZV9L2LOKjgHGwWMDoiHq67q8SjUmjQZj10YLJwfgIAAABxeyJvcmlnaW4iOiJodHRwczovL2NyZWF0aXZlY2RuLmNvbTo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjgwNjUyNzk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cache-control: public, max-age=86400
date: Wed, 21 Dec 2022 19:05:36 GMT, Wed, 21 Dec 2022 19:05:36 GMT
expires: Thu, 22 Dec 2022 19:05:36 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 440
X-Firefox-Spdy: h2

dr.api.useinsider.com/ins.js?id=10001448

162.159.134.61

200 OK

0 B

URL HTTP/2
dr.api.useinsider.com/ins.js?id=10001448
IP
162.159.134.61:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ins.js?id=10001448 HTTP/1.1
Host: dr.api.useinsider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:36 GMT
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
etag: "d41d8cd98f00b204e9800998ecf8427e"
last-modified: Fri, 15 Jul 2022 10:15:22 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: u0EOnGEwlp31eqUzH39awZ+0Agtv7mL03QSxjYL6VOJIb7cDEgHjHTJnRTBsafXVHs9z0rjR3kE=
x-amz-request-id: HGZKHPKNX8EDK2RW
x-amz-version-id: wNkEcItKcpD12eM52_A_rhIY5m87APnA
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 177
expires: Wed, 21 Dec 2022 19:10:36 GMT
cache-control: public, max-age=300
accept-ranges: bytes
set-cookie: __cf_bm=eo7qggB3GODgIevuYcdYCJUMwUEy4me4XWP2z2doUBA-1671649536-0-AREum3Oy43G7wjcLurbkH+fZFKMFfNmFzHES7QsLQcXjqGclsR0c2p11RlhOw6NfDBBk9SSyGz+rNqneW49mlgc=; path=/; expires=Wed, 21-Dec-22 19:35:36 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2e3e358b5b4ff-OSL
X-Firefox-Spdy: h2

per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b

95.214.74.47

200

122 B

URL HTTP/1.1
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP
95.214.74.47:0
ASN
#15830 Telecitygroup International Limited

File type
JSON data\012- , ASCII text, with no line terminators
Size
122 B (122 bytes)
Hash
dc39cd34673442c71961c365f4fe1139
d76bc846a433cdf54b78affd585ebd708881ec9f
1d65f98c016ba5d818790867ac3aed909d5302c1c1554561b6f66659580efa1a

HTTP Headers

POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 811
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:05:36 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00

lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT

185.29.195.171

200 OK

70 B

URL HTTP/1.1
lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT
IP
185.29.195.171:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type
GIF image data, version 89a, 1 x 1\012- data
Size
70 B (70 bytes)
Hash
02a065761e036bca2f981f3ed704dc79
e251c670f45fb6dadca5f779fed5b6cc132c7cdf
cd8feca47797d25495f03a52b6a8605de61b829c01be0dca0c2ff0fed71ec3d8

HTTP Headers

GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT HTTP/1.1
Host: lgr.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: Image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Set-Cookie: OM.3rd=0761f0b8-00e7-4602-b73a-9203b9159309; domain=.visilabs.net; expires=Sun, 21-Dec-2042 19:05:36 GMT; path=/
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 70

rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT

185.29.195.174

200 OK

70 B

URL HTTP/1.1
rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT
IP
185.29.195.174:0
ASN
#201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S

File type
GIF image data, version 89a, 1 x 1\012- data
Size
70 B (70 bytes)
Hash
14d1707eda790f543c6fb8d0dcff6359
cf7049298a876447c2854cf2bc4df2987587aac5
de9d3fd0eb948bd294477d0eda60a73b85caff1794803530d0463193a113da98

HTTP Headers

GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT HTTP/1.1
Host: rt.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536027; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:05:36 GMT
Content-Length: 70
Set-Cookie: BIGipServerVisilabsRealtimePoolHTTP=616766905.20480.0000; path=/; Httponly; Secure

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6aa627e28c71a3d2789eddf92231471b
11facb6d6c4aff37d4aefe52c3f92bdbfa6d1b88
bea3ba8609e274db498cd9e3abc98f77f4499c20b56083795cce7bc561c62a50

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4702
Cache-Control: max-age=103442
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a237b4-1d7"
Expires: Thu, 22 Dec 2022 23:49:38 GMT
Last-Modified: Tue, 20 Dec 2022 22:31:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=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%3D&jsonp=NREUM.setToken

