lb.dr.com.tr/eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
91.235.64.15303 See Other 438 B URL HTTP/1.1 lb.dr.com.tr/eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
IP 91.235.64.15:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e967b12b6e5ca14b853a32c2d67c0c7d
88e9e95ccd74f07fd697f65bb9d2c664f677b3f9
382afd5815cf895ebddfc2cac96c85cf3b5c97e4e8aaef53c9fb373461489891
GET /eu/c/tq/807EB71E9736472384FC3AC99E833FCB/efb374bc89b042fe82e44e88d595b93e/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4 HTTP/1.1
Host: lb.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Location: http://www.dr.com.tr/Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Server:
Set-Cookie: ASP.NET_SessionId=mfn5y4qw1dap3rq1doml3q4b; path=/; HttpOnly; SameSite=Lax
Referer: http://lb.dr.com.tr
X-AspNet-Version: 4.0.30319
LB: 19
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:05:32 GMT
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2558
Expires: Wed, 21 Dec 2022 19:48:10 GMT
Date: Wed, 21 Dec 2022 19:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14589
Expires: Wed, 21 Dec 2022 23:08:41 GMT
Date: Wed, 21 Dec 2022 19:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f4b32de26d9af2cba6afcdcf716d3fb8
644ead4436a8f2fc1f0dd25e4484b64f6ed63347
525123034cb53d750d5ebd487015911452d2cd3c34301e6628f2f52f3f0bfc88
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "525123034CB53D750D5EBD487015911452D2CD3C34301E6628F2F52F3F0BFC88"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2807
Expires: Wed, 21 Dec 2022 19:52:19 GMT
Date: Wed, 21 Dec 2022 19:05:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 18:45:56 GMT
content-type: application/json
age: 1176
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eKsHjqOE0uMTDJ+FdLGRRGFeJxJRHKMJhToHEskT59k7vbWKdogC4k8GGxF0cxGG5YqbPgypNCY=
x-amz-request-id: NPGS3ESPAGVNGA84
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 18:55:28 GMT
age: 604
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:05:32 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 18:08:02 GMT
age: 3451
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 2b6e894076ea00953c6e5557bc7f61ab
bea101ad8592d25a8f08f8e0b5569bae2c6387fa
ae9cf5b5f6b9c1faeda43ea3bb9296446d330f32447be532234efd9b86a597cc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 00:20:49 GMT
Expires: Tue, 27 Dec 2022 00:20:48 GMT
Etag: "bea101ad8592d25a8f08f8e0b5569bae2c6387fa"
Cache-Control: max-age=450314,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3cf1deab529-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 859d899d982bb69df5fb16b8393fa119
580215f1d4f81cda04012c0889cfd9b18ba11863
38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6158
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:33 GMT
Last-Modified: Wed, 21 Dec 2022 17:22:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.188.211.138101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.188.211.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ssUBK2UfshLtNnPG4yKBmQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wI4MUxnMit0kpN9DGHnnVpYTmY4=
i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
143.204.55.128200 OK 560 B URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
IP 143.204.55.128:0
File type ASCII text, with very long lines (560), with no line terminators
Hash f8c10caf538998ff6d2c27e1d5b4f2a8
9e67475fa5ff8918e47f376231206895e0241107
de7b0560f57ca54ef83318f3b21787f7afea8c70b1c7a68595b6b92c4371b888
GET /pimages/Content/Uploads/Fonts/fonts.css?ver=1137 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
content-length: 560
server: nginx/1.8.1
date: Thu, 15 Dec 2022 11:08:31 GMT
last-modified: Mon, 23 Aug 2021 14:21:09 GMT
etag: "6123aed5-230"
expires: Thu, 22 Dec 2022 11:08:31 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kSGlcwMWtu3GQS0VlZ4Wo6MLUPS6bwFUME1RHBq101PFuM0AJHkYqw==
age: 547022
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
143.204.55.128200 OK 85 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
IP 143.204.55.128:0
File type JPEG image data, progressive, precision 8, 1140x60, components 3\012- data
Hash 2262a6cd553491392cff28836e8d9ab7
73d077b783e2b8ec77e1824c88e792a5e312ac06
3d30c965c09ec72e1dee69a23e69878b910976a54f887269aea21d604b9d8d02
GET /pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 84725
server: nginx/1.8.1
date: Tue, 20 Dec 2022 13:41:20 GMT
last-modified: Tue, 20 Dec 2022 13:40:35 GMT
etag: "63a1bb53-14af5"
expires: Tue, 27 Dec 2022 13:41:20 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0iecigGmmr-R1_b2GBG-qzXcBav_Lj4CGhnri8-_de2lsTLifp7WrA==
age: 105850
X-Firefox-Spdy: h2
www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
46.17.134.217200 OK 107 kB URL HTTP/1.1 www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033), with CRLF, LF line terminators
Size 107 kB (106817 bytes)
Hash 1a75710d91e4e24779c10c2475c75952
92b9b22d4ee16dbbf3d0f612e133f4bfdd6407f3
cded7da800a0d5aa22ff6e4c60f4f3fbf2e3b492825c7869c210b4c353d88136
GET /common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 106817
X-Frame-Options: SAMEORIGIN
Set-Cookie: DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; expires=Thu, 21-Dec-2023 19:05:33 GMT; path=/; HttpOnly
NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:33 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
46.17.134.217200 OK 3.5 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (18443), with no line terminators
Hash cdcd04cd9cb907d47f42e7abfe5d63d4
24ac472ad55bd46125361982c3d6595a98a790e8
65c156a711a67f0f68e9fc78dd118937dc4f3301a27592872a8dea5cc3bb7718
GET /Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 11 Nov 2022 21:39:28 GMT
Accept-Ranges: bytes
ETag: "0683e1316f6d81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 3510
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
46.17.134.217200 OK 856 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (2246), with no line terminators
Hash cf7786410ee1af5bc919a761ea6def31
