www.flo.com.tr/
52.57.18.236301 Moved Permanently 134 B IP 52.57.18.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET / HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Tue, 28 Mar 2023 09:47:33 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://www.flo.com.tr:443/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8699
Expires: Tue, 28 Mar 2023 12:12:32 GMT
Date: Tue, 28 Mar 2023 09:47:33 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10458
Expires: Tue, 28 Mar 2023 12:41:51 GMT
Date: Tue, 28 Mar 2023 09:47:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 09:28:01 GMT
content-type: application/json
age: 1173
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ad3eec59bebbf969f175627757507c1
b176af3a70db378c9e1f219bab24d9d446070d6f
704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4883
Expires: Tue, 28 Mar 2023 11:08:57 GMT
Date: Tue, 28 Mar 2023 09:47:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vYqUOmahz6dxE6xEcdQRapNvDxKAhUsIrP0xw2Chn47Qm1N9jreSdIXZ5kh6f66vkBxdjgNNZNA=
x-amz-request-id: V827FAKCNJN78GHS
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 09:01:59 GMT
age: 2735
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp2.globalsign.com/rootr3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/rootr3
IP 104.18.21.226:0
Hash 34f290382ed890a25f4995e21f879f67
b9f654988473afaeeb120430d6752afa6b82057a
d010ec23ce767c254cf54f2180027d836158f9835a630cd27f32fac645602dd5
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 01 Apr 2023 05:45:21 GMT
ETag: "b9f654988473afaeeb120430d6752afa6b82057a"
Last-Modified: Tue, 28 Mar 2023 05:45:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2700
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aeef3d20d4db51d-OSL
ocsp2.globalsign.com/gsextendvalsha2g3r3
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsextendvalsha2g3r3
IP 104.18.21.226:0
Hash eef9b8b46ec942879ee852f32b6e0072
6b1d33747034d1bfd474b02ee635ec6e96b68696
98ecd4b65d9d7cfb1c326d4db3223cf4f4fdc615160582ddcce541c87953ddea
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Sat, 01 Apr 2023 08:08:56 GMT
ETag: "6b1d33747034d1bfd474b02ee635ec6e96b68696"
Last-Modified: Tue, 28 Mar 2023 08:08:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1110
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aeef3d23d89b51d-OSL
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.flo.com.tr/
3.69.34.207200 OK 36 kB IP 3.69.34.207:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (38946)
Hash 8c09012e5b91e91830f095b602aacc1e
55493297e6d7df5836a069dfce32c2e0455e9074
088c8173c9be68d1ec55f0da5ca87815018296eee791e8f79dfd8d5920f99e36
GET / HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: text/html; charset=UTF-8
content-length: 36489
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept, Origin, Content-Type, Referer, User-Agent, X-Platform, Authorization, X-Api-Version, Platform, ShoppingCartId, AuthenticationToken, access-control-allow-credentials
x-rg-cachable: YES
content-encoding: gzip
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
x-cacheable: YES
age: 387
accept-ranges: bytes
x-cache: HIT, 62
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/dist/flo-v2/fonts/icomoon.ttf?v10
3.69.34.207200 OK 60 kB URL HTTP/2 www.flo.com.tr/pub/assets/dist/flo-v2/fonts/icomoon.ttf?v10
IP 3.69.34.207:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash cb8c38e0d2f956c8354c3ea1efd4427d
4eaa48b850c2452c45fe7886a57297f0ea8c6773
82f8f66dcf7504c2c4f88fc555dcd4da192f085178fcff2362c261e0eeb266d0
GET /pub/assets/dist/flo-v2/fonts/icomoon.ttf?v10 HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: application/octet-stream
content-length: 59736
last-modified: Tue, 28 Mar 2023 03:18:16 GMT
etag: "64225c78-e958"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cacheable: NO:RG Cacheable Not Exists
age: 0
x-cache: MISS
vary: User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/lib/lazyloading/blank.png
3.69.34.207200 OK 2.8 kB URL HTTP/2 www.flo.com.tr/pub/assets/lib/lazyloading/blank.png
IP 3.69.34.207:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a777d9e25cd05cc4521250844cb9bb2
f5fbf69686dec1bc2145af735a06ae3ae125b0d4
ca4e5364fde9722ead8b215e104c1216ee838c35b470334485f21ab93721b267
GET /pub/assets/lib/lazyloading/blank.png HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/png
content-length: 2792
last-modified: Mon, 27 Mar 2023 23:13:07 GMT
etag: "64222303-ae8"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
age: 116
accept-ranges: bytes
x-cache: HIT, 78
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/flo-v2/images/spotlight-blank.jpg
3.69.34.207200 OK 5.1 kB URL HTTP/2 www.flo.com.tr/pub/assets/flo-v2/images/spotlight-blank.jpg
IP 3.69.34.207:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x420, components 3\012- data
Hash 0cdc1f8cbb1dfc4d0e7255d87ebca1c1
64e3143aeb24ae85f66bf96409cfca9654352c89
f01fed9cec58bc1432707b574eb38dfe0a525412dbea68995421ed84d6b76090
GET /pub/assets/flo-v2/images/spotlight-blank.jpg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/jpeg
content-length: 5111
last-modified: Mon, 27 Mar 2023 23:13:05 GMT
etag: "64222301-13f7"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
age: 71
accept-ranges: bytes
x-cache: HIT, 21
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/common/nps/images/1-active.svg
3.69.34.207200 OK 734 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/1-active.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (331)
Hash 05ce701c59c0a03e8c9445a023ead908
284f26510301931c271f4b5e42f3fbeac5a8dc62
45c90e4b364ed2f7b556b02553e19b991a567adcdae6b3f14b34dafb81c8c041
GET /pub/assets/common/nps/images/1-active.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 734
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-771"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 19
accept-ranges: bytes
x-cache: HIT, 3
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/common/nps/images/nps.svg
3.69.34.207200 OK 788 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/nps.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1898), with no line terminators
Hash 2be8ced76dfa23a371cf337315816016
28f2d1ed8bcd8b7114d387f2920558b20fbc2ef4
807e0a631a1d75af175a7d8d3de54247758ff669b1409720e4d5533eb602316c
GET /pub/assets/common/nps/images/nps.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 788
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-76a"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 121
accept-ranges: bytes
x-cache: HIT, 12
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/common/nps/images/1.svg
3.69.34.207200 OK 728 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/1.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (331)
Hash 1ab58667f9ae5a175cfce87fb8c64f69
b2adae3bc3442f037f7cbc92a741082de569bdce
48072e7ed4887cd8102b94e7bb97801b882c055be2eb0e8e41de3ec27d264187
GET /pub/assets/common/nps/images/1.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 728
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-76f"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 121
accept-ranges: bytes
x-cache: HIT, 12
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/common/nps/images/2-active.svg
3.69.34.207200 OK 950 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/2-active.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash c18b2f2580c3de3978ea432387152d84
25b957208df88f18b7c005d88c2dc0f7ceeb5dbb
ac9e4057861588023677e57ed4d228283456f952718a7c168d1fc90959f5670d
GET /pub/assets/common/nps/images/2-active.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 950
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-3b6"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
age: 75
accept-ranges: bytes
x-cache: HIT, 10
vary: User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/common/nps/images/2.svg
3.69.34.207200 OK 947 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/2.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash fd10e526338c7df3cc48d92d48c39e87
4a3ec5c444ec500297603ade65dc72a6e4a310df
4108ca879d9b35828258ee4b8f201258afc2eea79ab30781e70ac6197d0739ff
GET /pub/assets/common/nps/images/2.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 947
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-3b3"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
age: 131
accept-ranges: bytes
x-cache: HIT, 10
vary: User-Agent
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/common/nps/images/3-active.svg
3.69.34.207200 OK 690 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/3-active.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (301)
Hash 5b3cf0dabfdfd3cb81cee80d29c1cff8
2fa91c16ca2570092d25f4750e5f1b0cc67b3854
49e13f35ac4ab79c65d66f16940ac5833843ccb67da359c7fa6747b29555d5ce
GET /pub/assets/common/nps/images/3-active.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 690
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-746"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 78
accept-ranges: bytes
x-cache: HIT, 8
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.flo.com.tr/pub/assets/common/nps/images/3.svg
3.69.34.207200 OK 663 B URL HTTP/2 www.flo.com.tr/pub/assets/common/nps/images/3.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (301)
