lb.dr.com.tr/eu/c/tq/063D9BCBD3D24BA584A9E41F607D283D/f7df11f5432a9460a621d491f0871d1f/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
91.235.64.15303 See Other 423 B URL HTTP/1.1 lb.dr.com.tr/eu/c/tq/063D9BCBD3D24BA584A9E41F607D283D/f7df11f5432a9460a621d491f0871d1f/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
IP 91.235.64.15:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 909595771c049a04ee646745c05a2240
1c881e292e34b072bdac11c915e431914f06491f
e656746383fe5d93a02c1e73c1de18933780982baccc44764d5b05506a2aa454
GET /eu/c/tq/063D9BCBD3D24BA584A9E41F607D283D/f7df11f5432a9460a621d491f0871d1f/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4 HTTP/1.1
Host: lb.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Location: http://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Server:
Set-Cookie: ASP.NET_SessionId=xk2ajmge12jyuhts41ggumva; path=/; HttpOnly; SameSite=Lax
Referer: http://lb.dr.com.tr
X-AspNet-Version: 4.0.30319
LB: 18
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:12:08 GMT
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15462
Expires: Wed, 21 Dec 2022 23:29:50 GMT
Date: Wed, 21 Dec 2022 19:12:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14215
Expires: Wed, 21 Dec 2022 23:09:03 GMT
Date: Wed, 21 Dec 2022 19:12:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 18:34:39 GMT
content-type: application/json
age: 2249
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18455
Expires: Thu, 22 Dec 2022 00:19:43 GMT
Date: Wed, 21 Dec 2022 19:12:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eKsHjqOE0uMTDJ+FdLGRRGFeJxJRHKMJhToHEskT59k7vbWKdogC4k8GGxF0cxGG5YqbPgypNCY=
x-amz-request-id: NPGS3ESPAGVNGA84
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 18:55:28 GMT
age: 1000
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:12:08 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 18:33:24 GMT
age: 2324
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 2b6e894076ea00953c6e5557bc7f61ab
bea101ad8592d25a8f08f8e0b5569bae2c6387fa
ae9cf5b5f6b9c1faeda43ea3bb9296446d330f32447be532234efd9b86a597cc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 00:20:49 GMT
Expires: Tue, 27 Dec 2022 00:20:48 GMT
Etag: "bea101ad8592d25a8f08f8e0b5569bae2c6387fa"
Cache-Control: max-age=449918,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed781c0c0b31-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 859d899d982bb69df5fb16b8393fa119
580215f1d4f81cda04012c0889cfd9b18ba11863
38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6552
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:09 GMT
Last-Modified: Wed, 21 Dec 2022 17:22:57 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
46.17.134.217301 Moved Permanently 117 kB URL HTTP/1.1 www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (32009), with CRLF, LF line terminators
Size 117 kB (117178 bytes)
Hash 10b05f5844d46fdbfb15b7a3a1823078
ea6f2e04285f0ba9360c6807452cbe3e1eca2b34
5318268d6e25fff4434eccb5f351793609aeb55ea148a4d05e319775e7f0a19a
GET /hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET1
Date: Wed, 21 Dec 2022 19:12:08 GMT
Content-Length: 31757
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3345525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:08 GMT;path=/;httponly
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zpNBQ9D145DzaOwp8gNDQQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: c5NLs520F0a9XS2EZaji0Xy2H9s=
i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
143.204.55.101200 OK 560 B URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
IP 143.204.55.101:0
File type ASCII text, with very long lines (560), with no line terminators
Hash f8c10caf538998ff6d2c27e1d5b4f2a8
9e67475fa5ff8918e47f376231206895e0241107
de7b0560f57ca54ef83318f3b21787f7afea8c70b1c7a68595b6b92c4371b888
GET /pimages/Content/Uploads/Fonts/fonts.css?ver=1137 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
content-length: 560
server: nginx/1.8.1
date: Thu, 15 Dec 2022 11:08:31 GMT
last-modified: Mon, 23 Aug 2021 14:21:09 GMT
etag: "6123aed5-230"
expires: Thu, 22 Dec 2022 11:08:31 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FM9tTbAe-Rlq8FQMy7VZGQ6EcwBjguOFVODiEhJG0CVfLgLG3-CGJA==
age: 547417
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
143.204.55.101200 OK 85 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
IP 143.204.55.101:0
File type JPEG image data, progressive, precision 8, 1140x60, components 3\012- data
Hash 2262a6cd553491392cff28836e8d9ab7
73d077b783e2b8ec77e1824c88e792a5e312ac06
3d30c965c09ec72e1dee69a23e69878b910976a54f887269aea21d604b9d8d02
GET /pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 84725
server: nginx/1.8.1
date: Tue, 20 Dec 2022 13:41:20 GMT
last-modified: Tue, 20 Dec 2022 13:40:35 GMT
etag: "63a1bb53-14af5"
expires: Tue, 27 Dec 2022 13:41:20 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1yZgetKPhF2g2PgM3M1H_BnxhyEbDAf4MqO1dteNPNEINqpRwN9PwA==
age: 106245
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137
46.17.134.217200 OK 246 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (427), with no line terminators
Hash e5363fddc041491455104aed2a227073
85b45cf2409e9847113499e9b7c74e08c3dbf9fc
f6721da1fadbb82cc9363a4f34470fb00893d88b2c7d7f225882858332663cde
GET /Themes/DR/Content/NewTheme/assets/dist/css/about-us.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:09 GMT
ntCoent-Length: 427
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:09 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 246
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash aa0fe09ecba18f88fff720b69e5d69b0
759143cbf2206b629dd39262a73f27a77b134cce
2f90277833fd4c55f26417e3e253b0144b8baac4c89d6be80fc5ebd845294608
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 22:45:49 GMT
Expires: Mon, 26 Dec 2022 22:45:48 GMT
Etag: "759143cbf2206b629dd39262a73f27a77b134cce"
Cache-Control: max-age=444218,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed7b9f0b0b31-OSL
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
46.17.134.217200 OK 3.5 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (18443), with no line terminators
Hash cdcd04cd9cb907d47f42e7abfe5d63d4
24ac472ad55bd46125361982c3d6595a98a790e8
65c156a711a67f0f68e9fc78dd118937dc4f3301a27592872a8dea5cc3bb7718
GET /Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 11 Nov 2022 21:39:28 GMT
Accept-Ranges: bytes
ETag: "0683e1316f6d81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:09 GMT
Content-Length: 3510
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:09 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
46.17.134.217200 OK 856 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (2246), with no line terminators
Hash cf7786410ee1af5bc919a761ea6def31
e654d14a699f6675044c46fb6226285fecddf8d7
d0bba3888a2c237ee488d1162e145826f1597559821b5b74ff0966160600005d
GET /Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:09 GMT
ntCoent-Length: 2246
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:09 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 856
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137
46.17.134.217200 OK 820 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (1986), with no line terminators
Hash 412bdf0074f1e9c2f1c3d47518ad2970
f0b69b868b497d61be36ddfcd745022243ae9e11
79d3db3112173d2eab9d3ecab72d8b3b801af69a100f4a8e001c2ece7f70d04c
GET /Themes/DR/Content/NewTheme/assets/dist/js/content-pages.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:09 GMT
ntCoent-Length: 2009
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:09 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 820
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
46.17.134.217200 OK 35 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (65536), with no line terminators
Hash db9657130b2e2958374ec9b77ea758b4
11b26340ab7f1d05fd653a04634df46e97719f78
3f51e22c0064be3e76df10c8a89b2d3a80ecb33215494dd663745534a548ab5e
GET /Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 13 Dec 2022 11:44:02 GMT
Accept-Ranges: bytes
ETag: "06d1b32e8ed91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:09 GMT
Content-Length: 34741
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:09 GMT;path=/;secure;httponly
vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
185.29.195.172301 Moved Permanently 209 B URL HTTP/1.1 vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
IP 185.29.195.172:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash adc57312fe24beffd292aad33f6676fb
fa2d7dc3501390d3d70f24c7acb253be0176c62a
71f3dfd046f58a1db35fcf5861d4116355b2f07bee4e9fb4413debe0f8f28f01
GET /Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR HTTP/1.1
Host: vsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
Date: Wed, 21 Dec 2022 19:12:08 GMT
Content-Length: 209
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221671649914670%22
35.241.9.150200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221671649914670%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (21675), with no line terminators
Hash 95bc32c1100678bef51d9e00ab280a73
8243c98a720eafaceecb9b3aed6daea45b79ab82
46f35309bc4afae6a07104eb0a8d0edf72c7e69af4c56e75da7dd16527e568a9
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221671649914670%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21675
via: 1.1 google
date: Wed, 21 Dec 2022 19:12:01 GMT
last-modified: Wed, 21 Dec 2022 19:11:54 GMT
content-type: application/json
age: 8
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137
46.17.134.217200 OK 1.4 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (4921), with no line terminators
Hash af3a6b1f9b2fd02e52462392977586a3
934e40a48caa29fe1e242965b40942573b5b0b8d
8f5b4bf4b9f81ebe90af264355673e7f9eea77807cc2ed58d90530c3f407598f
GET /Themes/DR/Content/NewTheme/assets/dist/css/content-pages.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:09 GMT
ntCoent-Length: 4921
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:09 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 1419
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6652
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6652
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6652
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6652
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6652
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3bd6359db3b908389343275ee839466b
9094f8e9275252a8e9d5e65fd3e87851b2f80bd7
7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:22 GMT
age: 77688
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8f5b2e482a0944dfc0de3a69659fa002
64dd897d9163a6eceadc0c5460cdd135d323abb3
feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:05:45 GMT
age: 43585
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edba09e5cf977de85bbc878f27d6b124
b18cca6c0dfec057305ac3ef231f74887183ebbc
286f14f7d39d91168860d610fc08efe93967781e759eedfac86f29fcf85e9d12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4729
x-amzn-requestid: 02b65dca-78b1-4e7a-b6cc-2d9b7f3b9759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_BHgSoAMFZjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-024fa06264a6b85424f74ae4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: r4j0S_ZGeww3h1mKQ5QcwGF2llgP5xBrn1kxw1RyPz3GySghhXzZWA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:23 GMT
age: 77687
etag: "b18cca6c0dfec057305ac3ef231f74887183ebbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8218fde73bff9978e07b0e06e1f7f0fb
ab15f8d74ea032d89f65603b4eef2377dc97e358
134d5a1046ea50f37f0234a4d1d167130b2950a1d61e93e2340dccbc922b4844
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9493
x-amzn-requestid: 54028261-e98d-4bb6-98da-51d41edc6d2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da61jElIIAMFl8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b56-7eeb3b142dd3d0f92e9fa9ba;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:09:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: oXQy1PwLBW8u0kv_sHcypb8QB6xwLtYMy4eWRZVQaD2xYjpw2dGA3A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 05:58:46 GMT
age: 47604
etag: "ab15f8d74ea032d89f65603b4eef2377dc97e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: EFtrPmVeBdwlINxF0wQq0671EksYsi6nsyFd5E4SCSH4_bQyGaNQHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:54:35 GMT
age: 40655
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4aa7e9e3fe28e9c401786f7415171f7
8482a47175ff105957d640269bc14ee1fbc97448
2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: daGQIEuSoAMFnBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: MiX_AJgXGldkYjkeHO1OUPzraljox6v7B1M54cJPBdmfUZ7QETowOw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:55:36 GMT
age: 76594
etag: "8482a47175ff105957d640269bc14ee1fbc97448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
46.17.134.217200 OK 86 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash e839ab16baedf7b7b7be15a7fe6a43da
01d849a4d9057c5e70a37bd356a84fe7b568b5ac
50127c56ebea364ae378a7fcc1809aa3d9b27541844a741b65274455a1673a72
GET /Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 14 Dec 2022 12:31:06 GMT
Accept-Ranges: bytes
ETag: "061c1efb7fd91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:10 GMT
Content-Length: 85838
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:10 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
46.17.134.217200 OK 7.3 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1693)
Hash 7faeb100a61b5d33f7928e1caac5154b
da91c2b07077417ccdb0766d8eef3ba8c0b6e1da
06d578c63b95c8189e7035f3d5e8f964302ef0a91267b3da25d4ee20234059dc
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/svg+xml
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:10 GMT
Content-Length: 7348
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
143.204.55.101200 OK 38 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
IP 143.204.55.101:0
File type Web Open Font Format (Version 2), TrueType, length 37552, version 1.0\012- data
Hash 1983ab3b86a7b25f4ee8be0dd1d5b9cf
aee7222e1fd8cccc6cc7dfa222db0b5b645e8136
2ecb993e7339264ad246a68d7b9155ed199e08799f4362168bfbbddd0cba8bc4
GET /pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37552
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:24 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Mon, 19 Dec 2022 05:30:45 GMT
expires: Mon, 26 Dec 2022 05:30:45 GMT
cache-control: max-age=604800
etag: "611389b0-92b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _ply1Xe5MHkSNXDpyU3TWoztFa1RdlvVQ0hWM1SLL4s3HUCVzzm8UQ==
age: 222085
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
143.204.55.101200 OK 44 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
IP 143.204.55.101:0
File type Web Open Font Format (Version 2), TrueType, length 43980, version 1.0\012- data
Hash 30328c47ca087fd5694c7071932b6b27
f4addbdae2ea5a68aef371b9cf61046a735387c3
74840d37499f126d3e68507b5634f72c9e6038c18f92eed5568786bc7d7a1fb7
GET /pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 43980
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:20 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Fri, 16 Dec 2022 05:35:02 GMT
expires: Fri, 23 Dec 2022 05:35:02 GMT
cache-control: max-age=604800
etag: "611389ac-abcc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AtWpRTsNbX5YcoO7zA1Y2GXL9lPTjkLLTt_LGHR8b4LscML2okMMLQ==
age: 481028
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.dr.com.tr/pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png
143.204.55.101200 OK 22 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png
IP 143.204.55.101:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash b6288a41ab215477cf69da06bf65eae0
774faea5139c23a6e882b54fdad6dd27e19495a0
867829e68b4e041687361d78163491896fe851436f0ddf1c2bf706f2e7879b57
GET /pimages/Content/Uploads/LandingPage/frontend-assets/wp-icon.png HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 21702
via: TMGRUP, 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Thu, 01 Sep 2022 07:10:23 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Thu, 15 Dec 2022 20:00:29 GMT
expires: Thu, 22 Dec 2022 20:00:29 GMT
cache-control: max-age=604800
etag: "63105adf-54c6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QJw-konqyCwbGWrcqbx83me_IaQe4n7R2Q7NYt6RwgX5qExIxLN-HQ==
age: 515499
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-ZGV7
172.217.21.168200 OK 92 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-ZGV7
IP 172.217.21.168:0
File type Unicode text, UTF-8 text, with very long lines (38373)
Hash b660aebccf6fbbffb2999b7e9fed385b
8a783720644356fc5e1220993bdb43733e4804ad
2455fdabe0c63ffb04fa69973782796a50e6e61ca7cd3bd404751b564ae287e9
GET /gtm.js?id=GTM-ZGV7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:12:11 GMT
expires: Wed, 21 Dec 2022 19:12:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
46.17.134.217200 OK 86 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type MS Windows icon resource - 1 icon, -112x-112, 32 bits/pixel\012- data
Hash 64695caf1623b5cd7c04d0d6d2e01fd3
2b37e14bf6a4712ea5ba0ab1b3af5617a9b5e6ac
a643fd7986e61950a09c2985116d34f8b00050a13c299748c14aac54772be637
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Thu, 29 Sep 2022 06:38:56 GMT
Accept-Ranges: bytes
ETag: "040e625ced3d81:0"
Date: Wed, 21 Dec 2022 19:12:10 GMT
Content-Length: 85886
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
46.17.134.217200 OK 1.2 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 826b8858eadc52a7b2eb04efb945a1e4
84b1c4ca4cbea50ee4bc8f7cbeb454095c675a97
c7e236c7f42a7d653df97e4c7e11d8b0e9ce12f0a4e155837e965feba4802d8f
GET /Themes/DR/Content/NewTheme/images/favicon.ico HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:10 GMT
Content-Length: 1150
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4e09fbe8c7f13b5f2593bfb7b654f35
2f0ab877a5de8ede3d0cf8d47614e4f847f12cc1
ebf6a6c3c22bf48f663ced84746989c300b5a8268a980df2e0410bf060ff0e1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221?
142.250.74.38200 OK 349 B URL HTTP/2 4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (669), with no line terminators
Hash 5787833ac68f2732f33834c6ca028866
56beeefdcaedf25fade5d5358adc6c1012f2aee6
bbee50694eee93841a0697cfce51c176ab93f8f34d83ed2906c110dfeff7aa32
GET /activityi;src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221? HTTP/1.1
Host: 4876222.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 349
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:27:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=369881,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed87ab35b4f1-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 889441ff71167088eed6563ca890f2ea
d89ea0020abd17c99cd8753c6d079faa0ec8db96
a70e96254fd4f3eb53467b04dc4944a3c98e951e5271b99b80d2075ee21eab39
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 05:26:15 GMT
Expires: Wed, 28 Dec 2022 05:26:14 GMT
Etag: "d89ea0020abd17c99cd8753c6d079faa0ec8db96"
Cache-Control: max-age=554642,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed865f390b31-OSL
cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
34.120.65.227200 OK 57 kB URL HTTP/2 cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
IP 34.120.65.227:0
File type Unicode text, UTF-8 text, with very long lines (47012)
Hash cf208de6ef6b42e769ac8c64c4756c59
2b51a1912f98f59c4d2e9f09a1ed9d7d655a24c8
a18a56c6f555c61ca5c765f33bb681afe71b3241b4eadd29c4867a62e0a8bb90
GET /2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdshuURpLHjSf5aEK1fEXShFS4G_FzKDQbb8KhXuovxlaSjobPvafuWd-jMviNg5Wm5hXrCDrgSeSveH-hH_JYktigtNOEoI
x-goog-generation: 1671595307284668
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 57201
content-encoding: gzip
x-goog-hash: crc32c=MBIsWg==, md5=zyCN5u9rQudprIxkxHVsWQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 57201
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Wed, 21 Dec 2022 04:10:49 GMT
expires: Wed, 28 Dec 2022 04:10:49 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Dec 2022 04:01:47 GMT
etag: "cf208de6ef6b42e769ac8c64c4756c59"
content-type: application/javascript
age: 54082
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a4e09fbe8c7f13b5f2593bfb7b654f35
2f0ab877a5de8ede3d0cf8d47614e4f847f12cc1
ebf6a6c3c22bf48f663ced84746989c300b5a8268a980df2e0410bf060ff0e1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a04e9f03228bbe6d343e3e66a44d462
5af77c662e1783844d899f7ecadb23611df6e1af
aeca834b24dd5a208afc85fa5ee8e70b6035a5a6647163edab2d239665eb74b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
91.235.64.232301 Moved Permanently 227 B URL HTTP/1.1 wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
IP 91.235.64.232:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4ced202284e35d115e8a52a74c443a6e
2bf08f5db6e34d99d560d3af9f6eb21b183020fb
5e649992b9355c98784feb8bc639af08a2df3cf6c245f5e9faf37286b86849fd
GET /relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81 HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
Server:
Set-Cookie: BlueStripe.PVN=295800040123; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Length: 227
Strict-Transport-Security: max-age=157680000
adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
142.250.74.98200 OK 355 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (668), with no line terminators
Hash bb82f01286304f3de31151833012e1b2
1a96580b2a837eff2c831f67bb91331a391bc6e5
feff220211ac8bcd3f225d0721345dbbbb9e7e6a1f15bcb7c10bbd6e737bbfeb
GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4876222.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 355
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=369881,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed885bf4b4f1-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed88c9220b31-OSL
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/appstore.png
46.17.134.217200 OK 2.5 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/appstore.png
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type PNG image data, 118 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash b432862328082d672a0342ed64e180dc
243277180f146ac57ef85ef04c5c22b0c3bc099b
ec16f9e2ff3a6eb97be2e2e86893e281c8b2a6b971206c39308fb75b4dc6aa30
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/appstore.png HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/png
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Length: 2466
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/googleplay.png
46.17.134.217200 OK 3.1 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/googleplay.png
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type PNG image data, 118 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e63b91dc0cd0a32ff36d72de648eb52
6d8bb670e614d0e2a02b4976e788768aac044c54
ccf6052dcbe093c99f6982ac8a9d3da2f7b903859eb1d8ccb8b450da2d1c98c1
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/googleplay.png HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/png
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Length: 3100
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
cdn.sgmntfy.com/pa.js
34.149.223.191200 OK 3.7 kB IP 34.149.223.191:0
File type ASCII text, with very long lines (3744), with no line terminators
Hash 7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec
Analyzer Verdict Alert quad9 Sinkholed
GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdubWuaAa7gcSrsGUjA9Ip61TRuO9WZrwJy1pmwKqvfrFY88uBzpMB6E7nKq185TZbIOZhzMdzH0S_QsbW2LnOyScjoLeTSX
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Wed, 21 Dec 2022 18:50:40 GMT
expires: Wed, 21 Dec 2022 19:50:40 GMT
cache-control: public, max-age=3600
age: 1291
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
142.250.74.162200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221
IP 142.250.74.162:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=5276357038757;gtm=2wgbu0;auiddc=922765633.1671649931;u13=undefined;u15=%2Fhakkimizda;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:11 GMT
expires: Wed, 21 Dec 2022 19:12:11 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
per2.segmentify.com//get/key/v1.json?count=2
95.214.74.49200 48 B URL HTTP/1.1 per2.segmentify.com//get/key/v1.json?count=2
IP 95.214.74.49:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 72ce4d937f9f2d136a636295873f42c4
b37b6999bf80150b940d143618a3333cae972324
94b47b1bfd848eb5c29ad9222b0718515d8b8be2e64bf10d9a2f3a604dc9a537
GET //get/key/v1.json?count=2 HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:12:11 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: c0d6d9efa916a39dacfc6986d35c0822
www.dr.com.tr/manifest.json
46.17.134.217200 OK 0 B URL HTTP/1.1 www.dr.com.tr/manifest.json
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /manifest.json HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6ImM4ZGRmZjUxODM0NzU3NTMiLCJ0ciI6IjczYjlkOWQzM2FhMDA5YmUyNGVkY2Q0Y2U1MDczYjU2IiwidGkiOjE2NzE2NDk5MzE4MjR9fQ==
traceparent: 00-73b9d9d33aa009be24edcd4ce5073b56-c8ddff5183475753-01
tracestate: 510794@nr=0-1-510794-10449929-c8ddff5183475753----1671649931824
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Length: 63
Content-Type: application/json
Last-Modified: Wed, 24 Jul 2019 10:34:06 GMT
Accept-Ranges: bytes
ETag: "023b251b42d51:0"
Date: Wed, 21 Dec 2022 19:12:11 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
www.dr.com.tr/relatedpush_sw.js
46.17.134.217200 OK 81 B URL HTTP/1.1 www.dr.com.tr/relatedpush_sw.js
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with no line terminators
Hash fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224
GET /relatedpush_sw.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other; VLCV1OK=1; OfferMiner_ID=BLWEJEFXUOTVHGTV20221221191211; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22BLWEJEFXUOTVHGTV20221221191211%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%5D%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cteonnt-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:11 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed896d22b4f1-OSL
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 21 Dec 2022 18:41:11 GMT
expires: Wed, 21 Dec 2022 20:41:11 GMT
cache-control: public, max-age=7200
age: 1860
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4208
Cache-Control: max-age=142498
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Etag: "63a2d3bd-1d7"
Expires: Fri, 23 Dec 2022 10:47:09 GMT
Last-Modified: Wed, 21 Dec 2022 09:37:01 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
IP 142.250.74.131:0
Hash 0bd2babfb67f762f5a710f5dc916814e
82d053b77671d4a8ac718869de4d0ef42696ee4b
e60f033692cef05af22e008cdde5f77e4c2ffe161c8e7cb72bfaa45787a6c2c3
POST /s/gts1d4/GGjoAgr7N70 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.hotjar.com/c/hotjar-2460279.js?sv=7
143.204.55.54200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2460279.js?sv=7
IP 143.204.55.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-2460279.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 21 Dec 2022 19:12:11 GMT
cache-control: max-age=60
etag: W/d41d8cd98f00b204e9800998ecf8427e
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cGKTIbxGgGdkJwZnCv_nyFFOTtChARycduAFXx9CcKZqFPVhlCUB2w==
age: 38
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:12:12 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
142.250.74.110200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
IP 142.250.74.110:0
File type ASCII text, with very long lines (1921)
Hash e92fad25913092a394452a9682bd9cfa
74845eb88d48befce7266dc5147696edf831b4b5
fab775eee74a253cd3f167dc7cce64258e6266f0ef6cdfa06000bcaee8968057
GET /gtm/optimize.js?id=OPT-N8GSXSG HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:12:12 GMT
expires: Wed, 21 Dec 2022 19:12:12 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43946
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: j0V53vtA5NIE2qPZssEA9b0N/QtCyfEIq6z41MSFMND5WELSkWBVSofEe9xaDMPdZCsjAVvVqY95tF6P46NuRg==
priority: u=3,i
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 21 Dec 2022 19:12:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js
34.117.98.198200 OK 1.7 kB URL HTTP/2 tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js
IP 34.117.98.198:0
File type ASCII text, with very long lines (4036), with no line terminators
Hash 7dd71e4b922b44d4a1b639cea2047fcd
31fbab12c76ba11e8f6086ca5c49a31034695db9
2f8a817aca609ee1d1de2ae6be5cbe0d1e186beb66c0cf445304da8f650b1b40
GET /Vf1xHl7QukXl5JUrF0km.js HTTP/1.1
Host: tags.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu4tqmbe4h-Xorgq-sZ5Gk9qmfRcGaNbk030Qb7jHzcLadi4eghZPsJ7dclXatvuqc-rLgX5hlVL2HlpX6HmI19SMnnAZ5R
x-goog-generation: 1667467412094932
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1741
content-encoding: gzip
x-goog-hash: crc32c=U/iOdA==, md5=fdceS5IrRNShtjnOogR/zQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 1741
server: UploadServer
date: Wed, 21 Dec 2022 18:14:33 GMT
cache-control: public,max-age=0
age: 3459
last-modified: Thu, 03 Nov 2022 09:23:32 GMT
etag: "7dd71e4b922b44d4a1b639cea2047fcd"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
95.214.74.49200 OK 0 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP 95.214.74.49:0
ASN #15830 Telecitygroup International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sfy-api-key
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, X-Switch-User, X-Switch-Account, X-Switch-Region, X-Sfy-Api-Key
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3600
Connection: keep-alive
Content-Length: 0
Content-Type: application/json
Date: Wed, 21 Dec 2022 19:12:12 GMT
Server: nginx
X-Server-Name: ee188e972ce4e39fde35018c7b7e2183
googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649931459&cv=11&fst=1671649931459&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&auid=922765633.1671649931&rfmt=3&fmt=4
142.250.74.98200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/992597607/?random=1671649931459&cv=11&fst=1671649931459&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&auid=922765633.1671649931&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2248), with no line terminators
Hash ca4f26b3c002b9217005af6a76bee8cc
05de298a57be5f8433ada92c1f8bb7377f9cbae6
4dc83e0734ebc97fc075e7ab76978b5cdb4a717ea2a25ab6924f883226ea3a0e
GET /pagead/viewthroughconversion/992597607/?random=1671649931459&cv=11&fst=1671649931459&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&auid=922765633.1671649931&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1017
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:27:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4209
Cache-Control: max-age=142498
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Etag: "63a2d3bd-1d7"
Expires: Fri, 23 Dec 2022 10:47:10 GMT
Last-Modified: Wed, 21 Dec 2022 09:37:01 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
IP 142.250.74.131:0
Hash 0bd2babfb67f762f5a710f5dc916814e
82d053b77671d4a8ac718869de4d0ef42696ee4b
e60f033692cef05af22e008cdde5f77e4c2ffe161c8e7cb72bfaa45787a6c2c3
POST /s/gts1d4/GGjoAgr7N70 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 52cca9f517da7041f625e7d292a2778e
e196da9a10d5386b958dabbfadfa4d723d7a2250
9c8ef3c85266a8a11267e4f55bc569987e1b9480970fc535ce9eb3b911506514
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wps.relateddigital.com/relatedpush_sw.js
91.235.64.232200 OK 1.2 kB URL HTTP/1.1 wps.relateddigital.com/relatedpush_sw.js
IP 91.235.64.232:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type ASCII text, with CRLF line terminators
Hash 3c3509db30711bfee335f7e7dfbac78f
f0100abfb12b1648f87a1ffa05bb16a525ebf86b
fc5c3cb1a954e456fcf97f20a12458f801204969f2ce30c5b9ae2f96eead4e91
GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Oct 2020 13:16:28 GMT
Vary: Accept-Encoding
Server:
Set-Cookie: BlueStripe.PVN=1a440009c9d9; path=/
X-AspNet-Version: 4.0.30319
LB: 17
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 1217
Strict-Transport-Security: max-age=157680000
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
95.214.74.49200 1.5 kB URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP 95.214.74.49:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4867), with no line terminators
Hash a40b85bb5fbfa79eb9054f4e0eee9f56
16bd24a955a7e02b4311dfc179f1dcc2349401ad
52b4b1ce3ce3612856d5b2524c2c4fdda14d3f15909dfad7b74bfe964614ce91
POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 8922
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:12:12 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: b7324636da5cf5ec5220903f7e0297da
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 1e241030c5209598a72f9ea976d83aa1
7aeecc0d0821a13950e3278c9dbf7e0fb7dbaa21
376c69ae3d04134dadf60fa39fde4bae27cd782b33079c787f68308e17bd4481
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2862
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Last-Modified: Wed, 21 Dec 2022 18:24:30 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 313
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1442159134.1671649932&jid=188460973&gjid=1972473503&_gid=1704424768.1671649932&_u=aGhAgAABQAAAAEABM~&z=414322769
64.233.164.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1442159134.1671649932&jid=188460973&gjid=1972473503&_gid=1704424768.1671649932&_u=aGhAgAABQAAAAEABM~&z=414322769
IP 64.233.164.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=1442159134.1671649932&jid=188460973&gjid=1972473503&_gid=1704424768.1671649932&_u=aGhAgAABQAAAAEABM~&z=414322769 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 19:12:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.dr.com.tr/relatedpush_sw.js?1671649931838
46.17.134.217200 OK 81 B URL HTTP/1.1 www.dr.com.tr/relatedpush_sw.js?1671649931838
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with no line terminators
Hash fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224
GET /relatedpush_sw.js?1671649931838 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other; VLCV1OK=1; OfferMiner_ID=BLWEJEFXUOTVHGTV20221221191211; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22BLWEJEFXUOTVHGTV20221221191211%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%5D%7D; _sgf_user_id=6650449070128111617; _sgf_session_id=6650449070128111616; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22RbPnbwHL99XWRsGaBPLe%22%7D; _ga=GA1.4.1442159134.1671649932; _gid=GA1.4.1582602151.1671649932; dr_ua_cookie=GA1.4.1442159134.1671649932; dr_ua_cookie_gid=GA1.4.1704424768.1671649932; _dc_gtm_UA-36126232-1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:12:11 GMT
Cteonnt-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:12 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81
t.co/i/adsct?bci=3&eci=2&event_id=0bd68cc1-09ef-4723-9913-03107845eddb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=fa362078-739b-4d7f-b896-2730f5b0c085&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=0bd68cc1-09ef-4723-9913-03107845eddb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=fa362078-739b-4d7f-b896-2730f5b0c085&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=0bd68cc1-09ef-4723-9913-03107845eddb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=fa362078-739b-4d7f-b896-2730f5b0c085&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:11 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=de8f454e-1ac6-42d2-ae7d-bae01fd5bdb9; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:12:12 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: efb6cc547e14f46b
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 72a6e3dfebe9d0cb0f166dfede52e58307fda142dc1bb08eebb47d6cd134c5b4
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/992597607/?random=1671649931459&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&fmt=3&is_vtc=1&random=986405766&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/992597607/?random=1671649931459&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&fmt=3&is_vtc=1&random=986405766&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/992597607/?random=1671649931459&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&fmt=3&is_vtc=1&random=986405766&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
wps.relateddigital.com/relatedpush_sw.js
91.235.64.232304 Not Modified 0 B URL HTTP/1.1 wps.relateddigital.com/relatedpush_sw.js
IP 91.235.64.232:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 15 Oct 2020 13:16:28 GMT
Cache-Control: max-age=0
HTTP/1.1 304 Not Modified
Cache-Control: private
Content-Type: text/javascript
Server:
Set-Cookie: BlueStripe.PVN=295800040180; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:12:12 GMT
Strict-Transport-Security: max-age=157680000
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash ee04940bea32334977d45357ff71701a
01a6bd71066c908aefeadf351ed4cce9c27250b5
81b6314244e3d62d68a932fdba62173de116492ecf8e82c2197b4a3a6d8126de
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4450
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Last-Modified: Wed, 21 Dec 2022 17:58:02 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 313
www.google.com/pagead/1p-user-list/992597607/?random=1671649931459&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&fmt=3&is_vtc=1&random=986405766&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/992597607/?random=1671649931459&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&fmt=3&is_vtc=1&random=986405766&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/992597607/?random=1671649931459&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tiba=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&fmt=3&is_vtc=1&random=986405766&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4150
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Last-Modified: Wed, 21 Dec 2022 18:03:02 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4150
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Last-Modified: Wed, 21 Dec 2022 18:03:02 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=0bd68cc1-09ef-4723-9913-03107845eddb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=fa362078-739b-4d7f-b896-2730f5b0c085&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
104.244.42.195200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=0bd68cc1-09ef-4723-9913-03107845eddb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=fa362078-739b-4d7f-b896-2730f5b0c085&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP 104.244.42.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=0bd68cc1-09ef-4723-9913-03107845eddb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=fa362078-739b-4d7f-b896-2730f5b0c085&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:12 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_uHc61mDV4DWvDmw1LNe1Ng=="; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:12:12 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 72cfa807a7095f75
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: 025c6e79496bb32b3f8edc3b44e1df06803e533acb7eba35baac2827bb8c6ecd
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649932539&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649932537.1159716976&it=1671649932214&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649932539&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649932537.1159716976&it=1671649932214&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2Fhakkimizda%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649932539&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649932537.1159716976&it=1671649932214&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 21 Dec 2022 19:12:12 GMT
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
46.17.134.217200 OK 54 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3928)
Hash f331aa8a71e90cf9ce7c886b038c707f
2799241a6e213d34aa93bd8afb5f7b486f89211f
cbcd276809baa39b8aa07c38a12b220d3855cbec2b989ca567d89a53853644de
GET /Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6Ijc4Yjc0YTlmM2Y3NTdlMjIiLCJ0ciI6IjNlODBhMTM3NDUxYjdlZDFiMWJmNGRhNDgxNjVmNGZlIiwidGkiOjE2NzE2NDk5MzI2Mzd9fQ==
traceparent: 00-3e80a137451b7ed1b1bf4da48165f4fe-78b74a9f3f757e22-01
tracestate: 510794@nr=0-1-510794-10449929-78b74a9f3f757e22----1671649932637
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other; VLCV1OK=1; OfferMiner_ID=BLWEJEFXUOTVHGTV20221221191211; _sgf_user_id=6650449070128111617; _sgf_session_id=6650449070128111616; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22RbPnbwHL99XWRsGaBPLe%22%7D; _ga=GA1.4.1442159134.1671649932; _gid=GA1.4.1582602151.1671649932; dr_ua_cookie=GA1.4.1442159134.1671649932; dr_ua_cookie_gid=GA1.4.1704424768.1671649932; _dc_gtm_UA-36126232-1=1; _fbp=fb.2.1671649932537.1159716976; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22BLWEJEFXUOTVHGTV20221221191211%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A12%22%7D%5D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 54039
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:12 GMT;path=/;secure;httponly
js-agent.newrelic.com/nr-spa-1216.min.js
151.101.66.137200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP 151.101.66.137:0
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QKJbZH0tUcMtAsLZitbfwcPpTgZbXYEZElUcFQJ41NzHawdKY70ohMytOmE+mYAGFiIaDXcfKyI=
x-amz-request-id: 6WVZ36C2EBPHWFVA
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:12:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1668-BMA
x-cache: HIT
x-cache-hits: 1233
x-timer: S1671649933.730384,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0f31422ae936eb89a3622e05026ba27b
2398469b858daa8a1a315460786ecdd10d8dd22b
6e71073e63a36cc568448f7896db4d34f8734b1d7de4ef7c41beae49792f6504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4960
Cache-Control: max-age=114809
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Etag: "63a264a5-117"
Expires: Fri, 23 Dec 2022 03:05:41 GMT
Last-Modified: Wed, 21 Dec 2022 01:43:01 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 279
dr.api.useinsider.com/ins.js?id=10001448
162.159.134.61200 OK 0 B URL HTTP/2 dr.api.useinsider.com/ins.js?id=10001448
IP 162.159.134.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ins.js?id=10001448 HTTP/1.1
Host: dr.api.useinsider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:12 GMT
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
etag: "d41d8cd98f00b204e9800998ecf8427e"
last-modified: Fri, 15 Jul 2022 10:15:22 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: u0EOnGEwlp31eqUzH39awZ+0Agtv7mL03QSxjYL6VOJIb7cDEgHjHTJnRTBsafXVHs9z0rjR3kE=
x-amz-request-id: HGZKHPKNX8EDK2RW
x-amz-version-id: wNkEcItKcpD12eM52_A_rhIY5m87APnA
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 573
expires: Wed, 21 Dec 2022 19:17:12 GMT
cache-control: public, max-age=300
accept-ranges: bytes
set-cookie: __cf_bm=G_eo4zgwjFp8WnrB3Qei9NzxhoqWYnrkkNJ_x.TIL8k-1671649932-0-ASo+a/BkPSesuqrgvkyfYX1HccIq50YEJJl5oJUCrEBlXKGO3UJyAXv8sY2NWuvhpa+Rxj74lQEvCy1PPLIH4T4=; path=/; expires=Wed, 21-Dec-22 19:42:12 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2ed8fefc7b4ed-OSL
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
95.214.74.49200 121 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP 95.214.74.49:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 6c86908ad3303efba41be50efb794705
08eaadf935641e159d5aea01725c7cf128b8015f
b6b8d267dbdba36e663f24d3724516018649c33450c6c4acab3cf2b3e9ef8f27
POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 794
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:12:12 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: b7324636da5cf5ec5220903f7e0297da
ams.creativecdn.com/tags/v2?type=json
185.184.8.90200 OK 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:12 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/payment-types.png
46.17.134.217200 OK 5.4 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/payment-types.png
IP 46.17.134.217:0
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type PNG image data, 407 x 35, 8-bit colormap, non-interlaced\012- data
Hash 5923a24b37dbcc15201282edd514703a
2131f357146d8f0d0659af6f5af7c11467a21f72
6a9b9d60a0df8aff54d87a3300c2419aa54b93cd133fcd53cd1f9ce859fef959
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/payment-types.png HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/hakkimizda?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221
Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660; DnR.customer=5d9dd570-3a1a-4291-90c3-0463abfafe81; __session:0.7556475242914723:=https:; _gcl_au=1.1.922765633.1671649931; lastclick=other; VLCV1OK=1; OfferMiner_ID=BLWEJEFXUOTVHGTV20221221191211; _sgf_user_id=6650449070128111617; _sgf_session_id=6650449070128111616; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22RbPnbwHL99XWRsGaBPLe%22%7D; _ga=GA1.4.1442159134.1671649932; _gid=GA1.4.1582602151.1671649932; dr_ua_cookie=GA1.4.1442159134.1671649932; dr_ua_cookie_gid=GA1.4.1704424768.1671649932; _dc_gtm_UA-36126232-1=1; _fbp=fb.2.1671649932537.1159716976; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A11%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A11%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22BLWEJEFXUOTVHGTV20221221191211%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A11%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A12%22%7D%5D%7D; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/png
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 5436
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3445525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:12 GMT;path=/;secure;httponly
ams.creativecdn.com/tags/v2?type=json
185.184.8.90307 Temporary Redirect 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.dr.com.tr
Content-Length: 301
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Wed, 21 Dec 2022 19:12:12 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=06Ik14APXL5GVNf1tYC4;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:12:12 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1671649932;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:12:12 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://ams.creativecdn.com/tags/v2?type=json&tc=1
content-length: 0
X-Firefox-Spdy: h2
lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=BLWEJEFXUOTVHGTV20221221191211&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fhakkimizda&OM.title=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:12%20GMT
185.29.195.171200 OK 70 B URL HTTP/1.1 lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=BLWEJEFXUOTVHGTV20221221191211&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fhakkimizda&OM.title=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:12%20GMT
IP 185.29.195.171:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 02a065761e036bca2f981f3ed704dc79
e251c670f45fb6dadca5f779fed5b6cc132c7cdf
cd8feca47797d25495f03a52b6a8605de61b829c01be0dca0c2ff0fed71ec3d8
GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=BLWEJEFXUOTVHGTV20221221191211&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fhakkimizda&OM.title=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:12%20GMT HTTP/1.1
Host: lgr.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: Image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Set-Cookie: OM.3rd=b2bc2d3d-87ed-4bc5-9679-720ccdb0d0f8; domain=.visilabs.net; expires=Sun, 21-Dec-2042 19:12:12 GMT; path=/
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Length: 70
rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=BLWEJEFXUOTVHGTV20221221191211&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fhakkimizda&OM.title=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:12%20GMT
185.29.195.174200 OK 70 B URL HTTP/1.1 rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=BLWEJEFXUOTVHGTV20221221191211&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fhakkimizda&OM.title=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:12%20GMT
IP 185.29.195.174:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 14d1707eda790f543c6fb8d0dcff6359
cf7049298a876447c2854cf2bc4df2987587aac5
de9d3fd0eb948bd294477d0eda60a73b85caff1794803530d0463193a113da98
GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=BLWEJEFXUOTVHGTV20221221191211&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2Fhakkimizda&OM.title=Hakk%C4%B1m%C4%B1zda%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1d3e8040aec44c76a6633da48a9b25e8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:12%20GMT HTTP/1.1
Host: rt.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536027; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
SERVER:
X-ASPNET-VERSION:
X-POWERED-BY:
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 70
Set-Cookie: BIGipServerVisilabsRealtimePoolHTTP=583212473.20480.0000; path=/; Httponly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6aa627e28c71a3d2789eddf92231471b
11facb6d6c4aff37d4aefe52c3f92bdbfa6d1b88
bea3ba8609e274db498cd9e3abc98f77f4499c20b56083795cce7bc561c62a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6536
Cache-Control: max-age=104879
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Etag: "63a237b4-1d7"
Expires: Fri, 23 Dec 2022 00:20:12 GMT
Last-Modified: Tue, 20 Dec 2022 22:31:16 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ams.creativecdn.com/tags/v2?type=json&tc=1
185.184.8.90200 OK 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:13 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2
ams.creativecdn.com/tags/v2?type=json&tc=1
185.184.8.90200 OK 247 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash c6932a945b1e59e619ccdef3ebe10a3e
6b80dd4712c1bbe189d7aaa9bc79ffe1ec1f5baf
007fbb94ec38bec11fea1576dd5951487e8a5ac9f92cf3e9a95989acf94864ff
POST /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 301
Origin: https://www.dr.com.tr
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/json;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Wed, 21 Dec 2022 19:12:13 GMT, Wed, 21 Dec 2022 19:12:13 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 247
X-Firefox-Spdy: h2
fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GbaFh8tWkKqGfBnbWr3AWjHPJYmU0EtQhLZPsZVkL8Kbw
185.184.8.90200 OK 442 B URL HTTP/2 fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GbaFh8tWkKqGfBnbWr3AWjHPJYmU0EtQhLZPsZVkL8Kbw
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type HTML document text\012- HTML document, ASCII text
Hash 44e684f7e2060092fd4facf30c69e08b
f30b3b270504c2fc3f15dc07662ca580391971f3
b26f87c27e92fbc49b003d03eae628d3dd6dc6093222d3d596296395b91cb9c1
GET /fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GbaFh8tWkKqGfBnbWr3AWjHPJYmU0EtQhLZPsZVkL8Kbw HTTP/1.1
Host: fledge-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
origin-trial: Anlqio5K3Dr7Hn1oMh2faiLECLxb8MnD1hPnDOlNZXdzpbZV9L2LOKjgHGwWMDoiHq67q8SjUmjQZj10YLJwfgIAAABxeyJvcmlnaW4iOiJodHRwczovL2NyZWF0aXZlY2RuLmNvbTo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjgwNjUyNzk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cache-control: public, max-age=86400
date: Wed, 21 Dec 2022 19:12:13 GMT, Wed, 21 Dec 2022 19:12:13 GMT
expires: Thu, 22 Dec 2022 19:12:13 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 442
X-Firefox-Spdy: h2
bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EedFdeQhVhSg%3D%3D&rst=4763&ck=1&ref=https://www.dr.com.tr/hakkimizda&ap=160&be=1340&fe=4631&dc=3124&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649928003,%22n%22:0,%22f%22:725,%22dn%22:737,%22dne%22:740,%22c%22:740,%22s%22:812,%22ce%22:1018,%22rq%22:1018,%22rp%22:1255,%22rpe%22:1255,%22dl%22:1265,%22di%22:3122,%22ds%22:3123,%22de%22:3127,%22dc%22:4630,%22l%22:4630,%22le%22:4642%7D,%22navigation%22:%7B%7D%7D&fcp=3129&at=TENVGwNNEghBH0FHWEcoUBsDFAhfAwABDXMPWAd6eHRyUHYTSBkTQkMOQhtjQwNBeEV0VVMTUUpKFApECgAbDAEZVQYXCAMERB8TYEZURShEeF1SQgNAQmdURhVbFgAIGAlWHQUHGwACVRYVG2NDA0F4URcLFVRQAF1SBVEDHAZUAFZMAAsABx1fA1IGGAEDVwdYW1BRAFYJBBcdFTRHXEt3VwNdRWZBQ14PUxsDFH0JSVhZWVAYVBoJGR5nD11VWkJCFy9gGQgGHlYIEWJcXwFVDxlBAARdE0NDDwAHVBoJEBZ3A1BaWhoDB1AECQgGAUZ1WEdQV1gZGwgJAx5WER0XYENbMVVNUXdeAmJEUEdIFVsWFlFXWw1aXFxPVVZeQU1UaUMJRkNWUAxSFEZWVFNDFVJWUBNEQwxrVFxSWRNeDFhUWFsIWl4fQ0QLbFJUWEFWCFNXBFtRD19uUFtETRRaXlxVVTkBAQcHAAVTBWZcVVkCAlUGUAkHVQRYXFUEUlAGA1QHAVIHXVgCCAcKUwcAVA9HQU1UaVMJXUVQW0UKDFVQVWlVCEZLQFtWUgJRZgsGAlQCAwcEE0oc&jsonp=NREUM.setToken
162.247.241.14200 OK 72 B URL HTTP/1.1 bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EedFdeQhVhSg%3D%3D&rst=4763&ck=1&ref=https://www.dr.com.tr/hakkimizda&ap=160&be=1340&fe=4631&dc=3124&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649928003,%22n%22:0,%22f%22:725,%22dn%22:737,%22dne%22:740,%22c%22:740,%22s%22:812,%22ce%22:1018,%22rq%22:1018,%22rp%22:1255,%22rpe%22:1255,%22dl%22:1265,%22di%22:3122,%22ds%22:3123,%22de%22:3127,%22dc%22:4630,%22l%22:4630,%22le%22:4642%7D,%22navigation%22:%7B%7D%7D&fcp=3129&at=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&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 107d93e382e2c9b00fbf9fb0edc65d86
77e750e3ebf9706f4f6dd253785602d70be17c6c
a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937
GET /1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EedFdeQhVhSg%3D%3D&rst=4763&ck=1&ref=https://www.dr.com.tr/hakkimizda&ap=160&be=1340&fe=4631&dc=3124&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649928003,%22n%22:0,%22f%22:725,%22dn%22:737,%22dne%22:740,%22c%22:740,%22s%22:812,%22ce%22:1018,%22rq%22:1018,%22rp%22:1255,%22rpe%22:1255,%22dl%22:1265,%22di%22:3122,%22ds%22:3123,%22de%22:3127,%22dc%22:4630,%22l%22:4630,%22le%22:4642%7D,%22navigation%22:%7B%7D%7D&fcp=3129&at=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&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:13 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77d2ed918fadb4e8-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=cb29b0bcd7990bee; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dfd8efaba7b4ec21f029ff562ff04a82
ea4324fd871ab145864664fd2b6e443eece69835
e1c3cfecd1038988469bd27f97fd485008334e5212ed9ead279005634c7f59f8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 01:57:49 GMT
Expires: Wed, 28 Dec 2022 01:57:48 GMT
Etag: "ea4324fd871ab145864664fd2b6e443eece69835"
Cache-Control: max-age=542134,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed94dd030b31-OSL
ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=RbPnbwHL99XWRsGaBPLe
67.202.105.23204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=RbPnbwHL99XWRsGaBPLe
IP 67.202.105.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?us_privacy=USP&xi=52&xu=RbPnbwHL99XWRsGaBPLe HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP007
date: Wed, 21 Dec 2022 19:12:13 GMT
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EedFdeQhVhSg%3D%3D&rst=7852&ck=1&ref=https://www.dr.com.tr/hakkimizda
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EedFdeQhVhSg%3D%3D&rst=7852&ck=1&ref=https://www.dr.com.tr/hakkimizda
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GXMJXlxaW3JYD0BLVlpcA0EedFdeQhVhSg%3D%3D&rst=7852&ck=1&ref=https://www.dr.com.tr/hakkimizda HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1364
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 77d2eda33e5fb4e8-OSL
Access-Control-Allow-Origin: https://www.dr.com.tr
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
13.107.246.53200 OK 0 B URL HTTP/2 avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js HTTP/1.1
Host: avlsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=8640000
content-type: text/javascript
content-encoding: br
content-md5: 3g3T/bNv20ozIAUHqNB0+A==
last-modified: Wed, 18 Aug 2021 09:46:48 GMT
etag: 0x8D9622D19366EBC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 56398b91-901e-0031-7ee7-131e84000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0/cagYwAAAABsXchojEXWSJ8XLs9BpsINQU1TMDRFREdFMTgyMgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
x-azure-ref: 0ilqjYwAAAAC5Ku2zZ5UCSojB2VFM80uuU1ZHMjBFREdFMDYxNwAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
date: Wed, 21 Dec 2022 19:12:09 GMT
X-Firefox-Spdy: h2
rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
13.107.246.53200 OK 0 B URL HTTP/2 rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js HTTP/1.1
Host: rpdn.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-type: application/javascript
content-encoding: br
content-md5: 7dJB1GMWSGW76wPPEWgUpQ==
last-modified: Tue, 16 Mar 2021 08:29:35 GMT
etag: 0x8D8E855A1ABE7AD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 027b946f-001e-0033-2518-14a03c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0Rl2iYwAAAAAnd+qpknWFSKjw37+xpfX0QU1TMDRFREdFMTkwOAAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
x-azure-ref: 0i1qjYwAAAACnedMk1WiQT5ol51MfMMPAU1ZHMjBFREdFMDYyMQAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
date: Wed, 21 Dec 2022 19:12:11 GMT
X-Firefox-Spdy: h2