e654d14a699f6675044c46fb6226285fecddf8d7
d0bba3888a2c237ee488d1162e145826f1597559821b5b74ff0966160600005d
GET /Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 2246
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 856
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137
46.17.134.217200 OK 246 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (427), with no line terminators
Hash e5363fddc041491455104aed2a227073
85b45cf2409e9847113499e9b7c74e08c3dbf9fc
f6721da1fadbb82cc9363a4f34470fb00893d88b2c7d7f225882858332663cde
GET /Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 427
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 246
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137
46.17.134.217200 OK 1.4 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (4921), with no line terminators
Hash af3a6b1f9b2fd02e52462392977586a3
934e40a48caa29fe1e242965b40942573b5b0b8d
8f5b4bf4b9f81ebe90af264355673e7f9eea77807cc2ed58d90530c3f407598f
GET /Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 4921
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 1419
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137
46.17.134.217200 OK 820 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (1986), with no line terminators
Hash 412bdf0074f1e9c2f1c3d47518ad2970
f0b69b868b497d61be36ddfcd745022243ae9e11
79d3db3112173d2eab9d3ecab72d8b3b801af69a100f4a8e001c2ece7f70d04c
GET /Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:33 GMT
Cteonnt-Length: 2009
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 820
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
46.17.134.217200 OK 35 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (65536), with no line terminators
Hash db9657130b2e2958374ec9b77ea758b4
11b26340ab7f1d05fd653a04634df46e97719f78
3f51e22c0064be3e76df10c8a89b2d3a80ecb33215494dd663745534a548ab5e
GET /Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 13 Dec 2022 11:44:02 GMT
Accept-Ranges: bytes
ETag: "06d1b32e8ed91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 34741
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
46.17.134.217200 OK 86 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash e839ab16baedf7b7b7be15a7fe6a43da
01d849a4d9057c5e70a37bd356a84fe7b568b5ac
50127c56ebea364ae378a7fcc1809aa3d9b27541844a741b65274455a1673a72
GET /Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 14 Dec 2022 12:31:06 GMT
Accept-Ranges: bytes
ETag: "061c1efb7fd91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 85838
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash aa0fe09ecba18f88fff720b69e5d69b0
759143cbf2206b629dd39262a73f27a77b134cce
2f90277833fd4c55f26417e3e253b0144b8baac4c89d6be80fc5ebd845294608
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 22:45:49 GMT
Expires: Mon, 26 Dec 2022 22:45:48 GMT
Etag: "759143cbf2206b629dd39262a73f27a77b134cce"
Cache-Control: max-age=444613,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3d55e43b529-OSL
vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
185.29.195.172301 Moved Permanently 209 B URL HTTP/1.1 vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
IP 185.29.195.172:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash adc57312fe24beffd292aad33f6676fb
fa2d7dc3501390d3d70f24c7acb253be0176c62a
71f3dfd046f58a1db35fcf5861d4116355b2f07bee4e9fb4413debe0f8f28f01
GET /Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR HTTP/1.1
Host: vsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 209
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
46.17.134.217200 OK 7.3 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1693)
Hash 7faeb100a61b5d33f7928e1caac5154b
da91c2b07077417ccdb0766d8eef3ba8c0b6e1da
06d578c63b95c8189e7035f3d5e8f964302ef0a91267b3da25d4ee20234059dc
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/svg+xml
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Length: 7348
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:34 GMT;path=/;secure;httponly
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
143.204.55.128200 OK 38 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
IP 143.204.55.128:0
File type Web Open Font Format (Version 2), TrueType, length 37552, version 1.0\012- data
Hash 1983ab3b86a7b25f4ee8be0dd1d5b9cf
aee7222e1fd8cccc6cc7dfa222db0b5b645e8136
2ecb993e7339264ad246a68d7b9155ed199e08799f4362168bfbbddd0cba8bc4
GET /pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37552
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:24 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Mon, 19 Dec 2022 05:30:45 GMT
expires: Mon, 26 Dec 2022 05:30:45 GMT
cache-control: max-age=604800
etag: "611389b0-92b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GyUrKQxEFN3tDpHukVliYkhkNTLsMdpjcF_Q4IGsfAY66jYxW8-Ltw==
age: 221689
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
143.204.55.128200 OK 44 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
IP 143.204.55.128:0
File type Web Open Font Format (Version 2), TrueType, length 43980, version 1.0\012- data
Hash 30328c47ca087fd5694c7071932b6b27
f4addbdae2ea5a68aef371b9cf61046a735387c3
74840d37499f126d3e68507b5634f72c9e6038c18f92eed5568786bc7d7a1fb7
GET /pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 43980
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:20 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Fri, 16 Dec 2022 05:35:02 GMT
expires: Fri, 23 Dec 2022 05:35:02 GMT
cache-control: max-age=604800
etag: "611389ac-abcc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZUqQ3BeWIMERhVXBVWyrFPI8N3e2e5qUIsp4k9P1cWYlNcoxfWlReQ==
age: 480632
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash db151f8790fc80bb535b13560972296a
768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1
36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4167
Expires: Wed, 21 Dec 2022 20:15:02 GMT
Date: Wed, 21 Dec 2022 19:05:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3bd6359db3b908389343275ee839466b
9094f8e9275252a8e9d5e65fd3e87851b2f80bd7
7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:41 GMT
age: 77274
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8f5b2e482a0944dfc0de3a69659fa002
64dd897d9163a6eceadc0c5460cdd135d323abb3
feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:02:35 GMT
age: 43380
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8218fde73bff9978e07b0e06e1f7f0fb
ab15f8d74ea032d89f65603b4eef2377dc97e358
134d5a1046ea50f37f0234a4d1d167130b2950a1d61e93e2340dccbc922b4844
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9493
x-amzn-requestid: 54028261-e98d-4bb6-98da-51d41edc6d2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da61jElIIAMFl8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b56-7eeb3b142dd3d0f92e9fa9ba;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:09:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: oXQy1PwLBW8u0kv_sHcypb8QB6xwLtYMy4eWRZVQaD2xYjpw2dGA3A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 03:55:09 GMT
age: 54626
etag: "ab15f8d74ea032d89f65603b4eef2377dc97e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b67d0976563ea9460d94e27ff920f9da
f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92
c7ec3c4b87b700796008690562a6033481a7ad826fb2f45875cd6add06189568
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10154
x-amzn-requestid: f317432b-7dda-439b-bc02-9c76412e9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DGlfoAMF5Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-13a5af4c477a1019544222f4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: zee8fH2mx78hr5oICfnTrdmJeFcioNt_4_eo8ffiKApLll4cbLR82A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:50:12 GMT
age: 76523
etag: "f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _nupdrdRDG-S085FRNoJgzDQVg9Ngb_nYDR5C1AkkterWy8vlXBxGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:41:22 GMT
age: 77053
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4aa7e9e3fe28e9c401786f7415171f7
8482a47175ff105957d640269bc14ee1fbc97448
2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: daGQIEuSoAMFnBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: axz1LSfJfBvAFuJl53Sl6Kh7r2R4FiTuDB3Xb_XI5AwXB20Gs4rg5A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:49:59 GMT
age: 76536
etag: "8482a47175ff105957d640269bc14ee1fbc97448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-ZGV7
172.217.21.168200 OK 92 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-ZGV7
IP 172.217.21.168:0
File type Unicode text, UTF-8 text, with very long lines (38373)
Hash 479abcc37618ec37beaf330283160121
a706cc8dceb7baa466702716cd67afd23826ce02
642be2d2c690f8f9f29ba13084d931f6a504ba818d5ab7f63c176ee8d9d349c1
GET /gtm.js?id=GTM-ZGV7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Wed, 21 Dec 2022 19:05:35 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91575
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 889441ff71167088eed6563ca890f2ea
d89ea0020abd17c99cd8753c6d079faa0ec8db96
a70e96254fd4f3eb53467b04dc4944a3c98e951e5271b99b80d2075ee21eab39
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 05:26:15 GMT
Expires: Wed, 28 Dec 2022 05:26:14 GMT
Etag: "d89ea0020abd17c99cd8753c6d079faa0ec8db96"
Cache-Control: max-age=555038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3dacd16b529-OSL
i.dr.com.tr/pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png
143.204.55.128200 OK 22 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png
IP 143.204.55.128:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b6288a41ab215477cf69da06bf65eae0
774faea5139c23a6e882b54fdad6dd27e19495a0
867829e68b4e041687361d78163491896fe851436f0ddf1c2bf706f2e7879b57
GET /pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 21702
via: TMGRUP, 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Thu, 01 Sep 2022 07:10:23 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Thu, 15 Dec 2022 20:00:29 GMT
expires: Thu, 22 Dec 2022 20:00:29 GMT
cache-control: max-age=604800
etag: "63105adf-54c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bmaWNtYE_JaJyDrA5hIaFpnDHrH6TfW5zQVp7UROHdvwqIzuCO3J5A==
age: 515103
X-Firefox-Spdy: h2
wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
91.235.64.232301 Moved Permanently 227 B URL HTTP/1.1 wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
IP 91.235.64.232:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4ced202284e35d115e8a52a74c443a6e
2bf08f5db6e34d99d560d3af9f6eb21b183020fb
5e649992b9355c98784feb8bc639af08a2df3cf6c245f5e9faf37286b86849fd
GET /relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81 HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
Server:
Set-Cookie: BlueStripe.PVN=1a440009613a; path=/
X-AspNet-Version: 4.0.30319
LB: 17
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 227
Strict-Transport-Security: max-age=157680000
www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
46.17.134.217200 OK 1.2 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 826b8858eadc52a7b2eb04efb945a1e4
84b1c4ca4cbea50ee4bc8f7cbeb454095c675a97
c7e236c7f42a7d653df97e4c7e11d8b0e9ce12f0a4e155837e965feba4802d8f
GET /Themes/DR/Content/NewTheme/images/favicon.ico HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Length: 1150
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
46.17.134.217200 OK 86 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type MS Windows icon resource - 1 icon, -112x-112, 32 bits/pixel\012- data
Hash 64695caf1623b5cd7c04d0d6d2e01fd3
2b37e14bf6a4712ea5ba0ab1b3af5617a9b5e6ac
a643fd7986e61950a09c2985116d34f8b00050a13c299748c14aac54772be637
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Thu, 29 Sep 2022 06:38:56 GMT
Accept-Ranges: bytes
ETag: "040e625ced3d81:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
Content-Length: 85886
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 80fefa4e0a7e3acbce76a9e7f57a8eab
0612504d0ae9664127c3eafd43867ae57b75a832
dffec6e9deab94fb10ba4f22908241fc2d27f629421ef6ad12a90b4ee02ca7a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221?
142.250.74.38200 OK 359 B URL HTTP/2 4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (708), with no line terminators
Hash 694207f2b17c73a4ac121b51db434e45
f50dc3fc21925cc654059c4ab9006ac8434c938a
2c929b1b081f955037321e4f6790d5897da2f9113b4483d0ddb9297edcffe510
GET /activityi;src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221? HTTP/1.1
Host: 4876222.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 359
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:20:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a4e09fbe8c7f13b5f2593bfb7b654f35
2f0ab877a5de8ede3d0cf8d47614e4f847f12cc1
ebf6a6c3c22bf48f663ced84746989c300b5a8268a980df2e0410bf060ff0e1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.dr.com.tr/manifest.json
46.17.134.217200 OK 0 B URL HTTP/1.1 www.dr.com.tr/manifest.json
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /manifest.json HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6ImQyMjJmODQwNzE1ZTY1ZGMiLCJ0ciI6IjNhMjE5ZDU2MjU2ZDRkM2FjYTgzYWQwYWExOTJjM2JmIiwidGkiOjE2NzE2NDk1MzU0MjF9fQ==
traceparent: 00-3a219d56256d4d3aca83ad0aa192c3bf-d222f840715e65dc-01
tracestate: 510794@nr=0-1-510794-10449929-d222f840715e65dc----1671649535421
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Length: 63
Content-Type: application/json
Last-Modified: Wed, 24 Jul 2019 10:34:06 GMT
Accept-Ranges: bytes
ETag: "023b251b42d51:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
www.dr.com.tr/relatedpush_sw.js
46.17.134.217200 OK 81 B URL HTTP/1.1 www.dr.com.tr/relatedpush_sw.js
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with no line terminators
Hash fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224
GET /relatedpush_sw.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1; OfferMiner_ID=LSEDJPBPQOWCGPPO20221221190535; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22LSEDJPBPQOWCGPPO20221221190535%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%5D%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:05:34 GMT
ntCoent-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
142.250.74.130200 OK 360 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (707), with no line terminators
Hash d2a5e61e622698d053cc61c920c7ee63
75d5efd636f1803c55050d8f69bb14720d6e5752
19130eefc47616c538b37219a41e35415c64c8278c59f34d860fe8e4f8632859
GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4876222.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 360
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=370277,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3dc3ef8b529-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
34.120.65.227200 OK 57 kB URL HTTP/2 cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
IP 34.120.65.227:0
File type Unicode text, UTF-8 text, with very long lines (47012)
Hash cf208de6ef6b42e769ac8c64c4756c59
2b51a1912f98f59c4d2e9f09a1ed9d7d655a24c8
a18a56c6f555c61ca5c765f33bb681afe71b3241b4eadd29c4867a62e0a8bb90
GET /2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdshuURpLHjSf5aEK1fEXShFS4G_FzKDQbb8KhXuovxlaSjobPvafuWd-jMviNg5Wm5hXrCDrgSeSveH-hH_JYktigtNOEoI
x-goog-generation: 1671595307284668
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 57201
content-encoding: gzip
x-goog-hash: crc32c=MBIsWg==, md5=zyCN5u9rQudprIxkxHVsWQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 57201
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Wed, 21 Dec 2022 04:10:49 GMT
expires: Wed, 28 Dec 2022 04:10:49 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Dec 2022 04:01:47 GMT
etag: "cf208de6ef6b42e769ac8c64c4756c59"
content-type: application/javascript
age: 53686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
wps.relateddigital.com/relatedpush_sw.js
91.235.64.232200 OK 1.2 kB URL HTTP/1.1 wps.relateddigital.com/relatedpush_sw.js
IP 91.235.64.232:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type ASCII text, with CRLF line terminators
Hash 3c3509db30711bfee335f7e7dfbac78f
f0100abfb12b1648f87a1ffa05bb16a525ebf86b
fc5c3cb1a954e456fcf97f20a12458f801204969f2ce30c5b9ae2f96eead4e91
GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Oct 2020 13:16:28 GMT
Vary: Accept-Encoding
Server:
Set-Cookie: BlueStripe.PVN=1a440009614e; path=/
X-AspNet-Version: 4.0.30319
LB: 17
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 1217
Strict-Transport-Security: max-age=157680000
adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
172.217.21.162200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
IP 172.217.21.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=4961060055471;gtm=2wgbu0;auiddc=2098911002.1671649535;u13=undefined;u15=%2Fcommon%2Fpagecontent%2Fdrcard;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Wed, 21 Dec 2022 19:05:35 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2460279.js?sv=7
54.230.111.66200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2460279.js?sv=7
IP 54.230.111.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-2460279.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 21 Dec 2022 19:05:34 GMT
cache-control: max-age=60
etag: W/d41d8cd98f00b204e9800998ecf8427e
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N-cw16WaqgNAqHyvCUXgw2mYB-0Ub66WGjsvlIy9Hvda6jnoyJqZpQ==
age: 1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3424
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Last-Modified: Wed, 21 Dec 2022 18:08:31 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 52cca9f517da7041f625e7d292a2778e
e196da9a10d5386b958dabbfadfa4d723d7a2250
9c8ef3c85266a8a11267e4f55bc569987e1b9480970fc535ce9eb3b911506514
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 21 Dec 2022 18:41:11 GMT
expires: Wed, 21 Dec 2022 20:41:11 GMT
cache-control: public, max-age=7200
age: 1464
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
142.250.74.110200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
IP 142.250.74.110:0
File type ASCII text, with very long lines (1921)
Hash e92fad25913092a394452a9682bd9cfa
74845eb88d48befce7266dc5147696edf831b4b5
fab775eee74a253cd3f167dc7cce64258e6266f0ef6cdfa06000bcaee8968057
GET /gtm/optimize.js?id=OPT-N8GSXSG HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:05:35 GMT
expires: Wed, 21 Dec 2022 19:05:35 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43946
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:05:35 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4
142.250.74.130200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2270), with no line terminators
Hash 0001321f183a3fd7e55a58a0a92294a1
b4f1b90b65ab423aea71fed290ded140e62087b8
a15e5eb3bde93d74e1f86482a31e58ea8783c623d98ecefbc9b7bd48370cbc4f
GET /pagead/viewthroughconversion/992597607/?random=1671649535407&cv=11&fst=1671649535407&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&auid=2098911002.1671649535&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1021
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:20:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: j0V53vtA5NIE2qPZssEA9b0N/QtCyfEIq6z41MSFMND5WELSkWBVSofEe9xaDMPdZCsjAVvVqY95tF6P46NuRg==
priority: u=3,i
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 21 Dec 2022 19:05:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3424
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Last-Modified: Wed, 21 Dec 2022 18:08:31 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.dr.com.tr/relatedpush_sw.js?1671649535437
46.17.134.217200 OK 81 B URL HTTP/1.1 www.dr.com.tr/relatedpush_sw.js?1671649535437
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with no line terminators
Hash fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224
GET /relatedpush_sw.js?1671649535437 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1; OfferMiner_ID=LSEDJPBPQOWCGPPO20221221190535; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22LSEDJPBPQOWCGPPO20221221190535%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%5D%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:05:35 GMT
ntCoent-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:35 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3ded80a1c0a-OSL
ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
IP 216.58.211.3:0
Hash 0bd2babfb67f762f5a710f5dc916814e
82d053b77671d4a8ac718869de4d0ef42696ee4b
e60f033692cef05af22e008cdde5f77e4c2ffe161c8e7cb72bfaa45787a6c2c3
POST /s/gts1d4/GGjoAgr7N70 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.sgmntfy.com/pa.js
34.149.223.191200 OK 3.7 kB IP 34.149.223.191:0
File type ASCII text, with very long lines (3744), with no line terminators
Hash 7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec
Analyzer Verdict Alert quad9 Sinkholed
GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsBgLD22VlTHwelbKiYrQRX1-vpig45pwkGAKDv73RzohBIm4u5UoP657B8aXtvb4VdC-9o3ARCqUamwkufbFRxkJqWtYND
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Wed, 21 Dec 2022 18:29:46 GMT
expires: Wed, 21 Dec 2022 19:29:46 GMT
cache-control: public, max-age=3600
age: 2149
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=370277,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3de18edb529-OSL
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 1e241030c5209598a72f9ea976d83aa1
7aeecc0d0821a13950e3278c9dbf7e0fb7dbaa21
376c69ae3d04134dadf60fa39fde4bae27cd782b33079c787f68308e17bd4481
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4900
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:35 GMT
Last-Modified: Wed, 21 Dec 2022 17:43:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&gjid=837193314&_gid=1976066439.1671649536&_u=aGhAgAABQAAAAEABM~&z=546333035
64.233.164.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&gjid=837193314&_gid=1976066439.1671649536&_u=aGhAgAABQAAAAEABM~&z=546333035
IP 64.233.164.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&gjid=837193314&_gid=1976066439.1671649536&_u=aGhAgAABQAAAAEABM~&z=546333035 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 19:05:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436399,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3df8aacb529-OSL
wps.relateddigital.com/relatedpush_sw.js
91.235.64.232304 Not Modified 0 B URL HTTP/1.1 wps.relateddigital.com/relatedpush_sw.js
IP 91.235.64.232:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 15 Oct 2020 13:16:28 GMT
Cache-Control: max-age=0
HTTP/1.1 304 Not Modified
Cache-Control: private
Content-Type: text/javascript
Server:
Set-Cookie: BlueStripe.PVN=295800039a9d; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:35 GMT
Strict-Transport-Security: max-age=157680000
per2.segmentify.com//get/key/v1.json?count=2
95.214.74.47200 50 B URL HTTP/1.1 per2.segmentify.com//get/key/v1.json?count=2
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash a00e32694974ab88b136d6ced54dc866
13a7c9537bcf29ca929ec6b7a15a0e78d207c5c9
64b7134f00ada6a3dba599fa25c3d26dd633ff05160b98d24a3f30508cc6f54d
GET //get/key/v1.json?count=2 HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:05:35 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00
t.co/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:35 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=9a266116-dd97-49aa-aedc-66166cb19fb0; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:05:36 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0d7a4e0884890de9
strict-transport-security: max-age=0
x-response-time: 117
x-connection-hash: 8617d772be5c8f463fd3584e7d267178ac3b7c3591c6ce2247eb80d1577b67ba
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=0&ipr=y
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=0&ipr=y
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3774
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Last-Modified: Wed, 21 Dec 2022 18:02:42 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ee04940bea32334977d45357ff71701a
01a6bd71066c908aefeadf351ed4cce9c27250b5
81b6314244e3d62d68a932fdba62173de116492ecf8e82c2197b4a3a6d8126de
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3878
Cache-Control: max-age=105470
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a242d8-139"
Expires: Fri, 23 Dec 2022 00:23:26 GMT
Last-Modified: Tue, 20 Dec 2022 23:18:48 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
www.google.no/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/992597607/?random=1671649535407&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Yard%C4%B1m%20%7C%20D%26R&fmt=3&is_vtc=1&random=1567952357&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-36126232-1&cid=1213785094.1671649536&jid=88656408&_u=aGhAgAABQAAAAEABM~&z=1096139116 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:05:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3645
Cache-Control: max-age=115702
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a26bb9-1d7"
Expires: Fri, 23 Dec 2022 03:13:58 GMT
Last-Modified: Wed, 21 Dec 2022 02:13:13 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ams.creativecdn.com/tags/v2?type=json
185.184.8.90200 OK 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:36 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2
ams.creativecdn.com/tags/v2?type=json
185.184.8.90307 Temporary Redirect 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.dr.com.tr
Content-Length: 316
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Wed, 21 Dec 2022 19:05:36 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=ljL2cy005C9tvMGaC11V;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:05:36 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1671649536;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:05:36 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://ams.creativecdn.com/tags/v2?type=json&tc=1
content-length: 0
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
95.214.74.47200 OK 0 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sfy-api-key
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, X-Switch-User, X-Switch-Account, X-Switch-Region, X-Sfy-Api-Key
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3600
Connection: keep-alive
Content-Length: 0
Content-Type: application/json
Date: Wed, 21 Dec 2022 19:05:36 GMT
Server: nginx
X-Server-Name: 287260ae76fedca0934bc740be560e00
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=466fcf87-77f2-451a-bdea-ab90d551e917&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=929e8d7f-f3ca-4525-8335-0ccc4bacd090&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:35 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_orE5MpwlflQ/HuXD9KnGiQ=="; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:05:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 71d4c300b1a460d1
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: ff3b7e36403a043a5b681b8f9acc243f5ca7bd18a4e0fb81a859f7d48a5fad5f
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
95.214.74.47200 1.5 kB URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4867), with no line terminators
Hash 8ad0eb8f2ac4fc1897bc709172a1a93d
ec2e7b6b3de6dd5c0fe1a77f3f2107f612542408
163d04a31ad6f1e9f46c9411f92a043849ea6dc0cc0c411117a0c9a39a5330c4
POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 9126
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:05:36 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00
ams.creativecdn.com/tags/v2?type=json&tc=1
185.184.8.90200 OK 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:36 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649536247&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649536246.884401885&it=1671649535867&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649536247&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649536246.884401885&it=1671649535867&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fcommon%2Fpagecontent%2Fdrcard%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649536247&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649536246.884401885&it=1671649535867&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 21 Dec 2022 19:05:36 GMT
X-Firefox-Spdy: h2
ams.creativecdn.com/tags/v2?type=json&tc=1
185.184.8.90200 OK 245 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash fafa83267aa27524d7e8e7fd613f423a
fba6656c5b6896029a6f12bbe5bad5a015621461
66b50e3d39aae15842a265610e1f12efa51ea3f2430c6b6c0efdd453ceba8a04
POST /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 316
Origin: https://www.dr.com.tr
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/json;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Wed, 21 Dec 2022 19:05:36 GMT, Wed, 21 Dec 2022 19:05:36 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 245
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
46.17.134.217200 OK 54 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3928)
Hash f331aa8a71e90cf9ce7c886b038c707f
2799241a6e213d34aa93bd8afb5f7b486f89211f
cbcd276809baa39b8aa07c38a12b220d3855cbec2b989ca567d89a53853644de
GET /Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6IjUyNzU0YWM3Njg2ZTlmODgiLCJ0ciI6Ijk5YTQ4MTdjZTc5NTYxYTg4MzAzNWYyMDhlNDMyNWE2IiwidGkiOjE2NzE2NDk1MzY0MDF9fQ==
traceparent: 00-99a4817ce79561a883035f208e4325a6-52754ac7686e9f88-01
tracestate: 510794@nr=0-1-510794-10449929-52754ac7686e9f88----1671649536401
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660; DnR.customer=626347a4-2924-4d1f-9cd4-1d85f2a8cc59; __session:0.22385134520223304:=https:; _gcl_au=1.1.2098911002.1671649535; lastclick=other; VLCV1OK=1; OfferMiner_ID=LSEDJPBPQOWCGPPO20221221190535; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22jTmlQu4ZeIp4GhUOrbht%22%7D; _ga=GA1.4.1213785094.1671649536; _gid=GA1.4.1769228684.1671649536; dr_ua_cookie=GA1.4.1213785094.1671649536; dr_ua_cookie_gid=GA1.4.1976066439.1671649536; _dc_gtm_UA-36126232-1=1; _sgf_user_id=-6139773874847252479; _sgf_session_id=-6139773874847252480; _fbp=fb.2.1671649536246.884401885; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A05%253A35%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A35%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22LSEDJPBPQOWCGPPO20221221190535%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A05%3A35%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A35%3A36%22%7D%5D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 54039
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:36 GMT;path=/;secure;httponly
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.130.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QKJbZH0tUcMtAsLZitbfwcPpTgZbXYEZElUcFQJ41NzHawdKY70ohMytOmE+mYAGFiIaDXcfKyI=
x-amz-request-id: 6WVZ36C2EBPHWFVA
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:05:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1654-BMA
x-cache: HIT
x-cache-hits: 1065
x-timer: S1671649536.474445,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0f31422ae936eb89a3622e05026ba27b
2398469b858daa8a1a315460786ecdd10d8dd22b
6e71073e63a36cc568448f7896db4d34f8734b1d7de4ef7c41beae49792f6504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4648
Cache-Control: max-age=114892
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a264a5-117"
Expires: Fri, 23 Dec 2022 03:00:28 GMT
Last-Modified: Wed, 21 Dec 2022 01:43:01 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A
185.184.8.90200 OK 440 B URL HTTP/2 fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type HTML document text\012- HTML document, ASCII text
Hash 8aa0879bba5a89a97ad226cf10629421
5a7bba47174fcfe5e67e5986b77c120a70722724
136a380ae71cfeecc72cb53485cee866a5b0e63140be7630187cf1b78ac6c7ba
GET /fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GY12KOODH1pYxUb-br_8HnUlg0dsBj1Y2KtviRZIAQ40A HTTP/1.1
Host: fledge-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
origin-trial: Anlqio5K3Dr7Hn1oMh2faiLECLxb8MnD1hPnDOlNZXdzpbZV9L2LOKjgHGwWMDoiHq67q8SjUmjQZj10YLJwfgIAAABxeyJvcmlnaW4iOiJodHRwczovL2NyZWF0aXZlY2RuLmNvbTo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjgwNjUyNzk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cache-control: public, max-age=86400
date: Wed, 21 Dec 2022 19:05:36 GMT, Wed, 21 Dec 2022 19:05:36 GMT
expires: Thu, 22 Dec 2022 19:05:36 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 440
X-Firefox-Spdy: h2
dr.api.useinsider.com/ins.js?id=10001448
162.159.134.61200 OK 0 B URL HTTP/2 dr.api.useinsider.com/ins.js?id=10001448
IP 162.159.134.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ins.js?id=10001448 HTTP/1.1
Host: dr.api.useinsider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:05:36 GMT
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
etag: "d41d8cd98f00b204e9800998ecf8427e"
last-modified: Fri, 15 Jul 2022 10:15:22 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: u0EOnGEwlp31eqUzH39awZ+0Agtv7mL03QSxjYL6VOJIb7cDEgHjHTJnRTBsafXVHs9z0rjR3kE=
x-amz-request-id: HGZKHPKNX8EDK2RW
x-amz-version-id: wNkEcItKcpD12eM52_A_rhIY5m87APnA
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 177
expires: Wed, 21 Dec 2022 19:10:36 GMT
cache-control: public, max-age=300
accept-ranges: bytes
set-cookie: __cf_bm=eo7qggB3GODgIevuYcdYCJUMwUEy4me4XWP2z2doUBA-1671649536-0-AREum3Oy43G7wjcLurbkH+fZFKMFfNmFzHES7QsLQcXjqGclsR0c2p11RlhOw6NfDBBk9SSyGz+rNqneW49mlgc=; path=/; expires=Wed, 21-Dec-22 19:35:36 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2e3e358b5b4ff-OSL
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
95.214.74.47200 122 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash dc39cd34673442c71961c365f4fe1139
d76bc846a433cdf54b78affd585ebd708881ec9f
1d65f98c016ba5d818790867ac3aed909d5302c1c1554561b6f66659580efa1a
POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 811
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:05:36 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00
lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT
185.29.195.171200 OK 70 B URL HTTP/1.1 lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT
IP 185.29.195.171:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 02a065761e036bca2f981f3ed704dc79
e251c670f45fb6dadca5f779fed5b6cc132c7cdf
cd8feca47797d25495f03a52b6a8605de61b829c01be0dca0c2ff0fed71ec3d8
GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT HTTP/1.1
Host: lgr.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: Image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Set-Cookie: OM.3rd=0761f0b8-00e7-4602-b73a-9203b9159309; domain=.visilabs.net; expires=Sun, 21-Dec-2042 19:05:36 GMT; path=/
Date: Wed, 21 Dec 2022 19:05:35 GMT
Content-Length: 70
rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT
185.29.195.174200 OK 70 B URL HTTP/1.1 rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT
IP 185.29.195.174:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 14d1707eda790f543c6fb8d0dcff6359
cf7049298a876447c2854cf2bc4df2987587aac5
de9d3fd0eb948bd294477d0eda60a73b85caff1794803530d0463193a113da98
GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=LSEDJPBPQOWCGPPO20221221190535&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fcommon%2Fpagecontent%2Fdrcard&OM.title=Yard%C4%B1m%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:05:36%20GMT HTTP/1.1
Host: rt.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536027; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:05:36 GMT
Content-Length: 70
Set-Cookie: BIGipServerVisilabsRealtimePoolHTTP=616766905.20480.0000; path=/; Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6aa627e28c71a3d2789eddf92231471b
11facb6d6c4aff37d4aefe52c3f92bdbfa6d1b88
bea3ba8609e274db498cd9e3abc98f77f4499c20b56083795cce7bc561c62a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4702
Cache-Control: max-age=103442
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:05:36 GMT
Etag: "63a237b4-1d7"
Expires: Thu, 22 Dec 2022 23:49:38 GMT
Last-Modified: Tue, 20 Dec 2022 22:31:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=TENVGwNNEghBH0FHWEcoUBsDFAdXBgJwBncEVHIICgAFJBFMGRdEFVtPG2xFVRR6QXRRVUUER0obDBJfAh8MBR8DUxoIDAISShFkRlBDfhF1XV1EVRVAY1RCEw1DDQgXDwBIBwMbBAQDQxgbbEVVFHpVFw8TAVMCCg0BUVIeAwwHBRpVUAhfGwkFVwUYBFUPVFILWA5TBQYIFxkTYhJRS3hRVQhHYkFHWFkGFgMbe18cWl1ZVB4CTwQZEWFZCFdeQkYReTUUCAkYAF0TZlxbBwNaFEEPAgtGQUcPBAECTwQQGXFVBVheGgcBBlEECAkHECBaQ1BTXk9OBQkMGABEHxNgR11nAEBReFhUN0ZUR0wTDUMbWlZbXQldHkVUVlICW1dNU14SHFVHVlBFBQtMTVtvFVxER1ZUCgRBS1ZbVRVAUFJQF0IVWWZUU1QPRlwIWFBeDV1XXhBFEl5uVlRcRwBdXlcLXQdaXWpQX0IbQVdeU1MDbAMFBwMGUwYIZlNTD1cAUQZUD1EACVhTU1IHUgIDUAFXBwpdVwReUghXBwRSWRJMTVtvBVxfQVBfQ1xZWFBabwNdRE9AX1AEV1xmBABUAQAHBwAVHEk%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=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%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=3982&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard&ap=297&be=1447&fe=3833&dc=2489&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649532563,%22n%22:0,%22f%22:580,%22dn%22:584,%22dne%22:584,%22c%22:584,%22s%22:653,%22ce%22:980,%22rq%22:980,%22rp%22:1347,%22rpe%22:1347,%22dl%22:1361,%22di%22:2487,%22ds%22:2489,%22de%22:2493,%22dc%22:3833,%22l%22:3833,%22le%22:3851%7D,%22navigation%22:%7B%7D%7D&fcp=2491&at=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%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:36 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77d2e3e548a5b52d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=9df86b36c9a1377e; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dfd8efaba7b4ec21f029ff562ff04a82
ea4324fd871ab145864664fd2b6e443eece69835
e1c3cfecd1038988469bd27f97fd485008334e5212ed9ead279005634c7f59f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 01:57:49 GMT
Expires: Wed, 28 Dec 2022 01:57:48 GMT
Etag: "ea4324fd871ab145864664fd2b6e443eece69835"
Cache-Control: max-age=542530,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2e3e68b51b529-OSL
ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=jTmlQu4ZeIp4GhUOrbht
67.202.105.23204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=jTmlQu4ZeIp4GhUOrbht
IP 67.202.105.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?us_privacy=USP&xi=52&xu=jTmlQu4ZeIp4GhUOrbht HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP012
date: Wed, 21 Dec 2022 19:05:36 GMT
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=7306&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=7306&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EeZVRWUiJbV01TXhI%3D&rst=7306&ck=1&ref=https://www.dr.com.tr/common/pagecontent/drcard HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1398
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:05:40 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 77d2e3f84978b52d-OSL
Access-Control-Allow-Origin: https://www.dr.com.tr
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
www.dr.com.tr/Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
46.17.134.217301 Moved Permanently 0 B URL HTTP/1.1 www.dr.com.tr/Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
GET /Common/PageContent/DRCard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.dr.com.tr/common/pagecontent/drcard?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:05:33 GMT
Content-Length: 31777
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:35:33 GMT;path=/;httponly
avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
13.107.213.53200 OK 0 B URL HTTP/2 avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js HTTP/1.1
Host: avlsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=8640000
content-type: text/javascript
content-encoding: br
content-md5: 3g3T/bNv20ozIAUHqNB0+A==
last-modified: Wed, 18 Aug 2021 09:46:48 GMT
etag: 0x8D9622D19366EBC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 56398b91-901e-0031-7ee7-131e84000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0/cagYwAAAABsXchojEXWSJ8XLs9BpsINQU1TMDRFREdFMTgyMgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
x-azure-ref: 0/lijYwAAAACS4JhTMieqTqFh9L1XYs3IU1ZHMjBFREdFMDUxMgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
date: Wed, 21 Dec 2022 19:05:34 GMT
X-Firefox-Spdy: h2
rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
13.107.246.53200 OK 0 B URL HTTP/2 rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js HTTP/1.1
Host: rpdn.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-type: application/javascript
content-encoding: br
content-md5: 7dJB1GMWSGW76wPPEWgUpQ==
last-modified: Tue, 16 Mar 2021 08:29:35 GMT
etag: 0x8D8E855A1ABE7AD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 027b946f-001e-0033-2518-14a03c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0Rl2iYwAAAAAnd+qpknWFSKjw37+xpfX0QU1TMDRFREdFMTkwOAAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
x-azure-ref: 0/1ijYwAAAADLE58g/d/JTZKDOoDWHQaJU1ZHMjBFREdFMDYyMQAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
date: Wed, 21 Dec 2022 19:05:35 GMT
X-Firefox-Spdy: h2