162.247.241.14

200 OK

77 B

URL HTTP/1.1
bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=TENVGwNNEghBH0FHWEcoUBsDFAdXBgJwBncEVHIICgAFJBFMGRdEFVtPG2xFVRR6QXRRVUUER0obDBJfAh8MBR8DUxoIDAISShFkRlBDfhF1XV1EVRVAY1RCEw1DDQgXDwBIBwMbBAQDQxgbbEVVFHpVFw8TAVMCCg0BUVIeAwwHBRpVUAhfGwkFVwUYBFUPVFILWA5TBQYIFxkTYhJRS3hRVQhHYkFHWFkGFgMbe18cWl1ZVB4CTwQZEWFZCFdeQkYReTUUCAkYAF0TZlxbBwNaFEEPAgtGQUcPBAECTwQQGXFVBVheGgcBBlEECAkHECBaQ1BTXk9OBQkMGABEHxNgR11nAEBReFhUN0ZUR0wTDUMbWlZbXQldHkVUVlICW1dNU14SHFVHVlBFBQtMTVtvFVxER1ZUCgRBS1ZbVRVAUFJQF0IVWWZUU1QPRlwIWFBeDV1XXhBFEl5uVlRcRwBdXlcLXQdaXWpQX0IbQVdeU1MDbAMFBwMGUwYIZlNTD1cAUQZUD1EACVhTU1IHUgIDUAFXBwpdVwReUghXBwRSWRJMTVtvBVxfQVBfQ1xZWFBabwNdRE9AX1AEV1xmBABUAQAHBwAVHEk%3D&jsonp=NREUM.setToken
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
ASCII text, with no line terminators
Size
77 B (77 bytes)
Hash
f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef

HTTP Headers

GET /1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=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%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:36 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77d2e3e548a5b52d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=9df86b36c9a1377e; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
dfd8efaba7b4ec21f029ff562ff04a82
ea4324fd871ab145864664fd2b6e443eece69835
e1c3cfecd1038988469bd27f97fd485008334e5212ed9ead279005634c7f59f8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 01:57:49 GMT
Expires: Wed, 28 Dec 2022 01:57:48 GMT
Etag: "ea4324fd871ab145864664fd2b6e443eece69835"
Cache-Control: max-age=542530,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3e68b51b529-OSL

ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=jTmlQu4ZeIp4GhUOrbht

67.202.105.23

204 No Content

0 B

URL HTTP/2
ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=jTmlQu4ZeIp4GhUOrbht
IP
67.202.105.23:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ps/?us_privacy=USP&xi=52&xu=jTmlQu4ZeIp4GhUOrbht HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP012
date: Wed, 21 Dec 2022 19:05:36 GMT
X-Firefox-Spdy: h2

bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=7306&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard

162.247.241.14

200 OK

24 B

URL HTTP/1.1
bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=7306&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
GIF image data, version 89a, 1 x 1\012- data
Size
24 B (24 bytes)
Hash
bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300

HTTP Headers

POST /events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=7306&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1398
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:40 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 77d2e3f84978b52d-OSL
Access-Control-Allow-Origin: https://www.dr.com.tr
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare

www.dr.com.tr/Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221

46.17.134.217

301 Moved Permanently

0 B

URL HTTP/1.1
www.dr.com.tr/Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
IP
46.17.134.217:0
ASN
#41902 Turkuvaz Haberlesme Ve Yayincilik A.s.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 31777
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:33 GMT;path=/;httponly

avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js

13.107.213.53

200 OK

0 B

URL HTTP/2
avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js HTTP/1.1
Host: avlsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=8640000
content-type: text/javascript
content-encoding: br
content-md5: 3g3T/bNv20ozIAUHqNB0+A==
last-modified: Wed, 18 Aug 2021 09:46:48 GMT
etag: 0x8D9622D19366EBC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 56398b91-901e-0031-7ee7-131e84000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0/cagYwAAAABsXchojEXWSJ8XLs9BpsINQU1TMDRFREdFMTgyMgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
x-azure-ref: 0/lijYwAAAACS4JhTMieqTqFh9L1XYs3IU1ZHMjBFREdFMDUxMgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
date: Wed, 21 Dec 2022 19:05:34 GMT
X-Firefox-Spdy: h2

rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js

13.107.246.53

200 OK

0 B

URL HTTP/2
rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
IP
13.107.246.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js HTTP/1.1
Host: rpdn.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=86400
content-type: application/javascript
content-encoding: br
content-md5: 7dJB1GMWSGW76wPPEWgUpQ==
last-modified: Tue, 16 Mar 2021 08:29:35 GMT
etag: 0x8D8E855A1ABE7AD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 027b946f-001e-0033-2518-14a03c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0Rl2iYwAAAAAnd+qpknWFSKjw37+xpfX0QU1TMDRFREdFMTkwOAAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
x-azure-ref: 0/1ijYwAAAADLE58g/d/JTZKDOoDWHQaJU1ZHMjBFREdFMDYyMQAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
date: Wed, 21 Dec 2022 19:05:35 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations