lb.dr.com.tr/eu/c/tq/3D894E258C1342009E31219587590090/98f953fc6bfdfc72579995b2d99dcb19/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
303 See Other 503 B URL HTTP/1.1 lb.dr.com.tr/eu/c/tq/3D894E258C1342009E31219587590090/98f953fc6bfdfc72579995b2d99dcb19/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (319), with CRLF line terminators
Hash d37e148225390e336a9ee9d564433672
b0db72f15769afab2a4316d0df8ff98aa337e3d1
8c11070815f95f52afe3131ffd97d387f2a5e3459046cf8dc600e2d02a713b65
GET /eu/c/tq/3D894E258C1342009E31219587590090/98f953fc6bfdfc72579995b2d99dcb19/?i=085642dae4766da9abdf39c3cae71fb1a829ac0bc0ae8b6aefb7451ab169a06ef33a410c00d8fd723c916d40a5c7913ba49c3f25ce2a5f947331b56f87e24332404ff5662cd3634d1e9a27235bbca73d6561e55288a223bd50b2219a7d4847b0ebbeb1cc16e3bd22bb56b183c4c6efd4 HTTP/1.1
Host: lb.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Location: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Server:
Set-Cookie: ASP.NET_SessionId=zyxk3gv5z2cvf2a2xhfpyryo; path=/; HttpOnly; SameSite=Lax
Referer: http://lb.dr.com.tr
X-AspNet-Version: 4.0.30319
LB: 17
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:12:11 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14212
Expires: Wed, 21 Dec 2022 23:09:03 GMT
Date: Wed, 21 Dec 2022 19:12:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15459
Expires: Wed, 21 Dec 2022 23:29:50 GMT
Date: Wed, 21 Dec 2022 19:12:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 18:34:39 GMT
content-type: application/json
age: 2252
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18451
Expires: Thu, 22 Dec 2022 00:19:43 GMT
Date: Wed, 21 Dec 2022 19:12:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VpTNHzbDlRzTAjXGJEPQxtl0kxpixbtIvHl3SSvlqV/OrXyVDPCSiBdaMROOd4at7aM3A2SX6lE=
x-amz-request-id: ZHWCKCCKTKQFXHGQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 18:53:19 GMT
age: 1133
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:12:12 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 2b6e894076ea00953c6e5557bc7f61ab
bea101ad8592d25a8f08f8e0b5569bae2c6387fa
ae9cf5b5f6b9c1faeda43ea3bb9296446d330f32447be532234efd9b86a597cc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 00:20:49 GMT
Expires: Tue, 27 Dec 2022 00:20:48 GMT
Etag: "bea101ad8592d25a8f08f8e0b5569bae2c6387fa"
Cache-Control: max-age=449915,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed8c0e590b61-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 19:08:02 GMT
age: 250
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 859d899d982bb69df5fb16b8393fa119
580215f1d4f81cda04012c0889cfd9b18ba11863
38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6541
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:12 GMT
Last-Modified: Wed, 21 Dec 2022 17:23:11 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
200 OK 85 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg
IP
File type JPEG image data, progressive, precision 8, 1140x60, components 3\012- data
Hash 2262a6cd553491392cff28836e8d9ab7
73d077b783e2b8ec77e1824c88e792a5e312ac06
3d30c965c09ec72e1dee69a23e69878b910976a54f887269aea21d604b9d8d02
GET /pimages/Content/Uploads/BannerFiles/dr/1140x60-dr-en-uzun.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 84725
server: nginx/1.8.1
date: Tue, 20 Dec 2022 13:41:20 GMT
last-modified: Tue, 20 Dec 2022 13:40:35 GMT
etag: "63a1bb53-14af5"
expires: Tue, 27 Dec 2022 13:41:20 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Lnd-zY9vjnU6lMsUSXOGstDpnJt_AklN0jR0TUNY2bNBNDXQj80UKw==
age: 106248
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
200 OK 560 B URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/fonts.css?ver=1137
IP
File type ASCII text, with very long lines (560), with no line terminators
Hash f8c10caf538998ff6d2c27e1d5b4f2a8
9e67475fa5ff8918e47f376231206895e0241107
de7b0560f57ca54ef83318f3b21787f7afea8c70b1c7a68595b6b92c4371b888
GET /pimages/Content/Uploads/Fonts/fonts.css?ver=1137 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: text/css
content-length: 560
server: nginx/1.8.1
date: Thu, 15 Dec 2022 11:08:31 GMT
last-modified: Mon, 23 Aug 2021 14:21:09 GMT
etag: "6123aed5-230"
expires: Thu, 22 Dec 2022 11:08:31 GMT
cache-control: max-age=604800
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DtKKBM1A4hQ0wRCLznItmqe1BfKLLpvHuYfaRLdRd3Y7wh5AqL1NDA==
age: 547420
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0001988057001-1.jpg
200 OK 18 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0001988057001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 266x400, components 3\012- data
Hash b2a51e0a5e0dcabfc63e2dd453a55c78
0193987fa69b5914a3d722d3bcaa72e5a261b83e
fbb400199b4139f3bbed3dec3159140197f3de8b7409933db888379b2ebce6b2
GET /cache/500x400-0/originals/0001988057001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17504
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Sat, 02 Jul 2022 07:32:42 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Sat, 17 Dec 2022 08:55:11 GMT
expires: Sat, 24 Dec 2022 08:55:11 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "62bff49a-4460"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ttxIFd-GJJVOqxmNC6Z_Tkx09odjSHh59pYHgQou3AOd32CqM8szVw==
age: 382619
X-Firefox-Spdy: h2
www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
200 OK 145 kB URL HTTP/1.1 www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32125), with CRLF, LF line terminators
Size 145 kB (145331 bytes)
Hash 394e2260f0ae44cdbcf0f4cc4aec57e8
149528dd6bdb1f26994c57eabde533773a52aa8f
6a7a394f5c1182968331ba1612df16b7e4cb94625c641cfb5a6ee062fdab08f2
GET /Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Length: 145331
X-Frame-Options: SAMEORIGIN
Set-Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; expires=Thu, 21-Dec-2023 19:12:12 GMT; path=/; HttpOnly
NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:12 GMT;path=/;secure;httponly
i.dr.com.tr/cache/69x69-0/originals/0001988057001-1.jpg
200 OK 1.2 kB URL HTTP/2 i.dr.com.tr/cache/69x69-0/originals/0001988057001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 45x69, components 3\012- data
Hash 79710a25f5d28b306a5dd32af518207e
62bab4d2c038bb80b69bd8742a5418f94763ad2b
110aaf072c12c7735c9de4d32126dc3a84e3803b1b0f93496fbe644734563c14
GET /cache/69x69-0/originals/0001988057001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1224
date: Sun, 18 Dec 2022 23:08:10 GMT
expires: Sun, 25 Dec 2022 23:08:10 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "62c036cf-4c8"
server: nginx/1.8.1
last-modified: Sat, 02 Jul 2022 12:15:11 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: L4ZfwxmUq4hG7W2xbGH8R1KXxFfDCdu_nl8n9tyLK7k9WxUwUf90OQ==
age: 245043
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
200 OK 86 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash e839ab16baedf7b7b7be15a7fe6a43da
01d849a4d9057c5e70a37bd356a84fe7b568b5ac
50127c56ebea364ae378a7fcc1809aa3d9b27541844a741b65274455a1673a72
GET /Themes/DR/Content/NewTheme/assets/dist/js/global.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 14 Dec 2022 12:31:06 GMT
Accept-Ranges: bytes
ETag: "061c1efb7fd91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 85838
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qCegd1YIb3TIeNPHK/Qtig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: X2Vr3lp9YGEMZ2eAUtYNNuPUM+s=
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
200 OK 3.5 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (18443), with no line terminators
Hash cdcd04cd9cb907d47f42e7abfe5d63d4
24ac472ad55bd46125361982c3d6595a98a790e8
65c156a711a67f0f68e9fc78dd118937dc4f3301a27592872a8dea5cc3bb7718
GET /Themes/DR/Content/NewTheme/assets/dist/js/datalayer.min.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Fri, 11 Nov 2022 21:39:28 GMT
Accept-Ranges: bytes
ETag: "0683e1316f6d81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 3510
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
200 OK 856 B URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (2246), with no line terminators
Hash cf7786410ee1af5bc919a761ea6def31
e654d14a699f6675044c46fb6226285fecddf8d7
d0bba3888a2c237ee488d1162e145826f1597559821b5b74ff0966160600005d
GET /Themes/DR/Content/NewTheme/assets/old_assets/js/jquery.session.min.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:12 GMT
Cteonnt-Length: 2246
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 856
ocsp.sectigo.com/
200 OK 472 B IP
Hash aa0fe09ecba18f88fff720b69e5d69b0
759143cbf2206b629dd39262a73f27a77b134cce
2f90277833fd4c55f26417e3e253b0144b8baac4c89d6be80fc5ebd845294608
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 22:45:49 GMT
Expires: Mon, 26 Dec 2022 22:45:48 GMT
Etag: "759143cbf2206b629dd39262a73f27a77b134cce"
Cache-Control: max-age=444214,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed923cc50b61-OSL
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/product-detail.css?ver=1137
200 OK 5.4 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/product-detail.css?ver=1137
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (36912), with no line terminators
Hash 3d8c786d00fd01418395bc7a1c597341
e6fa7b1ed70c720d7aee0d3bae67b3c6f2867a72
711749f41110034caa1a5244e094fe5a23139adbacd63a72181012965827073c
GET /Themes/DR/Content/NewTheme/assets/dist/css/product-detail.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 28 Nov 2022 06:57:38 GMT
Accept-Ranges: bytes
ETag: "0dd72b3f62d91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 5366
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/product-detail.js?ver=1137
200 OK 3.1 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/js/product-detail.js?ver=1137
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type Unicode text, UTF-8 text, with very long lines (9162), with no line terminators
Hash 8b0f803023cd8a13e5282f2a668b56f4
7d52d0209e3ef3cf569043c6c71933018abe5e7f
133fa9aff510a3679734de2900547a12ba60a8652721176a54a4d1fc395a6793
GET /Themes/DR/Content/NewTheme/assets/dist/js/product-detail.js?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 12:09:44 GMT
Accept-Ranges: bytes
ETag: "0f4a425ebf8d81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 3128
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
200 OK 35 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with very long lines (65536), with no line terminators
Hash db9657130b2e2958374ec9b77ea758b4
11b26340ab7f1d05fd653a04634df46e97719f78
3f51e22c0064be3e76df10c8a89b2d3a80ecb33215494dd663745534a548ab5e
GET /Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 13 Dec 2022 11:44:02 GMT
Accept-Ranges: bytes
ETag: "06d1b32e8ed91:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 34741
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
301 Moved Permanently 209 B URL HTTP/1.1 vsh.visilabs.net/Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash adc57312fe24beffd292aad33f6676fb
fa2d7dc3501390d3d70f24c7acb253be0176c62a
71f3dfd046f58a1db35fcf5861d4116355b2f07bee4e9fb4413debe0f8f28f01
GET /Visilabs.min.js?sid=2B647334493757534375733D&oid=6567387344534557696E673D&site=DR HTTP/1.1
Host: vsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
Date: Wed, 21 Dec 2022 19:12:11 GMT
Content-Length: 209
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
200 OK 7.3 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1693)
Hash 7faeb100a61b5d33f7928e1caac5154b
da91c2b07077417ccdb0766d8eef3ba8c0b6e1da
06d578c63b95c8189e7035f3d5e8f964302ef0a91267b3da25d4ee20234059dc
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/logo.svg HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/svg+xml
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 7348
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221671649914670%22
200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221671649914670%22
IP
File type JSON data\012- , ASCII text, with very long lines (21675), with no line terminators
Hash 95bc32c1100678bef51d9e00ab280a73
8243c98a720eafaceecb9b3aed6daea45b79ab82
46f35309bc4afae6a07104eb0a8d0edf72c7e69af4c56e75da7dd16527e568a9
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221671649914670%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21675
via: 1.1 google
date: Wed, 21 Dec 2022 19:12:08 GMT
last-modified: Wed, 21 Dec 2022 19:11:54 GMT
content-type: application/json
age: 5
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
200 OK 38 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 37552, version 1.0\012- data
Hash 1983ab3b86a7b25f4ee8be0dd1d5b9cf
aee7222e1fd8cccc6cc7dfa222db0b5b645e8136
2ecb993e7339264ad246a68d7b9155ed199e08799f4362168bfbbddd0cba8bc4
GET /pimages/Content/Uploads/Fonts/SFProDisplay-regular.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 37552
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:24 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Mon, 19 Dec 2022 05:30:45 GMT
expires: Mon, 26 Dec 2022 05:30:45 GMT
cache-control: max-age=604800
etag: "611389b0-92b0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: logVqrP7rEoPWHDmaagoQB4b-uqUNmUp94wADVXvyOSMUpXS6kqvOw==
age: 222087
X-Firefox-Spdy: h2
i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
200 OK 44 kB URL HTTP/2 i.dr.com.tr/pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 43980, version 1.0\012- data
Hash 30328c47ca087fd5694c7071932b6b27
f4addbdae2ea5a68aef371b9cf61046a735387c3
74840d37499f126d3e68507b5634f72c9e6038c18f92eed5568786bc7d7a1fb7
GET /pimages/Content/Uploads/Fonts/SFProDisplay-Bold.woff2 HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://i.dr.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 43980
server: nginx/1.8.1
last-modified: Wed, 11 Aug 2021 08:26:20 GMT
x-server: 38
accept-ranges: bytes
access-control-allow-origin: *
date: Fri, 16 Dec 2022 05:35:02 GMT
expires: Fri, 23 Dec 2022 05:35:02 GMT
cache-control: max-age=604800
etag: "611389ac-abcc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FvnInnE-3IvIpvCVQBAgyvnV-itjJdpu1Q4GoE0N-IM5yi5rzkm_xw==
age: 481030
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-ZGV7
200 OK 92 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-ZGV7
IP
File type Unicode text, UTF-8 text, with very long lines (38373)
Hash b660aebccf6fbbffb2999b7e9fed385b
8a783720644356fc5e1220993bdb43733e4804ad
2455fdabe0c63ffb04fa69973782796a50e6e61ca7cd3bd404751b564ae287e9
GET /gtm.js?id=GTM-ZGV7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:12:13 GMT
expires: Wed, 21 Dec 2022 19:12:13 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d30907d8b4e8f5c7644a5f3ade244746
b4897a3b75cde46af816f8edf2ad1238739c15cf
054586891a1e335abf433826d90fae3f561874d3ae9bf27587d5706d34d1d3af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash 889441ff71167088eed6563ca890f2ea
d89ea0020abd17c99cd8753c6d079faa0ec8db96
a70e96254fd4f3eb53467b04dc4944a3c98e951e5271b99b80d2075ee21eab39
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 05:26:15 GMT
Expires: Wed, 28 Dec 2022 05:26:14 GMT
Etag: "d89ea0020abd17c99cd8753c6d079faa0ec8db96"
Cache-Control: max-age=554640,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed94df310b61-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/images/favicon.ico
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 826b8858eadc52a7b2eb04efb945a1e4
84b1c4ca4cbea50ee4bc8f7cbeb454095c675a97
c7e236c7f42a7d653df97e4c7e11d8b0e9ce12f0a4e155837e965feba4802d8f
GET /Themes/DR/Content/NewTheme/images/favicon.ico HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 1150
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
301 Moved Permanently 227 B URL HTTP/1.1 wps.relateddigital.com/relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4ced202284e35d115e8a52a74c443a6e
2bf08f5db6e34d99d560d3af9f6eb21b183020fb
5e649992b9355c98784feb8bc639af08a2df3cf6c245f5e9faf37286b86849fd
GET /relatedpush_sdk.js?ckey=87BDA24BFB444EB9BE7FBDB0B4A9E61C&aid=6f8d3af4-58f7-4030-ae3a-6da2ebf04e81 HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
Server:
Set-Cookie: BlueStripe.PVN=2958000401e9; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:12:13 GMT
Content-Length: 227
Strict-Transport-Security: max-age=157680000
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
200 OK 86 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type MS Windows icon resource - 1 icon, -112x-112, 32 bits/pixel\012- data
Hash 64695caf1623b5cd7c04d0d6d2e01fd3
2b37e14bf6a4712ea5ba0ab1b3af5617a9b5e6ac
a643fd7986e61950a09c2985116d34f8b00050a13c299748c14aac54772be637
GET /Themes/DR/Content/NewTheme/assets/dist/images/frontend/apple-touch-icon-144x144.ico?ver=1137 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/x-icon
Last-Modified: Thu, 29 Sep 2022 06:38:56 GMT
Accept-Ranges: bytes
ETag: "040e625ced3d81:0"
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 85886
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
pubads.g.doubleclick.net/activity;dc_iu=/31110078/DFPAudiencePixel;ord=1;dc_seg=https://pubads.g.doubleclick.net/activity;dc_iu=/31110078/DFPAudiencePixel;ord=1;dc_seg=6559482677
200 OK 42 B URL HTTP/2 pubads.g.doubleclick.net/activity;dc_iu=/31110078/DFPAudiencePixel;ord=1;dc_seg=https://pubads.g.doubleclick.net/activity;dc_iu=/31110078/DFPAudiencePixel;ord=1;dc_seg=6559482677
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /activity;dc_iu=/31110078/DFPAudiencePixel;ord=1;dc_seg=https://pubads.g.doubleclick.net/activity;dc_iu=/31110078/DFPAudiencePixel;ord=1;dc_seg=6559482677 HTTP/1.1
Host: pubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:27:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/ajax-loader.gif
200 OK 20 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/ajax-loader.gif
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type GIF image data, version 89a, 64 x 64\012- data
Hash 57f7a9ceaf0ec7fc194e01261820505e
74aaadf2b37c9008b1e9b640133202cb81e5235e
f6650eb2a5e200d6527ea0cd26d9927b8adde60eb196bbc39a7019105b7e3387
GET /Themes/DR/Content/NewTheme/assets/dist/css/ajax-loader.gif HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/Themes/DR/Content/NewTheme/assets/dist/css/style.css?ver=1137
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: image/gif
Last-Modified: Fri, 22 Jul 2022 07:39:02 GMT
Accept-Ranges: bytes
ETag: "06fbd1c9e9dd81:0"
Date: Wed, 21 Dec 2022 19:12:12 GMT
Content-Length: 19508
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
200 OK 54 kB URL HTTP/2 rpdn.relateddigital.com/rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (21275), with CRLF line terminators
Hash 9e8e7e7cd1832be32bb2c10aaa191d71
9bb583229f265f3cbfa9adefc74fa206fbe48a3b
b45e8b7b12bbf80c017328fdf59377911c7a1af09b091114c558ea10e3646470
GET /rdsdk/87BDA24BFB444EB9BE7FBDB0B4A9E61C/6f8d3af4-58f7-4030-ae3a-6da2ebf04e81.js HTTP/1.1
Host: rpdn.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-type: application/javascript
content-encoding: br
content-md5: 7dJB1GMWSGW76wPPEWgUpQ==
last-modified: Tue, 16 Mar 2021 08:29:35 GMT
etag: 0x8D8E855A1ABE7AD
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 027b946f-001e-0033-2518-14a03c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0Rl2iYwAAAAAnd+qpknWFSKjw37+xpfX0QU1TMDRFREdFMTkwOAAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
x-azure-ref: 0jVqjYwAAAACEP3EmLl1mRIo5KMvRJQIrU1ZHMjBFREdFMDYxNAAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
date: Wed, 21 Dec 2022 19:12:13 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4e09fbe8c7f13b5f2593bfb7b654f35
2f0ab877a5de8ede3d0cf8d47614e4f847f12cc1
ebf6a6c3c22bf48f663ced84746989c300b5a8268a980df2e0410bf060ff0e1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4e09fbe8c7f13b5f2593bfb7b654f35
2f0ab877a5de8ede3d0cf8d47614e4f847f12cc1
ebf6a6c3c22bf48f663ced84746989c300b5a8268a980df2e0410bf060ff0e1f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221?
200 OK 425 B URL HTTP/2 4876222.fls.doubleclick.net/activityi;src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (847), with no line terminators
Hash f1d9e5983e6711aff289758fb1a89a3e
ddda683c70752e76a3709f5d17468c1e0b5ca6b3
a6c43e6d2945d81bf7406c522b1877a495db322f075edfa0f7d8ccd964c014f3
GET /activityi;src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221? HTTP/1.1
Host: 4876222.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 425
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:27:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
200 OK 22 kB URL HTTP/2 avlsh.visilabs.net/6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65532), with no line terminators
Hash c2a9988b1511e4055852380710391f62
a85062fcfaba3a39b2b32af4b7b3009183a6b91d
3086b8a3a4270666ec8a9de055ef3ed976a93d91b41ad1e7116f64cdd91da778
GET /6567387344534557696E673D/2B647334493757534375733D/Visilabs.min.js HTTP/1.1
Host: avlsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=8640000
content-type: text/javascript
content-encoding: br
content-md5: 3g3T/bNv20ozIAUHqNB0+A==
last-modified: Wed, 18 Aug 2021 09:46:48 GMT
etag: 0x8D9622D19366EBC
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: f08f4572-e01e-002b-725e-157f5b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0m1mjYwAAAABxi0JNxi5NT5SoF3C1g1lDQU1TMDRFREdFMTkxNgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
x-azure-ref: 0jVqjYwAAAABNwrpO0/k/Q7MPtVyp8Nt5U1ZHMjBFREdFMDUyMQAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
date: Wed, 21 Dec 2022 19:12:13 GMT
X-Firefox-Spdy: h2
4876222.fls.doubleclick.net/activityi;src=4876222;type=produc00;cat=produ0;ord=4162005065489;gtm=2wgbu0;auiddc=257750452.1671649934;u4=undefined;u5=undefined;u8=undefined;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221?
200 OK 427 B URL HTTP/2 4876222.fls.doubleclick.net/activityi;src=4876222;type=produc00;cat=produ0;ord=4162005065489;gtm=2wgbu0;auiddc=257750452.1671649934;u4=undefined;u5=undefined;u8=undefined;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (888), with no line terminators
Hash 45e55523ec2cb419269909d53b920f51
ba400226bc59dd0c3b1cd4eef83a4f53d3ae27d0
1c1abd4889a8fb721f97ada90fa6cb616ea29f28128768f9f6e8e3cb0d667c9e
GET /activityi;src=4876222;type=produc00;cat=produ0;ord=4162005065489;gtm=2wgbu0;auiddc=257750452.1671649934;u4=undefined;u5=undefined;u8=undefined;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221? HTTP/1.1
Host: 4876222.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 427
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:27:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.dr.com.tr/manifest.json
200 OK 0 B URL HTTP/1.1 www.dr.com.tr/manifest.json
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /manifest.json HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6IjA2ZGFiZGFhNTM0NmFjNTgiLCJ0ciI6IjFmNzUyNTNjZTk4ZTRlYjNjMjA1OTFmYjhlZWRhNmMwIiwidGkiOjE2NzE2NDk5MzM5MTB9fQ==
traceparent: 00-1f75253ce98e4eb3c20591fb8eeda6c0-06dabdaa5346ac58-01
tracestate: 510794@nr=0-1-510794-10449929-06dabdaa5346ac58----1671649933910
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:; _gcl_au=1.1.257750452.1671649934; lastclick=other
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Length: 63
Content-Type: application/json
Last-Modified: Wed, 24 Jul 2019 10:34:06 GMT
Accept-Ranges: bytes
ETag: "023b251b42d51:0"
Date: Wed, 21 Dec 2022 19:12:13 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
200 OK 57 kB URL HTTP/2 cdn.segmentify.com/2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js
IP
File type Unicode text, UTF-8 text, with very long lines (47012)
Hash cf208de6ef6b42e769ac8c64c4756c59
2b51a1912f98f59c4d2e9f09a1ed9d7d655a24c8
a18a56c6f555c61ca5c765f33bb681afe71b3241b4eadd29c4867a62e0a8bb90
GET /2f301fd8-172b-4c06-a2d7-5d28d88f021b/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdshuURpLHjSf5aEK1fEXShFS4G_FzKDQbb8KhXuovxlaSjobPvafuWd-jMviNg5Wm5hXrCDrgSeSveH-hH_JYktigtNOEoI
x-goog-generation: 1671595307284668
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 57201
content-encoding: gzip
x-goog-hash: crc32c=MBIsWg==, md5=zyCN5u9rQudprIxkxHVsWQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 57201
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Wed, 21 Dec 2022 04:10:49 GMT
expires: Wed, 28 Dec 2022 04:10:49 GMT
cache-control: public, max-age=604800
last-modified: Wed, 21 Dec 2022 04:01:47 GMT
etag: "cf208de6ef6b42e769ac8c64c4756c59"
content-type: application/javascript
age: 54084
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.dr.com.tr/relatedpush_sw.js
200 OK 81 B URL HTTP/1.1 www.dr.com.tr/relatedpush_sw.js
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with no line terminators
Hash fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224
GET /relatedpush_sw.js HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:; _gcl_au=1.1.257750452.1671649934; lastclick=other; VLCV1OK=1; OfferMiner_ID=EKYBQMTIXKVVMPGY20221221191213; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22EKYBQMTIXKVVMPGY20221221191213%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%5D%7D
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:12:13 GMT
ntCoent-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:13 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81
static.hotjar.com/c/hotjar-2460279.js?sv=7
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2460279.js?sv=7
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-2460279.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 21 Dec 2022 19:12:11 GMT
cache-control: max-age=60
etag: W/d41d8cd98f00b204e9800998ecf8427e
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QGT4PyDYils4N_s86N4eFWlcCjmrNPsQ12HOWM7-2ihYVmtK0vK-gg==
age: 40
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4821
Cache-Control: max-age=143108
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a2d3bd-1d7"
Expires: Fri, 23 Dec 2022 10:57:22 GMT
Last-Modified: Wed, 21 Dec 2022 09:37:01 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
IP
Hash 0bd2babfb67f762f5a710f5dc916814e
82d053b77671d4a8ac718869de4d0ef42696ee4b
e60f033692cef05af22e008cdde5f77e4c2ffe161c8e7cb72bfaa45787a6c2c3
POST /s/gts1d4/GGjoAgr7N70 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 21 Dec 2022 18:41:11 GMT
expires: Wed, 21 Dec 2022 20:41:11 GMT
cache-control: public, max-age=7200
age: 1863
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=OPT-N8GSXSG
IP
File type ASCII text, with very long lines (1921)
Hash e92fad25913092a394452a9682bd9cfa
74845eb88d48befce7266dc5147696edf831b4b5
fab775eee74a253cd3f167dc7cce64258e6266f0ef6cdfa06000bcaee8968057
GET /gtm/optimize.js?id=OPT-N8GSXSG HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 21 Dec 2022 19:12:14 GMT
expires: Wed, 21 Dec 2022 19:12:14 GMT
cache-control: private, max-age=900
last-modified: Wed, 21 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43946
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: j0V53vtA5NIE2qPZssEA9b0N/QtCyfEIq6z41MSFMND5WELSkWBVSofEe9xaDMPdZCsjAVvVqY95tF6P46NuRg==
priority: u=3,i
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 21 Dec 2022 19:12:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash f9fecabdbf57937974f21b5e31b7f61e
7ca25e6eefd9c037a19ab2e20fb6c5bd337a3081
9b40b8fdf4b93d2f3881115488db3c7e99e6872787405d74c34d9099bba5c569
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5134
Cache-Control: max-age=100600
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a22c78-138"
Expires: Thu, 22 Dec 2022 23:08:54 GMT
Last-Modified: Tue, 20 Dec 2022 21:43:20 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 312
tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js
200 OK 1.7 kB URL HTTP/2 tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js
IP
File type ASCII text, with very long lines (4036), with no line terminators
Hash 7dd71e4b922b44d4a1b639cea2047fcd
31fbab12c76ba11e8f6086ca5c49a31034695db9
2f8a817aca609ee1d1de2ae6be5cbe0d1e186beb66c0cf445304da8f650b1b40
GET /Vf1xHl7QukXl5JUrF0km.js HTTP/1.1
Host: tags.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu4tqmbe4h-Xorgq-sZ5Gk9qmfRcGaNbk030Qb7jHzcLadi4eghZPsJ7dclXatvuqc-rLgX5hlVL2HlpX6HmI19SMnnAZ5R
x-goog-generation: 1667467412094932
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1741
content-encoding: gzip
x-goog-hash: crc32c=U/iOdA==, md5=fdceS5IrRNShtjnOogR/zQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 1741
server: UploadServer
date: Wed, 21 Dec 2022 18:14:33 GMT
cache-control: public,max-age=0
age: 3461
last-modified: Thu, 03 Nov 2022 09:23:32 GMT
etag: "7dd71e4b922b44d4a1b639cea2047fcd"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js
304 Not Modified 0 B URL HTTP/2 tags.creativecdn.com/Vf1xHl7QukXl5JUrF0km.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Vf1xHl7QukXl5JUrF0km.js HTTP/1.1
Host: tags.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 03 Nov 2022 09:23:32 GMT
If-None-Match: "7dd71e4b922b44d4a1b639cea2047fcd"
TE: trailers
HTTP/2 304 Not Modified
date: Wed, 21 Dec 2022 18:14:33 GMT
age: 3461
etag: "7dd71e4b922b44d4a1b639cea2047fcd"
cache-control: public,max-age=0
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ae02736d592ff0f71082ae08f2ef94f1
2ef79e6cdc1eb940b5e9e836a44b52f8d50826ff
0aaa05b6df08dbac9b586f38fd46bfa453eb385788ff2432d861873306a8bc68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4821
Cache-Control: max-age=143108
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a2d3bd-1d7"
Expires: Fri, 23 Dec 2022 10:57:22 GMT
Last-Modified: Wed, 21 Dec 2022 09:37:01 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
200 OK 472 B IP
Hash ebcb54b52e3420ff442814317dc0f06e
65c521062e070120d6bde81863cd6fe901fb8e59
ab2a4f0fdde649c43ae79ed4700cde6b5df37d63e5642e5bad7f4dcd0aceddd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 02:06:54 GMT
Expires: Mon, 26 Dec 2022 02:06:53 GMT
Etag: "65c521062e070120d6bde81863cd6fe901fb8e59"
Cache-Control: max-age=369878,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed97a9ae0b61-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mainadv.com/Visibility/Rtgra2-min.js
200 OK 2.0 kB URL HTTP/2 www.mainadv.com/Visibility/Rtgra2-min.js
IP
File type ASCII text, with very long lines (3319), with CRLF line terminators
Hash bda45aa5b37a1296e4d0fd8f1bb7402b
7df34400abb4819f030151611fdc0a1e814b5a57
935903a2df857329008a3d11c799e641bff0039a35cee69bb408b3a7259f09fc
GET /Visibility/Rtgra2-min.js HTTP/1.1
Host: www.mainadv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:13 GMT
content-type: text/javascript
x-guploader-uploadid: ADPycdvoCRFYXY-95BfRXUSa53_PDboKH-lmHm8_uviDOsOB_djEO8kgtyVZqrlYWhpA7bV4_c6SU3QxiwvjSSaKC5PSeQ
x-goog-generation: 1634908118863458
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5612
x-goog-hash: crc32c=6zEFFQ==, md5=WPzOipYXtgdiBMDlnIPBOA==
x-goog-storage-class: STANDARD
last-modified: Fri, 22 Oct 2021 13:08:38 GMT
etag: W/"58fcce8a9617b6076204c0e59c83c138"
age: 7117
cache-control: public, max-age=3600
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wD%2B9ZTIZLCKRMnvMyYc%2Fffl7CKhQedBY%2FrkKngslLhvQi2BcxdspMdsBAA%2FKlsetLKd1%2BGaS%2F1cQmOF%2B9FCNji7FJsU6bXOxP1EajucmrqOpmuErCIP5KElxpF3GIa4IrdA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2ed971fd4b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/GGjoAgr7N70
IP
Hash 0bd2babfb67f762f5a710f5dc916814e
82d053b77671d4a8ac718869de4d0ef42696ee4b
e60f033692cef05af22e008cdde5f77e4c2ffe161c8e7cb72bfaa45787a6c2c3
POST /s/gts1d4/GGjoAgr7N70 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash 878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436000,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed98c8ff0b45-OSL
adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221
200 OK 426 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (846), with no line terminators
Hash db8226baf87e7759540e427ae663338d
6907c52c9af5b0532e524e82bc9646453eed1ade
aefc9b090dfe0fda67b99a51bdf0ad3d78c5654bbd242763f386e05eebf07e25
GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://4876222.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 426
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.sgmntfy.com/pa.js
200 OK 3.7 kB IP
File type ASCII text, with very long lines (3744), with no line terminators
Hash 7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec
Analyzer Verdict Alert quad9 Sinkholed
GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsBgLD22VlTHwelbKiYrQRX1-vpig45pwkGAKDv73RzohBIm4u5UoP657B8aXtvb4VdC-9o3ARCqUamwkufbFRxkJqWtYND
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Wed, 21 Dec 2022 18:29:46 GMT
expires: Wed, 21 Dec 2022 19:29:46 GMT
cache-control: public, max-age=3600
age: 2548
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
wps.relateddigital.com/relatedpush_sw.js
200 OK 1.2 kB URL HTTP/1.1 wps.relateddigital.com/relatedpush_sw.js
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type ASCII text, with CRLF line terminators
Hash 3c3509db30711bfee335f7e7dfbac78f
f0100abfb12b1648f87a1ffa05bb16a525ebf86b
fc5c3cb1a954e456fcf97f20a12458f801204969f2ce30c5b9ae2f96eead4e91
GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: public, no-cache="Set-Cookie"
Content-Type: text/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Oct 2020 13:16:28 GMT
Vary: Accept-Encoding
Server:
Set-Cookie: BlueStripe.PVN=295800040224; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Length: 1217
Strict-Transport-Security: max-age=157680000
per2.segmentify.com//get/key/v1.json?count=2
200 48 B URL HTTP/1.1 per2.segmentify.com//get/key/v1.json?count=2
IP
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash c2b79f7e364513494154ae22c38f948b
008ed423c7e7e94631f16cc0a96d460eed478b54
cde8f5c47ba0b0a2d9e6b01e17cfab155a30d8869fc028b193f53a27e9817469
GET //get/key/v1.json?count=2 HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:12:14 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: c0d6d9efa916a39dacfc6986d35c0822
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 04d258a8b538ce37d18d438ac6b72efa
361bf892ab84c35ec0563369b0a353899a2532d3
a1c22dce793443b628e08da1ccacc798bbb1155bae7ab304fd4eab359c91db67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=4876222;type=produc00;cat=produ0;ord=4162005065489;gtm=2wgbu0;auiddc=257750452.1671649934;u4=undefined;u5=undefined;u8=undefined;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=4876222;type=produc00;cat=produ0;ord=4162005065489;gtm=2wgbu0;auiddc=257750452.1671649934;u4=undefined;u5=undefined;u8=undefined;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=4876222;type=produc00;cat=produ0;ord=4162005065489;gtm=2wgbu0;auiddc=257750452.1671649934;u4=undefined;u5=undefined;u8=undefined;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:14 GMT
expires: Wed, 21 Dec 2022 19:12:14 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=4876222;type=remar0;cat=count0;ord=8077745137860;gtm=2wgbu0;auiddc=257750452.1671649934;u13=undefined;u15=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001;u16=undefined;~oref=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:14 GMT
expires: Wed, 21 Dec 2022 19:12:14 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 9042faa8c2fa536992221f3d91aad55a
29c95e714d15054caf180da2dca7c439addb123f
68ece0a19b204a116851d178b128242f0ef65ab3cd80372a84f65c0319a8cfc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6073
Cache-Control: max-age=149744
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a2e8c6-13a"
Expires: Fri, 23 Dec 2022 12:47:58 GMT
Last-Modified: Wed, 21 Dec 2022 11:06:46 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 314
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6648
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:14 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 04d258a8b538ce37d18d438ac6b72efa
361bf892ab84c35ec0563369b0a353899a2532d3
a1c22dce793443b628e08da1ccacc798bbb1155bae7ab304fd4eab359c91db67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6648
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4aa7e9e3fe28e9c401786f7415171f7
8482a47175ff105957d640269bc14ee1fbc97448
2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11535
x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: daGQIEuSoAMFnBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: axz1LSfJfBvAFuJl53Sl6Kh7r2R4FiTuDB3Xb_XI5AwXB20Gs4rg5A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:49:59 GMT
age: 76935
etag: "8482a47175ff105957d640269bc14ee1fbc97448"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6648
Expires: Wed, 21 Dec 2022 21:03:02 GMT
Date: Wed, 21 Dec 2022 19:12:14 GMT
Connection: keep-alive
www.dr.com.tr/relatedpush_sw.js?1671649933925
200 OK 81 B URL HTTP/1.1 www.dr.com.tr/relatedpush_sw.js?1671649933925
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type ASCII text, with no line terminators
Hash fa189124c42bba1dfd9a2f2e27160e2c
cd3f11bf0b95eb37cea2be9cb39f32c744a552a2
6323c3c12ddba8ab9ff3059909a73de1a673b85f66a0d0182890b9b7670b9224
GET /relatedpush_sw.js?1671649933925 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:; _gcl_au=1.1.257750452.1671649934; lastclick=other; VLCV1OK=1; OfferMiner_ID=EKYBQMTIXKVVMPGY20221221191213; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22xkgAfyaficld9K88DaH7%22%7D; _ga=GA1.4.362712501.1671649934; _gid=GA1.4.1884433620.1671649934; dr_ua_cookie=GA1.4.362712501.1671649934; dr_ua_cookie_gid=GA1.4.187601738.1671649934; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22EKYBQMTIXKVVMPGY20221221191213%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A14%22%7D%5D%7D; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: application/javascript
Last-Modified: Tue, 12 Mar 2019 12:01:36 GMT
Accept-Ranges: bytes
ETag: "cfb2e357cbd8d41:0"
Date: Wed, 21 Dec 2022 19:12:13 GMT
ntCoent-Length: 66
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:14 GMT;path=/;secure;httponly
Content-Encoding: gzip
Content-Length: 81
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8f5b2e482a0944dfc0de3a69659fa002
64dd897d9163a6eceadc0c5460cdd135d323abb3
feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dbuhqGUbIAMF_QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 07:02:35 GMT
age: 43779
etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8218fde73bff9978e07b0e06e1f7f0fb
ab15f8d74ea032d89f65603b4eef2377dc97e358
134d5a1046ea50f37f0234a4d1d167130b2950a1d61e93e2340dccbc922b4844
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9493
x-amzn-requestid: 54028261-e98d-4bb6-98da-51d41edc6d2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da61jElIIAMFl8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b56-7eeb3b142dd3d0f92e9fa9ba;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:09:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: oXQy1PwLBW8u0kv_sHcypb8QB6xwLtYMy4eWRZVQaD2xYjpw2dGA3A==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 03:55:09 GMT
age: 55025
etag: "ab15f8d74ea032d89f65603b4eef2377dc97e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3bd6359db3b908389343275ee839466b
9094f8e9275252a8e9d5e65fd3e87851b2f80bd7
7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9069
x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DG_hoAMFoKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:41 GMT
age: 77673
etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b67d0976563ea9460d94e27ff920f9da
f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92
c7ec3c4b87b700796008690562a6033481a7ad826fb2f45875cd6add06189568
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda2ee895-fc83-4df7-99f1-2bbc9cf77c8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10154
x-amzn-requestid: f317432b-7dda-439b-bc02-9c76412e9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_DGlfoAMF5Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-13a5af4c477a1019544222f4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: zee8fH2mx78hr5oICfnTrdmJeFcioNt_4_eo8ffiKApLll4cbLR82A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:50:12 GMT
age: 76922
etag: "f1998577eb3bc2214f195f72a8a1b4ad8aa6bc92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _nupdrdRDG-S085FRNoJgzDQVg9Ngb_nYDR5C1AkkterWy8vlXBxGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:41:22 GMT
age: 77452
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
200 OK 0 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP
ASN #15830 Telecitygroup International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sfy-api-key
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, X-Switch-User, X-Switch-Account, X-Switch-Region, X-Sfy-Api-Key
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3600
Connection: keep-alive
Content-Length: 0
Content-Type: application/json
Date: Wed, 21 Dec 2022 19:12:14 GMT
Server: nginx
X-Server-Name: b7324636da5cf5ec5220903f7e0297da
ocsp.digicert.com/
200 OK 313 B IP
Hash 2588ead0435c2b0b10b3fb63078a1c94
34fbd5ddd9a9e570de60a5e534ba62bca6459c9f
7c3f6c41ae63ccb288f8a195e4b578b6fce83190a9aff436355a84c5869f52f2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5501
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Last-Modified: Wed, 21 Dec 2022 17:40:34 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
wps.relateddigital.com/relatedpush_sw.js
304 Not Modified 0 B URL HTTP/1.1 wps.relateddigital.com/relatedpush_sw.js
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /relatedpush_sw.js HTTP/1.1
Host: wps.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 15 Oct 2020 13:16:28 GMT
Cache-Control: max-age=0
HTTP/1.1 304 Not Modified
Cache-Control: private
Content-Type: text/javascript
Server:
Set-Cookie: BlueStripe.PVN=295800040240; path=/
X-AspNet-Version: 4.0.30319
LB: 19
X-Powered-By: ASP.NET
Date: Wed, 21 Dec 2022 19:12:14 GMT
Strict-Transport-Security: max-age=157680000
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:13 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=yi8Pgl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRuVGJCdDBhWUJjdE9wR0s5dmNhbzYlMkYwTTVlYzZFNWtISExXNnhmQVU1Zg; expires=Mon, 15 Jan 2024 19:12:14 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 347978
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
200 18 kB URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP
ASN #15830 Telecitygroup International Limited
File type JSON data\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65168), with no line terminators
Hash 584b625643d850aa8703cd60b6ac6f6f
e7a46a081f02341d71bc52121b5a79364172c5c6
a12557d07d9c9c0244d0597af5765a0676f3aeaebf14c15ab6647beac8c11dda
POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 11565
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:12:14 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00
ocsp.digicert.com/
200 OK 314 B IP
Hash 01cec0684c321e353008ed08d91ac5c1
bf38f590f573c936b6ebc79c9af19eac497520cf
d542745033f3023de3df52c0a1bbb8c9b974adf2db4a1d9225dc075a9f251491
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6104
Cache-Control: max-age=145827
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a2d959-13a"
Expires: Fri, 23 Dec 2022 11:42:41 GMT
Last-Modified: Wed, 21 Dec 2022 10:00:57 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 314
gum.criteo.com/syncframe?topUrl=www.dr.com.tr&origin=onetag
200 OK 5.4 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.dr.com.tr&origin=onetag
IP
Hash 03279fd1a17d272d7d78c686b5e989fc
37a7faf8198f61913b2ab7c1e917a4539e97416d
5bf709030425fcab6c39b376b87524e597b5b0526459355add1253f9c7750656
GET /syncframe?topUrl=www.dr.com.tr&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:13 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=d4a70395-56d5-49d9-95be-f6f13ee590ce; expires=Mon, 15 Jan 2024 19:12:13 GMT; domain=.criteo.com; path=/; secure; samesite=none
optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 342425
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:12:14 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3719
Cache-Control: max-age=115378
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a26bb9-1d7"
Expires: Fri, 23 Dec 2022 03:15:12 GMT
Last-Modified: Wed, 21 Dec 2022 02:13:13 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 5bf8bd4125b32099fffd8dcf6062e267
afeef0f33cfd404b8698257af1677145ef27bcba
f3e79a99ad25f6f59505eee63f0234565ed2f7a2ce2ad9a78cec401fac669a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4139
Cache-Control: max-age=115798
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a26bb9-1d7"
Expires: Fri, 23 Dec 2022 03:22:12 GMT
Last-Modified: Wed, 21 Dec 2022 02:13:13 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ams.creativecdn.com/tags/v2?type=json
200 OK 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json
IP
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:14 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=362712501.1671649934&jid=1321639501&gjid=1665241070&_gid=187601738.1671649934&_u=aGjAgAALQAAAAGANM~&z=1732930777
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=362712501.1671649934&jid=1321639501&gjid=1665241070&_gid=187601738.1671649934&_u=aGjAgAALQAAAAGANM~&z=1732930777
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-36126232-1&cid=362712501.1671649934&jid=1321639501&gjid=1665241070&_gid=187601738.1671649934&_u=aGjAgAALQAAAAGANM~&z=1732930777 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 21 Dec 2022 19:12:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ams.creativecdn.com/tags/v2?type=json
307 Temporary Redirect 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json
IP
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tags/v2?type=json HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.dr.com.tr
Content-Length: 428
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
date: Wed, 21 Dec 2022 19:12:14 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=xgiu8aLY2WL97CXGH90G;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:12:14 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1671649934;Path=/;Domain=.creativecdn.com;Expires=Thu, 21-Dec-2023 19:12:14 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://ams.creativecdn.com/tags/v2?type=json&tc=1
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 1e241030c5209598a72f9ea976d83aa1
7aeecc0d0821a13950e3278c9dbf7e0fb7dbaa21
376c69ae3d04134dadf60fa39fde4bae27cd782b33079c787f68308e17bd4481
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1993
Cache-Control: max-age=148539
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:14 GMT
Etag: "63a2f400-139"
Expires: Fri, 23 Dec 2022 12:27:53 GMT
Last-Modified: Wed, 21 Dec 2022 11:54:40 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 313
ocsp.sectigo.com/
200 OK 471 B IP
Hash 878290f8eadd2b58546e736917a0068e
4126ddfca1ba8b3793c64713ac06aad369e6f5f5
85278e46eb1a0f4d54c7d0ef2ee8351eb127c2f556835f3e2ddc5938733e3b36
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 20:28:56 GMT
Expires: Mon, 26 Dec 2022 20:28:55 GMT
Etag: "4126ddfca1ba8b3793c64713ac06aad369e6f5f5"
Cache-Control: max-age=436000,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2ed998bb80b61-OSL
i.dr.com.tr/cache/500x400-0/originals/0002006908001-1.jpg
200 OK 19 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0002006908001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 251x400, components 3\012- data
Hash 3a4dc0bdf95962bf11d14395174507fe
bf22c60e21965652578f905610904651f12d59b1
af8dc6b890cfadfb5fab9c4ad2bc91675e130714eaceaefe3cbefe656a7712d0
GET /cache/500x400-0/originals/0002006908001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18714
date: Fri, 16 Dec 2022 14:38:49 GMT
expires: Fri, 23 Dec 2022 14:38:49 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "634e40e6-491a"
server: nginx/1.8.1
last-modified: Tue, 18 Oct 2022 06:00:06 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D_syzPeFvANtqFyynH_v4vov7DDF_0xdU0qwlRTfY7hLIsYTD-TBcQ==
age: 448407
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0001959400001-1.jpg
200 OK 26 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0001959400001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 319x400, components 3\012- data
Hash b7b98fed6674d28b7ee4f236d60fc107
8ffe73adb24d1757de54cb18f2b02c2fe5e292cf
fe7282b863d574b6f6a60ed3668f75c8c892cd79a934b7db04d21e1e8dcdfe74
GET /cache/500x400-0/originals/0001959400001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 25959
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Wed, 26 Jan 2022 03:39:40 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 20:02:40 GMT
expires: Thu, 22 Dec 2022 20:02:40 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "61f0c27c-6567"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xJfTV7r8VFRzrODffuR4R5oapYKsO4EmkAosjXtQp3ldSXXsQny7gQ==
age: 515373
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0000000719285-1.jpg
200 OK 16 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0000000719285-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 257x400, components 3\012- data
Hash 5602648c8f7e3dcae56a5a3ed7be5873
493d507c3c351b2389e0f5f86157b197e2627551
c23603b44cde566e1759ce4b1c77bd13e353d27c176d7e5c2152cd9fc8ca4291
GET /cache/500x400-0/originals/0000000719285-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16083
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Fri, 02 Apr 2021 05:19:16 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 17:49:23 GMT
expires: Thu, 22 Dec 2022 17:49:23 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "6066a954-3ed3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fkDKu1Ox1mfTvmTz5equ_j6Qi0f4ro3Cr1D0gHa7I0CABjLa0wDGyw==
age: 523371
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0001834511001-1.jpg
200 OK 34 kB URL HTTP/2 i.dr.com.tr/cache/600x600-0/originals/0001834511001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 414x600, components 3\012- data
Hash 13029ecb805ed9341f4d61a8b6ba9ee8
33d4aa58114a99417507c8063d14b349f851ecf3
07eb48972db5f0195b07293934c80e43b6686306fb0c91e63daa6a07721ff418
GET /cache/600x600-0/originals/0001834511001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 34171
date: Sun, 18 Dec 2022 18:02:33 GMT
expires: Sun, 25 Dec 2022 18:02:33 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "5d4d1c97-857b"
server: nginx/1.8.1
last-modified: Fri, 09 Aug 2019 07:11:19 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CIawXFouPQWLNwU9oQeAvr03U1rXiwW4XO4ip5VEebOLUriThAv2yQ==
age: 263383
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0002016953001-1.jpg
200 OK 22 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0002016953001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 255x400, components 3\012- data
Hash f2480d65c8b8cd11a415fedd28dfe87f
2c6b58f1fdaaa9653c6dde25315cae5a8b8df4d2
c962961abae6377448e70be248b2958b2b6826d25db7916075612ef51f3067bc
GET /cache/500x400-0/originals/0002016953001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 21549
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Tue, 06 Dec 2022 10:58:53 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Sat, 17 Dec 2022 02:47:49 GMT
expires: Sat, 24 Dec 2022 02:47:49 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "638f206d-542d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BgZs0MLlVaj_YU6wsEydOyrBmdv1v5Iucz_mV1L10tyVsD630SvxGg==
age: 404666
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 82 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
Hash 478b90d2ef67af3e3ec65740b1237fec
10780387da895a891e5da3be26083fb12bed0c91
351be4c6fe7f3e774f1ad3d104ec7dd1f012c0c62f9463057f7c32e03e7247b6
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:13 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 65733
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0002016952001-1.jpg
200 OK 24 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0002016952001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 256x400, components 3\012- data
Hash 19986c1d756e8e333270a0b824fbf644
dbb44c7d07971919ffa60a0fa1e9c68c966c10aa
7636eea4fce158edec0031790e2d5dc149c6a8acc60e43db72bc565d3874612f
GET /cache/500x400-0/originals/0002016952001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 23613
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Tue, 06 Dec 2022 10:59:08 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 20:43:01 GMT
expires: Thu, 22 Dec 2022 20:43:01 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "638f207c-5c3d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xKAJUg9WeQcWs73oCn-gxeDZsV-u4s2WDAf7WLTU7aLPGXhZIapLBw==
age: 512951
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0001947472001-1.jpg
200 OK 16 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0001947472001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 257x400, components 3\012- data
Hash 6b6df877b4919dc7d07dc9371bcadc4e
5772d2d6e3efb71b666251a8da42b1780648c60e
c11884d7d1ea801652d601861bfa4121713396f03b190a184dca779a1b02ace7
GET /cache/500x400-0/originals/0001947472001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15599
date: Fri, 16 Dec 2022 14:38:54 GMT
expires: Fri, 23 Dec 2022 14:38:54 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "618373a3-3cef"
server: nginx/1.8.1
last-modified: Thu, 04 Nov 2021 05:46:11 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CUJCX7gVVdFSaJJVpIGTmxBBZwUpeuhA78Nb_j9Iqn9SJbZbwzanwg==
age: 448402
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0000000129350-1.jpg
200 OK 24 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0000000129350-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 265x400, components 3\012- data
Hash a6d31a52fdf036faae2ff2c69f1d2a06
5b0c9fce2a3433400c04bb001355f02cc854df79
8031871557b1ca9fb1c77994734a08d9e489e82ac396aa7d79da1fc1dbcbc370
GET /cache/500x400-0/originals/0000000129350-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 24374
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Tue, 31 Aug 2021 07:51:36 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Mon, 19 Dec 2022 05:35:38 GMT
expires: Mon, 26 Dec 2022 05:35:38 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "612ddf88-5f36"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z7FqwcMoSqwa2A38qt7r3jPQg2HXdJk8ngA9jBGaDQc7HdbzXEiY3A==
age: 221796
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0000000202710-1.jpg
200 OK 26 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0000000202710-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 276x400, components 3\012- data
Hash 613d064eb0659199744b4905d90a6c1e
90014da560f74b014facde3ec097f67901ad4130
dba89e8be14ff6a79124e9cacebf82f45271755995d64570c166764bbd8992f1
GET /cache/500x400-0/originals/0000000202710-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 25956
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Thu, 21 Oct 2021 15:57:48 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 17:49:23 GMT
expires: Thu, 22 Dec 2022 17:49:23 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "61718dfc-6564"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ipWIRW5aH8AQHmCGL_3ZayGm8H66S6CgJ6rTldDLSEVuzbyeTTw_vA==
age: 523371
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0000000303230-1.jpg
200 OK 56 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0000000303230-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 277x400, components 3\012- data
Hash b51f547d2c2f345079e7d71a00be08e7
43df0b32e5d1eee65a6a5e46cca57bb0c3bf53c9
8b7368328a5faa48e75c177b3806794e38650a32f446181e79f62ac7993803ea
GET /cache/500x400-0/originals/0000000303230-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 56513
server: nginx/1.8.1
date: Sat, 17 Dec 2022 15:36:06 GMT
last-modified: Thu, 01 Dec 2016 01:18:42 GMT
etag: "583f7a72-dcc1"
expires: Sat, 24 Dec 2022 15:36:06 GMT
pragma: public
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MgNgNTFXijkaQucxFk03CIAUv2-J6nHXtB1smG8DoRf1Kg2yPKmFpg==
age: 358564
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0001904239001-1.jpg
200 OK 18 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0001904239001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 249x400, components 3\012- data
Hash a8100b91af26d3c986063d4d83778d5f
a6b3c57ce32537f54ff4393d4864e85249f888ac
64e319a5e267dd7267327513ef3fa019b4a127a0c7fac2e2ab72e662f31e77af
GET /cache/500x400-0/originals/0001904239001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17695
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Tue, 07 Sep 2021 15:53:10 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 17:51:50 GMT
expires: Thu, 22 Dec 2022 17:51:50 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "61378ae6-451f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UcyOiF-tap1a0VxSjOM8V5ryCWLGwTnY2bKvKOZiSKvKFc_xXKhUQg==
age: 523224
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0002011542001-1.jpg
200 OK 46 kB URL HTTP/2 i.dr.com.tr/cache/600x600-0/originals/0002011542001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 391x600, components 3\012- data
Hash 394565ca3e247e1bfe847dfc02c68fe2
0fbeea76f243a35ec41a2a00d29e9d24b232007a
ca3555af217f572efc623c2dd9724349ad114f1099f4651d5ac120b19aa6e620
GET /cache/600x600-0/originals/0002011542001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 45934
date: Tue, 20 Dec 2022 16:30:32 GMT
expires: Tue, 27 Dec 2022 16:30:32 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "636c19ab-b36e"
server: nginx/1.8.1
last-modified: Wed, 09 Nov 2022 21:20:43 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CAGJvLKg-msGqC2w-X2w5UfQ-1m9RTjQ69VfOEYx1QNPZtxMBs0nDg==
age: 96104
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000582824-1.jpg
200 OK 23 kB URL HTTP/2 i.dr.com.tr/cache/600x600-0/originals/0000000582824-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 415x600, components 3\012- data
Hash 7357cc234486b5687817972be7ca054d
3962ca6a78a0a84a420403446f3ae168be1d6a1e
b7c62e9bb1b7504399853a5cb54d85d2e7361cce9f895964b1b69c5539107de2
GET /cache/600x600-0/originals/0000000582824-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 23424
date: Mon, 19 Dec 2022 21:39:15 GMT
expires: Mon, 26 Dec 2022 21:39:15 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "58ed0872-5b80"
server: nginx/1.8.1
last-modified: Tue, 11 Apr 2017 16:46:42 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ij50WWg8-eUQwCoJjmkfc8wODI32htPMDYkUMPIwJiETE9y9_u1lsw==
age: 163981
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0001696702001-1.jpg
200 OK 16 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0001696702001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 259x400, components 3\012- data
Hash a4768549a426207b910431184efe91fe
606f58887583dfa8a1c6974d8f13895292baa085
de75545677514e9c2b8f59190379835cd7e9afe11f7a1139aa1908b928d3f0ec
GET /cache/500x400-0/originals/0001696702001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 15747
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Wed, 29 Mar 2017 02:49:23 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Sun, 18 Dec 2022 02:42:10 GMT
expires: Sun, 25 Dec 2022 02:42:10 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "58db20b3-3d83"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: f0EvzKiqNGQqrW-vj6sNh-vCljGsDJqLtthYHRwkTl9ZKgdfimdgRg==
age: 318605
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000187136-1.jpg
200 OK 76 kB URL HTTP/2 i.dr.com.tr/cache/600x600-0/originals/0000000187136-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 408x600, components 3\012- data
Hash fd3339345df9becd7f14ad020a532ade
d57127db6a19d537aadaf8ee5a329c07079db784
525ecb05c1b7360993f73f36f85ba28bdd3d7efda84ab5abfc6a1aab0c9b9918
GET /cache/600x600-0/originals/0000000187136-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 75450
server: nginx/1.8.1
date: Sat, 17 Dec 2022 19:11:38 GMT
last-modified: Fri, 06 Apr 2018 15:49:16 GMT
etag: "5ac796fc-126ba"
expires: Sat, 24 Dec 2022 19:11:38 GMT
pragma: public
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: J0BaIob7qSTw4sjU6Wv7Md4CSu4pRVqAnmnclwuC0TWtz_71X8h7gw==
age: 345636
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0001985880001-1.jpg
200 OK 50 kB URL HTTP/2 i.dr.com.tr/cache/600x600-0/originals/0001985880001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 378x600, components 3\012- data
Hash b755c11059a5a545451a5ad9c03bfee2
42ce66311b645fae18f8ee300e24b9c256155e35
bf0e4763bf760bd82bd7e2ba472f3498c687482e27a2ecf78cbdd7f26f449d31
GET /cache/600x600-0/originals/0001985880001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 50422
date: Sat, 17 Dec 2022 17:09:19 GMT
expires: Sat, 24 Dec 2022 17:09:19 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "62b46cdd-c4f6"
server: nginx/1.8.1
last-modified: Thu, 23 Jun 2022 13:38:37 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gosQcZK8qynMoGQKmncWRbKBISLyXP-IRUmdTKtlooU5VCVtE8kMSg==
age: 352977
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0001947199001-1.jpg
200 OK 18 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0001947199001-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 266x400, components 3\012- data
Hash d648e21cabe1cf48de54d3b0cb2bc0d1
975c6625899bed889295e2787723ea378e020a68
efdbe720384f7175d0ff9a160614a94d32f94dd300bc2dbf6f5d0adfa7173895
GET /cache/500x400-0/originals/0001947199001-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 18102
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Wed, 03 Nov 2021 05:44:40 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 17:48:47 GMT
expires: Thu, 22 Dec 2022 17:48:47 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "618221c8-46b6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _0dZaX2oYiacwY0HuF-SJsky6JuwQJgHYd2wCYMyvhHS2fpAZv3FRg==
age: 523406
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0000000393892-1.jpg
200 OK 20 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0000000393892-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 275x400, components 3\012- data
Hash 204a65190796c3e558cabd6f42a7de20
c2f7e7e91030763d5cd40d632d5b4ef85ef53c45
dfdd6f6ca140ac69431da114491dd2e0a455b530ba8e38ffa065d6419f36fb70
GET /cache/500x400-0/originals/0000000393892-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19793
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
server: nginx/1.8.1
last-modified: Wed, 06 Nov 2019 08:48:55 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
date: Thu, 15 Dec 2022 17:51:10 GMT
expires: Thu, 22 Dec 2022 17:51:10 GMT
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
etag: "5dc288f7-4d51"
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bJjcn61J9dMJKPykebCH6_Q4ECunANpXcfAu2TV6qTcEoAqmi0jK2g==
age: 523263
X-Firefox-Spdy: h2
i.dr.com.tr/cache/500x400-0/originals/0000000153127-1.jpg
200 OK 38 kB URL HTTP/2 i.dr.com.tr/cache/500x400-0/originals/0000000153127-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 276x400, components 3\012- data
Hash 31d1073b9b10c6725957d99b5d63b3fa
a4991206b1d2988d692edf28ef85c470c29b71a8
dc3898130f160729bfb3de3c9ae129b5c23d6a6e9ff66ea8d59c42d7dac55b22
GET /cache/500x400-0/originals/0000000153127-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 38318
date: Sat, 17 Dec 2022 17:26:48 GMT
expires: Sat, 24 Dec 2022 17:26:48 GMT
cache-control: max-age=604800,must-revalidate,proxy-revalidate,public
via: TMGRUP, 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
etag: "6042055a-95ae"
server: nginx/1.8.1
last-modified: Fri, 05 Mar 2021 10:18:02 GMT
pragma: public
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fA6xavaXbnYNwqRyseVjSRY3TOdFCfMoR9RvHRkro9lI3c8uTbFxsg==
age: 351928
X-Firefox-Spdy: h2
i.dr.com.tr/cache/600x600-0/originals/0000000187133-1.jpg
200 OK 52 kB URL HTTP/2 i.dr.com.tr/cache/600x600-0/originals/0000000187133-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 393x600, components 3\012- data
Hash 77af608e7c2fda22714b78f20c77812b
28dde71e3b51f910f09261444a802868b951d9b3
da305f27d78834157d53f5bb7e844a40e11ea389325f20e3ca5fac0ae4a9ca68
GET /cache/600x600-0/originals/0000000187133-1.jpg HTTP/1.1
Host: i.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Cookie: _gcl_au=1.1.257750452.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 51637
server: nginx/1.8.1
date: Sat, 17 Dec 2022 03:43:02 GMT
last-modified: Sun, 09 May 2021 11:27:14 GMT
etag: "6097c712-c9b5"
expires: Sat, 24 Dec 2022 03:43:02 GMT
pragma: public
cache-control: max-age=604800, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
access-control-allow-origin: *, *
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PbPy6S5lpoEe0FnLrEzC1BMgU0G6rzpmtRwHt6JD-E1JOhHUd2Z4EQ==
age: 401353
X-Firefox-Spdy: h2
s.visilabs.net/act.js?OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.siteID=2B647334493757534375733D&OM.obj=_VTObjs%5B%22_VisilabsTarget_0%22%5D&dat=Wed,%2021%20Dec%202022%2019:12:14%20GMT&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
200 OK 196 B URL HTTP/1.1 s.visilabs.net/act.js?OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.siteID=2B647334493757534375733D&OM.obj=_VTObjs%5B%22_VisilabsTarget_0%22%5D&dat=Wed,%2021%20Dec%202022%2019:12:14%20GMT&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type ASCII text, with no line terminators
Hash 5789ddf09e379ae03b4f23b0f208ecfd
e6a0f2beaac75df478ff67d445d391234f51d415
57a3bff76883690f805a8637da6001d5154eeb31013121d033b6528aaa273a0d
GET /act.js?OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.siteID=2B647334493757534375733D&OM.obj=_VTObjs%5B%22_VisilabsTarget_0%22%5D&dat=Wed,%2021%20Dec%202022%2019:12:14%20GMT&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221 HTTP/1.1
Host: s.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server:
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-AspNet-Version:
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536061; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
X-POWERED-BY:
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Length: 196
Set-Cookie: BIGipServerVisilabsTargetPool=415440313.20480.0000; path=/; Httponly; Secure
ams.creativecdn.com/tags/v2?type=json&tc=1
200 OK 0 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json&tc=1
IP
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dr.com.tr/
Origin: https://www.dr.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:15 GMT
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
access-control-allow-headers: content-type
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649934845&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649934843.1948096059&it=1671649934225&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649934845&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649934843.1948096059&it=1671649934225&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=163956504148268&ev=PageView&dl=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649934845&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.2.1671649934843.1948096059&it=1671649934225&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 21 Dec 2022 19:12:15 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=163956504148268&ev=ViewContent&dl=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649934849&cd[content_ids]=0001988057001&cd[content_name]=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan&cd[content_category]=Kitap%2FE%C4%9Fitim%20Ba%C5%9Fvuru%2FPsikoloji%20Bilimi&cd[content_type]=product&cd[value]=46.90&cd[currency]=TRY&sw=1280&sh=1024&v=2.9.90&r=stable&ec=1&o=30&fbp=fb.2.1671649934843.1948096059&it=1671649934225&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=163956504148268&ev=ViewContent&dl=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649934849&cd[content_ids]=0001988057001&cd[content_name]=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan&cd[content_category]=Kitap%2FE%C4%9Fitim%20Ba%C5%9Fvuru%2FPsikoloji%20Bilimi&cd[content_type]=product&cd[value]=46.90&cd[currency]=TRY&sw=1280&sh=1024&v=2.9.90&r=stable&ec=1&o=30&fbp=fb.2.1671649934843.1948096059&it=1671649934225&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=163956504148268&ev=ViewContent&dl=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&rl=&if=false&ts=1671649934849&cd[content_ids]=0001988057001&cd[content_name]=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan&cd[content_category]=Kitap%2FE%C4%9Fitim%20Ba%C5%9Fvuru%2FPsikoloji%20Bilimi&cd[content_type]=product&cd[value]=46.90&cd[currency]=TRY&sw=1280&sh=1024&v=2.9.90&r=stable&ec=1&o=30&fbp=fb.2.1671649934843.1948096059&it=1671649934225&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 21 Dec 2022 19:12:15 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ams.creativecdn.com/tags/v2?type=json&tc=1
200 OK 248 B URL HTTP/2 ams.creativecdn.com/tags/v2?type=json&tc=1
IP
ASN #204995 Rtb House S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash cfd9a18ce9fdf961258a67a5c5f73892
9cca7a032e7204e706bcb7a58bae311d90000846
00a09045a87e5ebfca549de81c47deffb18579d59ad8c96b70840dbf3702f56f
POST /tags/v2?type=json&tc=1 HTTP/1.1
Host: ams.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 428
Origin: https://www.dr.com.tr
Referer: https://www.dr.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.dr.com.tr
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/json;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Wed, 21 Dec 2022 19:12:15 GMT, Wed, 21 Dec 2022 19:12:15 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 248
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/992597607/?random=1671649934105&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tiba=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&fmt=3&is_vtc=1&random=1255990255&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/992597607/?random=1671649934105&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tiba=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&fmt=3&is_vtc=1&random=1255990255&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/992597607/?random=1671649934105&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tiba=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&fmt=3&is_vtc=1&random=1255990255&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/992597607/?random=1671649934105&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tiba=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&fmt=3&is_vtc=1&random=1255990255&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/992597607/?random=1671649934105&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tiba=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&fmt=3&is_vtc=1&random=1255990255&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/992597607/?random=1671649934105&cv=11&fst=1671649200000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=gQ9-CNmkmgYQ56yn2QM&frm=0&url=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tiba=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&fmt=3&is_vtc=1&random=1255990255&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 21 Dec 2022 19:12:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash ee04940bea32334977d45357ff71701a
01a6bd71066c908aefeadf351ed4cce9c27250b5
81b6314244e3d62d68a932fdba62173de116492ecf8e82c2197b4a3a6d8126de
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3936
Cache-Control: max-age=105128
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:15 GMT
Etag: "63a242d8-139"
Expires: Fri, 23 Dec 2022 00:24:23 GMT
Last-Modified: Tue, 20 Dec 2022 23:18:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=87c05506-7f37-4452-8d69-a4b82a441aad&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e900678a-dce3-4877-a702-9af88f3c9038&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=87c05506-7f37-4452-8d69-a4b82a441aad&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e900678a-dce3-4877-a702-9af88f3c9038&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=87c05506-7f37-4452-8d69-a4b82a441aad&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e900678a-dce3-4877-a702-9af88f3c9038&tw_document_href=https%3A%2F%2Fwww.dr.com.tr%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001%3Futm_source%3Deuromessage%26utm_medium%3Dmailing%26utm_campaign%3Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%26utm_content%3Dmail_enuzungece_20221221&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o3k15&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:15 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_RVJUCUVtYD/FT2OleGCDtw=="; Max-Age=63072000; Expires=Fri, 20 Dec 2024 19:12:15 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 7b7ac116f7814f83
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: b4cfdd003d86adb1a35e537e36911c50d7df00a24d58178088c84b3035776465
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1216.min.js
200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QKJbZH0tUcMtAsLZitbfwcPpTgZbXYEZElUcFQJ41NzHawdKY70ohMytOmE+mYAGFiIaDXcfKyI=
x-amz-request-id: 6WVZ36C2EBPHWFVA
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 21 Dec 2022 19:12:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: HIT
x-cache-hits: 1359
x-timer: S1671649936.619597,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
200 OK 54 kB URL HTTP/1.1 www.dr.com.tr/Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5
IP
ASN #41902 Turkuvaz Haberlesme Ve Yayincilik A.s.
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3928)
Hash f331aa8a71e90cf9ce7c886b038c707f
2799241a6e213d34aa93bd8afb5f7b486f89211f
cbcd276809baa39b8aa07c38a12b220d3855cbec2b989ca567d89a53853644de
GET /Themes/DR/Content/NewTheme/assets/partials/icon-set.html?c=5 HTTP/1.1
Host: www.dr.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: UQcHVl9XGwIAUFVbDgMB
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjUxMDc5NCIsImFwIjoiMTA0NDk5MjkiLCJpZCI6ImE2MmEwN2VjNDMwMWZhM2YiLCJ0ciI6ImIyMGUwY2JiZTA5ZGVkY2U5ZDAxNjQxN2IwYTYzNTUxIiwidGkiOjE2NzE2NDk5MzU1NDB9fQ==
traceparent: 00-b20e0cbbe09dedce9d016417b0a63551-a62a07ec4301fa3f-01
tracestate: 510794@nr=0-1-510794-10449929-a62a07ec4301fa3f----1671649935540
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno=0001988057001?utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221
Cookie: DnR.customer=265e32c2-46aa-474f-94d2-38c1547d0517; NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660; __session:0.7786371942170546:=https:; _gcl_au=1.1.257750452.1671649934; lastclick=other; VLCV1OK=1; OfferMiner_ID=EKYBQMTIXKVVMPGY20221221191213; __rtbh.lid=%7B%22eventType%22%3A%22lid%22%2C%22id%22%3A%22xkgAfyaficld9K88DaH7%22%7D; _ga=GA1.4.362712501.1671649934; _gid=GA1.4.1884433620.1671649934; dr_ua_cookie=GA1.4.362712501.1671649934; dr_ua_cookie_gid=GA1.4.187601738.1671649934; _sgf_user_id=6650449070148173825; _sgf_session_id=6650449070148173824; _gat_UA-36126232-1=1; _dc_gtm_UA-36126232-1=1; _fbp=fb.2.1671649934843.1948096059; _sgf_exp=; VL_CM_0=%7B%22Items%22%3A%5B%7B%22K%22%3A%22VL_LastPageViewTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_LastPVTimeForTD%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalDuration%22%2C%22V%22%3A%220%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_FirstVisitTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalPV%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22VL_PVCountInVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_VisitStartTime%22%2C%22V%22%3A%222022-12-21%252019%253A12%253A13%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A13%22%7D%2C%7B%22K%22%3A%22VL_TotalVisit%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OfferMiner_ID%22%2C%22V%22%3A%22EKYBQMTIXKVVMPGY20221221191213%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OM_INW%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A13%22%7D%2C%7B%22K%22%3A%22OMB_New%22%2C%22V%22%3A%221%22%2C%22E%22%3A%222022-12-21%2019%3A42%3A14%22%7D%2C%7B%22K%22%3A%22VLTVisitorC%22%2C%22V%22%3A%22%257B%2522data%2522%253A%257B%257D%257D%22%2C%22E%22%3A%222024-12-10%2019%3A12%3A15%22%7D%5D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: max-age=2073600
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Fri, 22 Jul 2022 07:39:04 GMT
Accept-Ranges: bytes
ETag: "09cee1d9e9dd81:0"
Vary: Accept-Encoding
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Length: 54039
X-Frame-Options: SAMEORIGIN
Set-Cookie: NSC_es.dpn.us-wtfswfs-opjq=ffffffff09050b3545525d5f4f58455e445a4a423660;expires=Wed, 21-Dec-2022 19:42:15 GMT;path=/;secure;httponly
fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GYcGEj-s-NQkUZ4ahF3ioU5hLfGdTwZ_j18tsEWSAzsqw
200 OK 441 B URL HTTP/2 fledge-eu.creativecdn.com/fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GYcGEj-s-NQkUZ4ahF3ioU5hLfGdTwZ_j18tsEWSAzsqw
IP
ASN #204995 Rtb House S.A.
File type HTML document text\012- HTML document, ASCII text
Hash 25b03f78b80c04838d690302e90125f3
c6c2dd450ef2c1a80ff104e271490f3d24bd9ecb
b40e507ebdc5e50afa5224a83ece3c3c518508c064698476788326646e2908f8
GET /fledge-igmembership?ntk=TV82OrSpgJncd5RI87mJUbPQFBokQv1_nKmnJDwg8GYcGEj-s-NQkUZ4ahF3ioU5hLfGdTwZ_j18tsEWSAzsqw HTTP/1.1
Host: fledge-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
origin-trial: Anlqio5K3Dr7Hn1oMh2faiLECLxb8MnD1hPnDOlNZXdzpbZV9L2LOKjgHGwWMDoiHq67q8SjUmjQZj10YLJwfgIAAABxeyJvcmlnaW4iOiJodHRwczovL2NyZWF0aXZlY2RuLmNvbTo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjgwNjUyNzk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cache-control: public, max-age=86400
date: Wed, 21 Dec 2022 19:12:15 GMT, Wed, 21 Dec 2022 19:12:15 GMT
expires: Thu, 22 Dec 2022 19:12:15 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 441
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
200 127 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b
IP
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash f9b40c2b4bdb4581cade187825f56a90
8ea74dd25fb55d8bdd5b075242f138c95c00f17f
b2c655063e4a8c875bd2d78ee2c5f160f684e3562282ba993ea56c370cc50c51
POST //add/events/v1.json?apiKey=2f301fd8-172b-4c06-a2d7-5d28d88f021b HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 2f301fd8-172b-4c06-a2d7-5d28d88f021b
Content-Length: 8673
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Wed, 21 Dec 2022 19:12:15 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 287260ae76fedca0934bc740be560e00
gum.criteo.com/sid/json?origin=onetag&domain=dr.com.tr&sn=FirefoxSyncframe&so=0&topUrl=www.dr.com.tr&info=KC6tkF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRuVGJCdDBhWUJjdE9wR0s5dmNhbzd4SEFqaktsaENCRW5FMU8wY29ENmY&idsd=1345338342,1748001198&cw=1&lsw=1
200 OK 601 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=dr.com.tr&sn=FirefoxSyncframe&so=0&topUrl=www.dr.com.tr&info=KC6tkF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRuVGJCdDBhWUJjdE9wR0s5dmNhbzd4SEFqaktsaENCRW5FMU8wY29ENmY&idsd=1345338342,1748001198&cw=1&lsw=1
IP
Hash 31581a98436d174c319d8f2642968e31
5e7a6b38edd1dc755be298416b180ca7e18a7215
f377a0eec3bfaaa86851a339d318b04785f481b9458582f0add7c5df8c272fbb
GET /sid/json?origin=onetag&domain=dr.com.tr&sn=FirefoxSyncframe&so=0&topUrl=www.dr.com.tr&info=KC6tkF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRuVGJCdDBhWUJjdE9wR0s5dmNhbzd4SEFqaktsaENCRW5FMU8wY29ENmY&idsd=1345338342,1748001198&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.dr.com.tr&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:15 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1191917
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:15%20GMT
200 OK 70 B URL HTTP/1.1 lgr.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:15%20GMT
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 02a065761e036bca2f981f3ed704dc79
e251c670f45fb6dadca5f779fed5b6cc132c7cdf
cd8feca47797d25495f03a52b6a8605de61b829c01be0dca0c2ff0fed71ec3d8
GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:15%20GMT HTTP/1.1
Host: lgr.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: Image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Set-Cookie: OM.3rd=69342a5a-0fab-442e-b755-ddae2c3e5769; domain=.visilabs.net; expires=Sun, 21-Dec-2042 19:12:15 GMT; path=/
Date: Wed, 21 Dec 2022 19:12:14 GMT
Content-Length: 70
dr.api.useinsider.com/ins.js?id=10001448
200 OK 0 B URL HTTP/2 dr.api.useinsider.com/ins.js?id=10001448
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ins.js?id=10001448 HTTP/1.1
Host: dr.api.useinsider.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:15 GMT
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
etag: "d41d8cd98f00b204e9800998ecf8427e"
last-modified: Fri, 15 Jul 2022 10:15:22 GMT
pragma: public
strict-transport-security: max-age=31536000; includeSubDomains
x-amz-id-2: u0EOnGEwlp31eqUzH39awZ+0Agtv7mL03QSxjYL6VOJIb7cDEgHjHTJnRTBsafXVHs9z0rjR3kE=
x-amz-request-id: HGZKHPKNX8EDK2RW
x-amz-version-id: wNkEcItKcpD12eM52_A_rhIY5m87APnA
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1
cf-cache-status: HIT
age: 576
expires: Wed, 21 Dec 2022 19:17:15 GMT
cache-control: public, max-age=300
accept-ranges: bytes
set-cookie: __cf_bm=PstVOlczGqu979wHp369nD9fgpVFg5t22WA5Cb_SSWA-1671649935-0-AR5gpoZdsHZtvDDzZ/U2r9tLhvWEDmip5EBNb/zlokNex33sGnUz2dL+Epa6+7QLxox23iYKf3j0PJ5BmqBu7kI=; path=/; expires=Wed, 21-Dec-22 19:42:15 GMT; domain=.useinsider.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 77d2eda37ee30b41-OSL
X-Firefox-Spdy: h2
rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:15%20GMT
200 OK 70 B URL HTTP/1.1 rt.visilabs.net/dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:15%20GMT
IP
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 14d1707eda790f543c6fb8d0dcff6359
cf7049298a876447c2854cf2bc4df2987587aac5
de9d3fd0eb948bd294477d0eda60a73b85caff1794803530d0463193a113da98
GET /dandr/om.gif?OM.siteID=2B647334493757534375733D&OM.cookieID=EKYBQMTIXKVVMPGY20221221191213&OM.oid=6567387344534557696E673D&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.dr.com.tr&OM.uri=%2FKitap%2FKendine-iyi-Davran-Guzel-insan%2FEgitim-Basvuru%2FPsikoloji-Bilimi%2Furunno%3D0001988057001&OM.title=Kendine%20%C4%B0yi%20Davran%20G%C3%BCzel%20%C4%B0nsan%20(Beyhan%20Budak)%20-%20Fiyat%20%26%20Sat%C4%B1n%20Al%20%7C%20D%26R&utm_source=euromessage&utm_medium=mailing&utm_campaign=mail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8&utm_content=mail_enuzungece_20221221&dat=Wed,%2021%20Dec%202022%2019:12:15%20GMT HTTP/1.1
Host: rt.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536027; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Date: Wed, 21 Dec 2022 19:12:15 GMT
Content-Length: 70
Set-Cookie: BIGipServerVisilabsRealtimePoolHTTP=616766905.20480.0000; path=/; Httponly; Secure
ocsp.digicert.com/
200 OK 471 B IP
Hash 6aa627e28c71a3d2789eddf92231471b
11facb6d6c4aff37d4aefe52c3f92bdbfa6d1b88
bea3ba8609e274db498cd9e3abc98f77f4499c20b56083795cce7bc561c62a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5101
Cache-Control: max-age=103442
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:15 GMT
Etag: "63a237b4-1d7"
Expires: Thu, 22 Dec 2022 23:56:17 GMT
Last-Modified: Tue, 20 Dec 2022 22:31:16 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GWAUXFVAVkV0DlpNS1lcClZDGmVDWAVBWk1yVRJSWFlG&rst=4083&ck=1&ref=https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno%3D0001988057001&ap=257&be=1227&fe=3937&dc=1906&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649931600,%22n%22:0,%22f%22:349,%22dn%22:371,%22dne%22:380,%22c%22:381,%22s%22:464,%22ce%22:766,%22rq%22:766,%22rp%22:1095,%22rpe%22:1095,%22dl%22:1116,%22di%22:1823,%22ds%22:1905,%22de%22:1909,%22dc%22:3936,%22l%22:3936,%22le%22:3963%7D,%22navigation%22:%7B%7D%7D&fcp=1822&at=TENVGwNNEghBH0FHWEcoUBsDFAUjBANxcAFzWAALCgIBIwMTSBkTQkMOQhtjQwNBeEV0VVMTUUpKFApECgAbDAEZVQYXCAMERB8TYEZURShEeF1SQgNAQmdURhVbFgAIGAlWHQUHGwACVRYVG2NDA0F4URcLFVMCDFwFAgUBHAEDUFZMAA4NUB1fB1UHGAIPAgUMDQFUVgYAAhcdFTRHXEt3VwNdRWZBQ14PUxsDFH0JSVhZWVAYVBoJGR5nD11VWkJCFy9gGQgGHlYIEWJcXwFVDxlBAARdE0NDDwAHVBoJEBZ3A1BaWhoDB1AECQgGAUZ1WEdQV1gZGwgJAx5WER0XYENbMVVNUXdeAmJEUEdIFVsWFnJfRAdDHn5QX1MIWlwUX0kPHnVUQ0NWDxl%2BTExVCh5YW0ZQWU5xXlBCWQsec1RGR0ITQRZpRVkNXF1aX1gaI11VUFtZSUZDQFtfWFwECQkHCV4LAQACAQdQC0xNW28VXERHVlQKBEFLVltVFUBQUlAXQhVZZlRTVA9GXAhYUF4NXVdeEEUSXm5WVFxHAF1eVwtdB1pdalBfQhtBV15TUwNsAwUHAwZTBghmU1MPVwBxBnQPUQAJeHNzUgdyAgNwAVcHCn13BF5yCHcHBHJZEkxNW28FXF9BUF9DXFlYUFpvA11ET0BfUARXXGYEAFQBAAcHABUcSQ%3D%3D&jsonp=NREUM.setToken
200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GWAUXFVAVkV0DlpNS1lcClZDGmVDWAVBWk1yVRJSWFlG&rst=4083&ck=1&ref=https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno%3D0001988057001&ap=257&be=1227&fe=3937&dc=1906&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649931600,%22n%22:0,%22f%22:349,%22dn%22:371,%22dne%22:380,%22c%22:381,%22s%22:464,%22ce%22:766,%22rq%22:766,%22rp%22:1095,%22rpe%22:1095,%22dl%22:1116,%22di%22:1823,%22ds%22:1905,%22de%22:1909,%22dc%22:3936,%22l%22:3936,%22le%22:3963%7D,%22navigation%22:%7B%7D%7D&fcp=1822&at=TENVGwNNEghBH0FHWEcoUBsDFAUjBANxcAFzWAALCgIBIwMTSBkTQkMOQhtjQwNBeEV0VVMTUUpKFApECgAbDAEZVQYXCAMERB8TYEZURShEeF1SQgNAQmdURhVbFgAIGAlWHQUHGwACVRYVG2NDA0F4URcLFVMCDFwFAgUBHAEDUFZMAA4NUB1fB1UHGAIPAgUMDQFUVgYAAhcdFTRHXEt3VwNdRWZBQ14PUxsDFH0JSVhZWVAYVBoJGR5nD11VWkJCFy9gGQgGHlYIEWJcXwFVDxlBAARdE0NDDwAHVBoJEBZ3A1BaWhoDB1AECQgGAUZ1WEdQV1gZGwgJAx5WER0XYENbMVVNUXdeAmJEUEdIFVsWFnJfRAdDHn5QX1MIWlwUX0kPHnVUQ0NWDxl%2BTExVCh5YW0ZQWU5xXlBCWQsec1RGR0ITQRZpRVkNXF1aX1gaI11VUFtZSUZDQFtfWFwECQkHCV4LAQACAQdQC0xNW28VXERHVlQKBEFLVltVFUBQUlAXQhVZZlRTVA9GXAhYUF4NXVdeEEUSXm5WVFxHAF1eVwtdB1pdalBfQhtBV15TUwNsAwUHAwZTBghmU1MPVwBxBnQPUQAJeHNzUgdyAgNwAVcHCn13BF5yCHcHBHJZEkxNW28FXF9BUF9DXFlYUFpvA11ET0BfUARXXGYEAFQBAAcHABUcSQ%3D%3D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GWAUXFVAVkV0DlpNS1lcClZDGmVDWAVBWk1yVRJSWFlG&rst=4083&ck=1&ref=https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno%3D0001988057001&ap=257&be=1227&fe=3937&dc=1906&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1671649931600,%22n%22:0,%22f%22:349,%22dn%22:371,%22dne%22:380,%22c%22:381,%22s%22:464,%22ce%22:766,%22rq%22:766,%22rp%22:1095,%22rpe%22:1095,%22dl%22:1116,%22di%22:1823,%22ds%22:1905,%22de%22:1909,%22dc%22:3936,%22l%22:3936,%22le%22:3963%7D,%22navigation%22:%7B%7D%7D&fcp=1822&at=TENVGwNNEghBH0FHWEcoUBsDFAUjBANxcAFzWAALCgIBIwMTSBkTQkMOQhtjQwNBeEV0VVMTUUpKFApECgAbDAEZVQYXCAMERB8TYEZURShEeF1SQgNAQmdURhVbFgAIGAlWHQUHGwACVRYVG2NDA0F4URcLFVMCDFwFAgUBHAEDUFZMAA4NUB1fB1UHGAIPAgUMDQFUVgYAAhcdFTRHXEt3VwNdRWZBQ14PUxsDFH0JSVhZWVAYVBoJGR5nD11VWkJCFy9gGQgGHlYIEWJcXwFVDxlBAARdE0NDDwAHVBoJEBZ3A1BaWhoDB1AECQgGAUZ1WEdQV1gZGwgJAx5WER0XYENbMVVNUXdeAmJEUEdIFVsWFnJfRAdDHn5QX1MIWlwUX0kPHnVUQ0NWDxl%2BTExVCh5YW0ZQWU5xXlBCWQsec1RGR0ITQRZpRVkNXF1aX1gaI11VUFtZSUZDQFtfWFwECQkHCV4LAQACAQdQC0xNW28VXERHVlQKBEFLVltVFUBQUlAXQhVZZlRTVA9GXAhYUF4NXVdeEEUSXm5WVFxHAF1eVwtdB1pdalBfQhtBV15TUwNsAwUHAwZTBghmU1MPVwBxBnQPUQAJeHNzUgdyAgNwAVcHCn13BF5yCHcHBHJZEkxNW28FXF9BUF9DXFlYUFpvA11ET0BfUARXXGYEAFQBAAcHABUcSQ%3D%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77d2eda3dc75b51b-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=32b335e8ea45c2a9; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b0a3e75fa0f24c8aa80d85555db3d371
fd80d774d851c5743cbc8113afe36e9ca57a1376
a8587576407a16b30fc1d0ba4cb804a58617ff7dcd5cd8b28ee9007e1027f51d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8587576407A16B30FC1D0BA4CB804A58617FF7DCD5CD8B28EE9007E1027F51D"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8306
Expires: Wed, 21 Dec 2022 21:30:42 GMT
Date: Wed, 21 Dec 2022 19:12:16 GMT
Connection: keep-alive
sslwidget.criteo.com/event?a=32742&v=5.12.3&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvp%26p%3Dundefined&p3=e%3Ddis&adce=1&bundle=3N0CeV83Rkd2TzFJUExnR2hjeXElMkJxN09mSFZNSHdhZzFHZzZsSHklMkJDNEFzRSUyRk9BODVtRSUyRkpHbHRKenRrQk9vSHYzbyUyQkZrJTJGQmZ6TGwxa1lRT2Z6azBKUURLd0p3RHJoUG9KeDVucSUyQmZSdkNOQ3NQNHRTSFhONFRlT0NjN0dSUG4yeUVsJTJGajJMSHZmUDJRVEJjJTJGdEV2QTdmcUElM0QlM0Q&tld=dr.com.tr&fu=https%253A%252F%252Fwww.dr.com.tr%252FKitap%252FKendine-iyi-Davran-Guzel-insan%252FEgitim-Basvuru%252FPsikoloji-Bilimi%252Furunno%253D0001988057001%253Futm_source%253Deuromessage%2526utm_medium%253Dmailing%2526utm_campaign%253Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%2526utm_content%253Dmail_enuzungece_20221221&dtycbr=76936
200 OK 4.2 kB URL HTTP/2 sslwidget.criteo.com/event?a=32742&v=5.12.3&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvp%26p%3Dundefined&p3=e%3Ddis&adce=1&bundle=3N0CeV83Rkd2TzFJUExnR2hjeXElMkJxN09mSFZNSHdhZzFHZzZsSHklMkJDNEFzRSUyRk9BODVtRSUyRkpHbHRKenRrQk9vSHYzbyUyQkZrJTJGQmZ6TGwxa1lRT2Z6azBKUURLd0p3RHJoUG9KeDVucSUyQmZSdkNOQ3NQNHRTSFhONFRlT0NjN0dSUG4yeUVsJTJGajJMSHZmUDJRVEJjJTJGdEV2QTdmcUElM0QlM0Q&tld=dr.com.tr&fu=https%253A%252F%252Fwww.dr.com.tr%252FKitap%252FKendine-iyi-Davran-Guzel-insan%252FEgitim-Basvuru%252FPsikoloji-Bilimi%252Furunno%253D0001988057001%253Futm_source%253Deuromessage%2526utm_medium%253Dmailing%2526utm_campaign%253Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%2526utm_content%253Dmail_enuzungece_20221221&dtycbr=76936
IP
Hash ca99c12c53e588daac56aebe8afe1341
b335386cb0f2d408f6d7c7c42d00672e8f09f00f
437ba38204b1d93fd811b900e47332ea84420a1e4721d924c0549d4c46b706e8
GET /event?a=32742&v=5.12.3&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvp%26p%3Dundefined&p3=e%3Ddis&adce=1&bundle=3N0CeV83Rkd2TzFJUExnR2hjeXElMkJxN09mSFZNSHdhZzFHZzZsSHklMkJDNEFzRSUyRk9BODVtRSUyRkpHbHRKenRrQk9vSHYzbyUyQkZrJTJGQmZ6TGwxa1lRT2Z6azBKUURLd0p3RHJoUG9KeDVucSUyQmZSdkNOQ3NQNHRTSFhONFRlT0NjN0dSUG4yeUVsJTJGajJMSHZmUDJRVEJjJTJGdEV2QTdmcUElM0QlM0Q&tld=dr.com.tr&fu=https%253A%252F%252Fwww.dr.com.tr%252FKitap%252FKendine-iyi-Davran-Guzel-insan%252FEgitim-Basvuru%252FPsikoloji-Bilimi%252Furunno%253D0001988057001%253Futm_source%253Deuromessage%2526utm_medium%253Dmailing%2526utm_campaign%253Dmail_enuzungece_20221221_ecid1D3E8040AEC44C76A6633DA48A9B25E8%2526utm_content%253Dmail_enuzungece_20221221&dtycbr=76936 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:15 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 23597347
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
matching.ivitrack.com/sync?realm=criteo&uid=k-WrCplk8QlB1gDklYdkziGBkH1Nb3JiCyYjoN7Q
200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-WrCplk8QlB1gDklYdkziGBkH1Nb3JiCyYjoN7Q
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-WrCplk8QlB1gDklYdkziGBkH1Nb3JiCyYjoN7Q HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 2
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b0a3e75fa0f24c8aa80d85555db3d371
fd80d774d851c5743cbc8113afe36e9ca57a1376
a8587576407a16b30fc1d0ba4cb804a58617ff7dcd5cd8b28ee9007e1027f51d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8587576407A16B30FC1D0BA4CB804A58617FF7DCD5CD8B28EE9007E1027F51D"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8306
Expires: Wed, 21 Dec 2022 21:30:42 GMT
Date: Wed, 21 Dec 2022 19:12:16 GMT
Connection: keep-alive
ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=xkgAfyaficld9K88DaH7
204 No Content 0 B URL HTTP/2 ssc-cms.33across.com/ps/?us_privacy=USP&xi=52&xu=xkgAfyaficld9K88DaH7
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ps/?us_privacy=USP&xi=52&xu=xkgAfyaficld9K88DaH7 HTTP/1.1
Host: ssc-cms.33across.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-33x-status: 2000208
server: 33XP001
date: Wed, 21 Dec 2022 19:12:15 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash cd7c90b76c90a5c9fe117685e20a7b61
c10ebf375145bb7476f2afc96eb3b414bb2d1dbe
a119781486feec7659459eb0c03f77451b905ce3bee10233569bb0523dd4ef4a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Dec 2022 19:12:16 GMT
Last-Modified: Wed, 21 Dec 2022 17:40:51 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Oy1U_2jFLbetTr2SuxokbTA1VpXG37v4WNL5mWNXYi7vmaD-C8hXxg==
Age: 5485
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:15 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 945691
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash a38f6386c0b97cc0bff778b473e49fde
5a339fc78f6a5bc332e4786679958fd92d9f714e
cde8eef249f0cfc13769f77112a45205d712aab5675cb35b8b377cbee9006a2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5773
Cache-Control: max-age=97985
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a21fc4-117"
Expires: Thu, 22 Dec 2022 22:25:21 GMT
Last-Modified: Tue, 20 Dec 2022 20:49:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-xj1E5U8QlB1gDklYdkziGBkH1Nb-yp8CE_Ibfg
200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-xj1E5U8QlB1gDklYdkziGBkH1Nb-yp8CE_Ibfg
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-xj1E5U8QlB1gDklYdkziGBkH1Nb-yp8CE_Ibfg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3146515363580209000V10; Expires=Thu, 21 Dec 2023 19:12:16 GMT; domain=.media.net; Path=/;
data-c-ts=1671649936;Expires=Fri, 20 Jan 2023 19:12:16 GMT;path=/;domain=.media.net;
data-c=k-xj1E5U8QlB1gDklYdkziGBkH1Nb-yp8CE_Ibfg~~3;Expires=Fri, 20 Jan 2023 19:12:16 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 21 Dec 2022 19:12:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 21 Dec 2022 19:12:16 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2c67c28b78f5e77c9aee89b31a93adb8
fd1926615c2422a456fcf0a3dca1384ede726463
f3cddf634823969a05e085fdb912030b79b9c86f3fd8ed89c408e31d4cb52844
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm=&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw&google_tc=
date: Wed, 21 Dec 2022 19:12:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 21-Dec-2022 19:27:16 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q
302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:16 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q&C=1
cf-ray: 77d2eda6fd77b4ee-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y6NakOI8qSyA44gxpuLh3gAA; Path=/; Domain=casalemedia.com; Expires=Thu, 21 Dec 2023 19:12:16 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1872; Path=/; Domain=casalemedia.com; Expires=Tue, 21 Mar 2023 19:12:16 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1872; Path=/; Domain=casalemedia.com; Expires=Tue, 21 Mar 2023 19:12:16 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UljHS2V8Zq9kNBIq7st8WhYL7Z1aKGIqWOU0Qb58JOhT0Y00MZdfvtaeO0h3x%2BC%2FBIZWxPO7XAlP3rYqaYTnuD7IocwQIX9rnfE4TSq8Yt%2Bq6v52%2FNkOngr%2B7zzPcy00HDIj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k--xEsw08QlB1gDklYdkziGBkH1Naw_56HVgohlQ
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k--xEsw08QlB1gDklYdkziGBkH1Naw_56HVgohlQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k--xEsw08QlB1gDklYdkziGBkH1Naw_56HVgohlQ HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Wed, 21 Dec 2022 19:12:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 21 Dec 2022 19:12:16 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 688dfb6de4a0eacc224027a213fcac2c
555db446233093f4a574abc9f014dad7326ca80d
2cd2514330c02a13b68b425a18a5c2570be0186b7859f937ef8ecc266069bee0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Dec 2022 19:12:16 GMT
Last-Modified: Wed, 21 Dec 2022 17:48:38 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3mQ4wKkYQapWeoT7sT6MyGElnPxPlRnvxnd0owTcLrRK3125j1IW8g==
Age: 5018
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm=&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw&google_tc=
302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm=&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw&google_tc=
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 82befb73c3f765ae5b14b569e1c21e57
9167dd9de4fb9d9b1d293086c5c83310f3a22828
81227c2ea9de65a4d55fb4d3551ace313892349a416555a8ceb4c5eb5cf686a2
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_cm=&google_hm=ay1lYkFHRVU4UWxCMWdEa2xZZGt6aUdCa0gxTlpvdWhzTmZMSjNVdw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_error=3
date: Wed, 21 Dec 2022 19:12:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 0ea09f58f35e504f0f7303004a299cd1
0d24f4216ccc3696a2b208c9e5786461fe128554
d04b19797a11e3a75effd9d6f5f5ce1d6e0b1ff5f99e315e481c7a7d796b7d9d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5250
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Last-Modified: Wed, 21 Dec 2022 17:44:46 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: c91a9ffd-1ff8-475a-88ce-05bca9297b61
Set-Cookie: uuid2=9102081997765019198; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 21-Mar-2023 19:12:16 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q&C=1
200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q&C=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-Hrp-vk8QlB1gDklYdkziGBkH1NaDhTTTZBQ3-Q&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 43
cf-ray: 77d2eda78e51b4ee-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jS6roySnrLm52FufY8zgkq3J0iL1kHIHtYCdoi8CYhKkGH6854Zb1DXCnyCbVDnz0SfBX4m7mGeUfEVbxypNfir%2F8%2FNpO4hn%2FNKqybCDNT6PNyxUlpVjJ0jbc3FCl1VM0TdO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1dc1f2cfbb4c5cee6ed6be8a03a10201
e4862f3055f1bb816619c18492ab26fc49352638
e93a89b20730079ec434bc3adbcd549f852c0a917900b9b4183012b84a298e4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4348
Cache-Control: max-age=162758
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a3225a-1d7"
Expires: Fri, 23 Dec 2022 16:24:54 GMT
Last-Modified: Wed, 21 Dec 2022 15:12:26 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 279 B IP
Hash a38f6386c0b97cc0bff778b473e49fde
5a339fc78f6a5bc332e4786679958fd92d9f714e
cde8eef249f0cfc13769f77112a45205d712aab5675cb35b8b377cbee9006a2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4233
Cache-Control: max-age=96445
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a21fc4-117"
Expires: Thu, 22 Dec 2022 21:59:41 GMT
Last-Modified: Tue, 20 Dec 2022 20:49:08 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA
302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA
set-cookie: tuuid=7cd0b491-bfc0-47f1-9171-074fcee618ce; Expires=Tue, 21 Mar 2023 19:12:16 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1671649936; Expires=Tue, 21 Mar 2023 19:12:16 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 57ee29ada78b0504a8dbc7617fba0d20
a53e02e5524d9346a7621de10ae6d3b2496b2931
6feb0eac5f032d063e4efcadc9295837336817c1b205e8a3aab42c71ef29b55d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3976
Cache-Control: max-age=129659
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a2a283-1d7"
Expires: Fri, 23 Dec 2022 07:13:15 GMT
Last-Modified: Wed, 21 Dec 2022 06:06:59 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: b06523b1-743e-4572-8e89-edd97ddf6983
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
200 OK 471 B IP
Hash 55fc8eba60921e9789a33dee700a2aa8
5958cdecba4fe557ff0caddab336ed128b8c66ee
7e3c44ae4d03a6896343cfb38ab8110406a4aaccfff5e7eaa50b9329bf95ab2a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2311
Cache-Control: max-age=159653
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a31e2e-1d7"
Expires: Fri, 23 Dec 2022 15:33:09 GMT
Last-Modified: Wed, 21 Dec 2022 14:54:38 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-0oAmS08QlB1gDklYdkziGBkH1NaC2TqRgMT8mw
200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-0oAmS08QlB1gDklYdkziGBkH1NaC2TqRgMT8mw
IP
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-0oAmS08QlB1gDklYdkziGBkH1NaC2TqRgMT8mw HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Wed, 21 Dec 2022 19:12:15 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=8428437289425412229; expires=Sun, 21 Jan 2024 19:12:16 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 21 Jan 2024 19:12:16 GMT; domain=smartadserver.com; path=/
csync=79:k-0oAmS08QlB1gDklYdkziGBkH1NaC2TqRgMT8mw; expires=Thu, 21 Dec 2023 19:12:16 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:16 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJBao2MCEP2O_cuZRLF00XxzAyFoswYFEgEBAQGspGOtYwAAAAAA_eMAAA&S=AQAAAkWuVtYemITh-B_VNtycfRw; Expires=Fri, 22 Dec 2023 01:12:16 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA
200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-BBGbmU8QlB1gDklYdkziGBkH1NZ47YH41lLJtA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 61675b285a9a59215100214ddff4a5a7
449ed401784734defe17f173783b973128197e14
ecbbc788f96cb6fe01e5f52cf82afa9f57f895841d71c3bdc427292cbe5a2730
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 21 Dec 2022 19:12:16 GMT
Last-Modified: Wed, 21 Dec 2022 17:25:13 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TWGv-ve3xgyiBtjt4TUKQkguKWKKm4EgTPqcPTJ2S5lW67_4yvFAGw==
Age: 6423
ocsp.sectigo.com/
200 OK 471 B IP
Hash a40bce7b7404abfb7a17bb9aa991e95f
5f2e4cfa40d3dba30d5f2ce96b0250af88231ce4
3f102edcee88890932520481fc209b2af4837059b621f8d0ce5439183835b077
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Dec 2022 13:56:50 GMT
Expires: Tue, 27 Dec 2022 13:56:49 GMT
Etag: "5f2e4cfa40d3dba30d5f2ce96b0250af88231ce4"
Cache-Control: max-age=498872,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2eda709400b61-OSL
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e15814e941fb14d1f43ea73494a1d967
b0d9cd40459c7b28c0fa91db53680ac5c96ff466
83f08c3d103da05904e2873744a675620babb81c3c5d69ef257dac4b63cf92e0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157000
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a3038b-1d7"
Expires: Fri, 23 Dec 2022 14:48:56 GMT
Last-Modified: Wed, 21 Dec 2022 13:00:59 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xIFGtOaJHmcmUUVTnPGyjZ30u9NHJq1CgHcV-4W_FgJVYhmUCYf-Jw==
Age: 6477
dpm.demdex.net/ibs:dpid=28645&dpuuid=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-001bf2e72.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=13035905325624362692682005461635142746; Max-Age=15552000; Expires=Mon, 19 Jun 2023 19:12:16 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: ydHVJnkUQCc=
Content-Length: 0
Connection: keep-alive
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-6N18iE8QlB1gDklYdkziGBkH1Naf6BVpkzA3ng&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 21 Dec 2022 19:12:16 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBJBao2MCEMlNnCOel54l-SFaaksh_IAFEgEBAQGspGOtYwAAAAAA_eMAAA&S=AQAAAvqwj8LkrlUt555brQCSwKg; Expires=Fri, 22 Dec 2023 01:12:16 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2c4ee0b04963cedb600c848eadefb5c8
9e7e67697506c412ced35e7ec0b8e9b1ea3484d9
5dfad198049fa28c05f05df81965319178eb6e7fd593e7d6ff30ed66214b2610
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DFAD198049FA28C05F05DF81965319178EB6E7FD593E7D6FF30ED66214B2610"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5461
Expires: Wed, 21 Dec 2022 20:43:17 GMT
Date: Wed, 21 Dec 2022 19:12:16 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8eaeb8c2ce8177725c5a98b13cfc4f74
eb5c590b697f6f1933a8e058c638466775ce5071
88b3f79a7bba3bb3475e32ddb449781f253537e5fac087c6a5fde1919bc13946
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Dec 2022 03:11:53 GMT
Expires: Wed, 28 Dec 2022 03:11:52 GMT
Etag: "eb5c590b697f6f1933a8e058c638466775ce5071"
Cache-Control: max-age=546575,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77d2eda85dc10b45-OSL
cm.adform.net/pixel?adform_pid=15&adform_pc=k-GxWtN08QlB1gDklYdkziGBkH1Nak0EHt6QRlxg
200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-GxWtN08QlB1gDklYdkziGBkH1Nak0EHt6QRlxg
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-GxWtN08QlB1gDklYdkziGBkH1Nak0EHt6QRlxg HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 04 Oct 2021 14:04:49 GMT
etag: "615b0a01-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1e25712838954191050dee3f5610ffc9
48f2391e6f927bb29b58cecd4dac91602947e652
53e9b37bb996729ab57791dc159b2b154e4f64634c82d5ec9bd659f4a985abf3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5514
Cache-Control: max-age=143775
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a2d3a5-1d7"
Expires: Fri, 23 Dec 2022 11:08:31 GMT
Last-Modified: Wed, 21 Dec 2022 09:36:37 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
200 OK 471 B IP
Hash b3212133a6def79c8607352def6e574b
c896d01fd45efe9b07129603d729e2ebd6c59700
4eaf6c7558f4ea60ff007abb1dfb06e8acd3298554d1e44cc21acbf924742d5b
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6503
Cache-Control: max-age=100158
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a22567-1d7"
Expires: Thu, 22 Dec 2022 23:01:34 GMT
Last-Modified: Tue, 20 Dec 2022 21:13:11 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-VZru7U8QlB1gDklYdkziGBkH1NY933kHwkSUMA
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-VZru7U8QlB1gDklYdkziGBkH1NY933kHwkSUMA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-VZru7U8QlB1gDklYdkziGBkH1NY933kHwkSUMA HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 21 Dec 2022 19:12:16 GMT
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-R6LU0k8QlB1gDklYdkziGBkH1NY4ahu862W8Aw&dongle=013b
200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-R6LU0k8QlB1gDklYdkziGBkH1NY4ahu862W8Aw&dongle=013b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-R6LU0k8QlB1gDklYdkziGBkH1NY4ahu862W8Aw&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30
302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:16 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=da032bc6-b89e-4538-8581-3d1460825bf2; path=/; expires=Thu, 21-Dec-2023 19:12:16 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671649936; path=/; expires=Thu, 21-Dec-2023 19:12:16 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1671649936; path=/; expires=Thu, 21-Dec-2023 19:12:16 GMT; domain=.bidswitch.net; samesite=none; secure
c=1671649936; path=/; expires=Thu, 21-Dec-2023 19:12:16 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
id5-sync.com/s/966/9.gif?puid=k-xJBvuU8QlB1gDklYdkziGBkH1NZIdxq1DcdMCQ
200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-xJBvuU8QlB1gDklYdkziGBkH1NZIdxq1DcdMCQ
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-xJBvuU8QlB1gDklYdkziGBkH1NZIdxq1DcdMCQ HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Wed, 21-Dec-2022 19:17:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Wed, 21-Dec-2022 19:17:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Wed, 21-Dec-2022 19:17:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Wed, 21-Dec-2022 19:17:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Wed, 21-Dec-2022 19:17:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Wed, 21-Dec-2022 19:17:16 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Wed, 21 Dec 2022 19:12:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-027dff91d.edge-irl1.demdex.com 1 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: Dc1iU4eGSic=
Content-Length: 59
Connection: keep-alive
ad.yieldlab.net/m?dt_id=8664&ext_id=k-Gx47YE8QlB1gDklYdkziGBkH1NZ3sWCkSGqfQw
204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-Gx47YE8QlB1gDklYdkziGBkH1NZ3sWCkSGqfQw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-Gx47YE8QlB1gDklYdkziGBkH1NZ3sWCkSGqfQw HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Tue, 20 Dec 2022 19:12:16 GMT
Date: Wed, 21 Dec 2022 19:12:16 GMT
Connection: keep-alive
Set-Cookie: id=09656c25-ea19-42ab-b46f-1d7ba5bfd8d7; Path=/; Domain=prod.svc.y6b.de; Expires=Thu, 21-Dec-2023 19:12:16 GMT; Max-Age=31536000; Secure; SameSite=None
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA&KRTB&23144-uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA&KRTB&23286-uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA&KRTB&23287-uid:k-fNWOFU8QlB1gDklYdkziGBkH1NZdKY1jeQO5uA; domain=pubmatic.com; secure; expires=Fri, 20-Jan-2023 19:12:16 GMT; path=/
PugT=1671649936; domain=pubmatic.com; secure; expires=Fri, 20-Jan-2023 19:12:16 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30
200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-xNhFHU8QlB1gDklYdkziGBkH1Nbhd-yvuc4NYA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:15 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 387149
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 958bb6aee6bf227ecbbd99f3c8ab2429
5682ddfb198dfbdccc75ebb4c8e2708169441d07
c8f2f77e3e92c08dabda4cde1864a3f2d8159c925f6b3fd4ac77a6b859f0a4a2
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 21 Dec 2022 19:03:37 GMT
Expires: Thu, 22 Dec 2022 19:03:37 GMT
ETag: "5682ddfb198dfbdccc75ebb4c8e2708169441d07"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 2e39349917479e46259b516b28d48079
9f5c6770b711be2d71011caaeefa153ecd2056c7
bb9c259ad93f6cd168e38ea1988824af27009f627474b0c78f800edfe3d96c9c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=152161
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a2f58a-1d7"
Expires: Fri, 23 Dec 2022 13:28:17 GMT
Last-Modified: Wed, 21 Dec 2022 12:01:14 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VrPEe_e_MlHxNcIkU1PMsHwqST601RvCer2PTa4T5L2HeZrg5MywuQ==
Age: 5223
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-aXKt7k8QlB1gDklYdkziGBkH1NaK9HFQtE7edw
200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-aXKt7k8QlB1gDklYdkziGBkH1NaK9HFQtE7edw
IP
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-aXKt7k8QlB1gDklYdkziGBkH1NaK9HFQtE7edw HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=e6e75958e1afb4d522faa802b1382b1e; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Wed, 21 Dec 2022 19:12:16 GMT
content-length: 49
x-envoy-upstream-service-time: 80
server: ayl-lb-fra02
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-6_f5j08QlB1gDklYdkziGBkH1NbreqJs2gckNA
200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-6_f5j08QlB1gDklYdkziGBkH1NbreqJs2gckNA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-6_f5j08QlB1gDklYdkziGBkH1NbreqJs2gckNA HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:16 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 284b75b3f8d611ffae13d6ee119f21b9
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash a25170c3e21ea40a4d1324d8b5287710
90f7f71f793ed68c369d3dc6f7c407cb90004d02
99ed7b226813205b33dc540b7871859a6877b80bd2025e79b1e1590753bc6aae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=172166
Date: Wed, 21 Dec 2022 19:12:16 GMT
Etag: "63a33ea7-1d7"
Expires: Fri, 23 Dec 2022 19:01:42 GMT
Last-Modified: Wed, 21 Dec 2022 17:13:11 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YQDvIgb8_gEOsVCs7Bnx-Wv3CKPGTJGib5cd5NxPWdMZbQpNxHOVPA==
Age: 6511
sync-criteo.ads.yieldmo.com/sync?id=k-FYVDSk8QlB1gDklYdkziGBkH1NYHo4MyiCbOcw&pn_id=criteo&ext=1
200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-FYVDSk8QlB1gDklYdkziGBkH1NYHo4MyiCbOcw&pn_id=criteo&ext=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-FYVDSk8QlB1gDklYdkziGBkH1NYHo4MyiCbOcw&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=ga915ca86add406127f5%7C1671649936882%7C0%7C; Domain=.yieldmo.com; Expires=Thu, 21-Dec-2023 19:12:16 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-FYVDSk8QlB1gDklYdkziGBkH1NYHo4MyiCbOcw; Domain=ads.yieldmo.com; Expires=Thu, 21-Dec-2023 19:12:16 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a045f954ec270c59641d564f01f953b0
512b0925e87dbb8727ec045b33f3085900ddae76
260ba08bbd943d4471020f25f417f57dfc31f69e47e4dc59be5531874e60508f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1106
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 19:12:16 GMT
Last-Modified: Wed, 21 Dec 2022 18:53:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 21 Dec 2022 19:12:17 GMT
set-cookie: _kuid_=PRYRl0Cr; Expires=Mon, 19-Jun-23 19:12:16 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n006-dub-prod.krxd.net
x-request-time: D=45 t=1671649937
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 21 Dec 2022 19:12:16 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 371038
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
e1.emxdgt.com/put?d=d53&uid=k-USaVCk8QlB1gDklYdkziGBkH1Nb5m-3b2VSK-9OptKDAl9_C
204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-USaVCk8QlB1gDklYdkziGBkH1Nb5m-3b2VSK-9OptKDAl9_C
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-USaVCk8QlB1gDklYdkziGBkH1Nb5m-3b2VSK-9OptKDAl9_C HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Wed, 21 Dec 2022 19:12:17 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash d7c80b4d8e0fe6aa9a96652c5db4002c
e4856b4e74f93f8d8c10bb6bdb546ce8bb17b6f0
1a54b7758160a642144f67d956f1bcec9ea039a82828a2f8ef1327edeeac56be
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "1A54B7758160A642144F67D956F1BCEC9EA039A82828A2F8EF1327EDEEAC56BE"
Last-Modified: Wed, 21 Dec 2022 08:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3267
Expires: Wed, 21 Dec 2022 20:06:44 GMT
Date: Wed, 21 Dec 2022 19:12:17 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:17 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 629f0ed0-8163-11ed-a869-0000ac170385
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GWAUXFVAVkV0DlpNS1lcClZDGmVDWAVBWk1yVRJSWFlG&rst=7377&ck=1&ref=https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno%3D0001988057001
200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GWAUXFVAVkV0DlpNS1lcClZDGmVDWAVBWk1yVRJSWFlG&rst=7377&ck=1&ref=https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno%3D0001988057001
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/2b1677ff9f?a=10449926&v=1216.487a282&to=YARWbUtXXhVSUkFcXllOeW96GWAUXFVAVkV0DlpNS1lcClZDGmVDWAVBWk1yVRJSWFlG&rst=7377&ck=1&ref=https://www.dr.com.tr/Kitap/Kendine-iyi-Davran-Guzel-insan/Egitim-Basvuru/Psikoloji-Bilimi/urunno%3D0001988057001 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1653
Origin: https://www.dr.com.tr
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 19:12:19 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 77d2edb6fc79b51b-OSL
Access-Control-Allow-Origin: https://www.dr.com.tr
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
dnacdn.net/dna
200 OK 0 B IP
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=yi8Pgl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRuVGJCdDBhWUJjdE9wR0s5dmNhbzYlMkYwTTVlYzZFNWtISExXNnhmQVU1Zg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=KC6tkF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRuVGJCdDBhWUJjdE9wR0s5dmNhbzd4SEFqaktsaENCRW5FMU8wY29ENmY; expires=Mon, 15 Jan 2024 19:12:15 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 333319
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-h51bTE8QlB1gDklYdkziGBkH1NbHD0lxQsWgFk2FWdS74M2a
200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-h51bTE8QlB1gDklYdkziGBkH1NbHD0lxQsWgFk2FWdS74M2a
IP
GET /usersync/push?partner=criteo&partnerId=k-h51bTE8QlB1gDklYdkziGBkH1NbHD0lxQsWgFk2FWdS74M2a HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2261f895a0-8163-11ed-b534-01df334a225f%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 04 Jan 2023 19:12:16 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2261f895a0-8163-11ed-b534-01df334a225f%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 04 Jan 2023 19:12:16 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%2261f895a0-8163-11ed-b534-01df334a225f%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 04 Jan 2023 19:12:16 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2261f895a0-8163-11ed-b534-01df334a225f%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Wed, 04 Jan 2023 19:12:16 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-h51bTE8QlB1gDklYdkziGBkH1NbHD0lxQsWgFk2FWdS74M2a%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Wed, 04 Jan 2023 19:12:16 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_error=3
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_error=3
IP
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ebAGEU8QlB1gDklYdkziGBkH1NZouhsNfLJ3Uw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:15 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 356558
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-ZFQvSU8QlB1gDklYdkziGBkH1NaYekKrHsotLQ
200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-ZFQvSU8QlB1gDklYdkziGBkH1NaYekKrHsotLQ
IP
GET /sync?UICR=k-ZFQvSU8QlB1gDklYdkziGBkH1NaYekKrHsotLQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dr.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:12:14 GMT
content-type: text/javascript
last-modified: Tue, 08 Nov 2022 15:05:46 GMT
etag: W/"636a704a-a8d9"
expires: Thu, 22 Dec 2022 19:12:14 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 64140
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-YiJ1Yk8QlB1gDklYdkziGBkH1NapN65fMkySAg
200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-YiJ1Yk8QlB1gDklYdkziGBkH1NapN65fMkySAg
IP
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-YiJ1Yk8QlB1gDklYdkziGBkH1NapN65fMkySAg HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 19:12:16 GMT
x-fastly-to-nlb-rtt: 21949
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 21 Dec 2022 19:12:16 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 478135
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
91.235.64.15
142.250.74.110
37.252.171.84
23.38.200.22
34.251.236.239
185.86.137.110
151.101.244.157
185.184.8.90
37.157.5.142
185.64.189.110
31.13.72.12
162.159.134.61