Hash 7d4a2f6a697ebead4ae0d4611cf00305
31bef2d98c9b1b9e203658be29c0c0058f9d8f35
00f4a91502e2ec2549387e11686fc37418e1e59e0e0b2dd718c83e94527bb841
GET /pub/assets/common/nps/images/3.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/svg+xml
content-length: 663
last-modified: Mon, 27 Mar 2023 23:13:04 GMT
etag: "64222300-706"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 89
accept-ranges: bytes
x-cache: HIT, 7
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d2d4415f4eeb34e663d209eeddd8d25d
5d239718d7235d1f62e10d7d381c5a063e94c73a
cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 727 B IP 192.229.221.95:0
Hash 962048b49ac139441c4ceee5de445b22
fb01180a1040e00835f3d812ab978da4942f1252
eb84c6ed475f8e3de366c153ce540c07d0ffb460dd128b3b863dceff314c1d24
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5016
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Last-Modified: Tue, 28 Mar 2023 08:23:58 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 727
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash eb39b95993878c1683f3172fb7d9371c
02ea3d50a5dc336a2178fcc5fb7b1b785c69a688
c9b0e38b3b760eec6d15d1ae2a8d22dddbaffe1483117be1a82df6710fba3794
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3112
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Last-Modified: Tue, 28 Mar 2023 08:55:42 GMT
Server: ECAcc (ska/F757)
X-Cache: HIT
Content-Length: 471
appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js
104.110.15.217200 OK 17 kB URL HTTP/1.1 appleid.cdn-apple.com/appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js
IP 104.110.15.217:0
File type Unicode text, UTF-8 text, with very long lines (39267)
Hash d1e2e5f784ff10d3ca84077fb67f921d
637e871007455a0af34129e9a12ea64479d697e4
5ae855137e2620e8df8bcbb9550ea836fa17e37e5e800152cc922ae0d9b525a4
GET /appleauth/static/jsapi/appleid/1/en_US/appleid.auth.js HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apple
Content-Type: application/javascript;charset=UTF-8
Cache-Control: public, max-age=86400,stale-while-revalidate=86400
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Accept-Ranges: bytes
ETag: W/"42671-1678988610110"
Last-Modified: Thu, 16 Mar 2023 17:43:30 GMT
Vary: accept-encoding
Content-Encoding: gzip
Content-Length: 17247
Date: Tue, 28 Mar 2023 09:47:34 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
floimages.mncdn.com/media/catalog/product/img/banners/23-03/27/erkek-1400x1000.jpg
31.3.2.70200 OK 102 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/27/erkek-1400x1000.jpg
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1400x1000, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 102 kB (102362 bytes)
Hash dc0ffae8476fcc4e8b65c8da9bcc63c1
77979bac1baed9ece7a03b10db2cb005933c9211
9ebfa0d4704204dcf9a82596cb3a9a1ac2e09c3e8c9d08caa889987fab8521f1
GET /media/catalog/product/img/banners/23-03/27/erkek-1400x1000.jpg HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/webp
content-length: 102362
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
via: 1.1 8e81ce20235b941275b92434e1b82364.cloudfront.net (CloudFront)
x-amz-cf-pop: SOF50-P1
x-amz-cf-id: Kmzwm1E--Qo5s6mznCMXuffvpQ25iQinTyBdAfMFyAONoh2LVfRULg==
etag: "338ff04468941a79ef889a0ff265c6d8"
last-modified: Mon, 27 Mar 2023 06:51:26 GMT
x-mserver: 2216
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: cf67527690097144bc75571a91101dca
expires: Mon, 26 Jun 2023 09:47:34 GMT
cache-control: max-age=7776000
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c53b14beae52f70eb710e8abd3a6d519
1d8ca900e5434c6b3182300501c704afe4e1ac01
03dc8167a08878dafa1848e4bc57a26929be3c01f0d7509f6bb9abb054d2b5e0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 02:06:57 GMT
Expires: Mon, 03 Apr 2023 02:06:56 GMT
Etag: "1d8ca900e5434c6b3182300501c704afe4e1ac01"
Cache-Control: max-age=490161,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3d3d9f8b51b-OSL
cdn.segmentify.com/6fc7807d-9298-4cf7-9d6f-04952ea037fc/segmentify.js
34.120.65.227200 OK 57 kB URL HTTP/2 cdn.segmentify.com/6fc7807d-9298-4cf7-9d6f-04952ea037fc/segmentify.js
IP 34.120.65.227:0
File type Unicode text, UTF-8 text, with very long lines (47616)
Hash c18f3290f273d3f92c4429c78448306a
f570ea1f51c8d3a1acb5dbbd980500a820a3eb8e
7b7cb7f0ac4b4674be58196ac2ced128813140835e81fdb0669d0af4900a43be
GET /6fc7807d-9298-4cf7-9d6f-04952ea037fc/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduHLnd3yML6kae2t-qUkxoLfGpv02jMTGiDEHq2ibr9KeCHE5NXY0Oet6nfUBY2n0-ES7Xc7Mrdo-JhXgLr-PsPx4VL8HYv
x-goog-generation: 1677058380904425
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 57144
content-encoding: gzip
x-goog-hash: crc32c=gieWBw==, md5=wY8ykPJz0/ksRCnHhEgwag==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 57144
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Wed, 22 Mar 2023 12:28:43 GMT
expires: Wed, 29 Mar 2023 12:28:43 GMT
cache-control: public, max-age=604800
age: 508731
last-modified: Wed, 22 Feb 2023 09:33:00 GMT
etag: "c18f3290f273d3f92c4429c78448306a"
content-type: application/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/dist/flo-v2/fonts/icomoon.ttf?v3
3.69.34.207200 OK 60 kB URL HTTP/2 www.flo.com.tr/pub/assets/dist/flo-v2/fonts/icomoon.ttf?v3
IP 3.69.34.207:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash cb8c38e0d2f956c8354c3ea1efd4427d
4eaa48b850c2452c45fe7886a57297f0ea8c6773
82f8f66dcf7504c2c4f88fc555dcd4da192f085178fcff2362c261e0eeb266d0
GET /pub/assets/dist/flo-v2/fonts/icomoon.ttf?v3 HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.css?v=74562e12
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: application/octet-stream
content-length: 59736
last-modified: Tue, 28 Mar 2023 03:18:16 GMT
etag: "64225c78-e958"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cacheable: NO:RG Cacheable Not Exists
age: 0
x-cache: MISS
vary: User-Agent
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 343252
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 343252
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 343253
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:43 GMT
expires: Sat, 23 Mar 2024 10:26:43 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 343251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:51 GMT
expires: Sat, 23 Mar 2024 10:26:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
age: 343243
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:50 GMT
expires: Sat, 23 Mar 2024 10:26:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
age: 343244
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:50 GMT
expires: Sat, 23 Mar 2024 10:26:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
age: 343244
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash c53b14beae52f70eb710e8abd3a6d519
1d8ca900e5434c6b3182300501c704afe4e1ac01
03dc8167a08878dafa1848e4bc57a26929be3c01f0d7509f6bb9abb054d2b5e0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 02:06:57 GMT
Expires: Mon, 03 Apr 2023 02:06:56 GMT
Etag: "1d8ca900e5434c6b3182300501c704afe4e1ac01"
Cache-Control: max-age=490161,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3d57ca8b51b-OSL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
142.250.74.35200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Hash 716871ec15f054ec158445180fe280e1
d7d746e03e49f7e10ca0b11e598f3d6db5e34a2b
b076e86301cbee8c5c9aef51863a9c0a88e6f6d2aabdffca93e031113c6caa74
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:02 GMT
expires: Sat, 23 Mar 2024 10:27:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 343232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash da5340ee69a1000f751686df9e716663
a5da880a61ed119790a7990bbdcc0c97eecf04f2
d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8704
Expires: Tue, 28 Mar 2023 12:12:38 GMT
Date: Tue, 28 Mar 2023 09:47:34 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7927fa1bac0e5bcc27ed32b6b5107bd3
68da43f59df9c524940efc35f40e3599b9a1995b
f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1fbd0b4379412ad373597047a81f1057
eb2db2d7f54700b5e9be753e59c21e7df4be73a7
3c16ca9d67b98efcd52c463777a30088eaca46f5c7f06bbf4f6e91a8e84d8258
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 20:29:00 GMT
Expires: Mon, 03 Apr 2023 20:28:59 GMT
Etag: "eb2db2d7f54700b5e9be753e59c21e7df4be73a7"
Cache-Control: max-age=556284,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3d60e160b41-OSL
cdn.sgmntfy.com/pa.js
34.149.223.191200 OK 3.7 kB IP 34.149.223.191:0
File type ASCII text, with very long lines (3744), with no line terminators
Hash 7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec
Analyzer Verdict Alert quad9 Sinkholed
GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv9XY5vAUB1bPwXqM_VFnUiOSNvz68R1DWnkYy8BcZ3idOHuQLh5hxhcqGfbFEa8Wgl6YihQ8DzeByc7J98NbQg4Xa6usFt
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Tue, 28 Mar 2023 09:06:38 GMT
expires: Tue, 28 Mar 2023 10:06:38 GMT
cache-control: public, max-age=3600
age: 2456
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/flo/img/flo-sq.png?v2
3.69.34.207200 OK 4.9 kB URL HTTP/2 www.flo.com.tr/pub/assets/flo/img/flo-sq.png?v2
IP 3.69.34.207:0
File type PNG image data, 139 x 139, 8-bit/color RGBA, non-interlaced\012- data
Hash 425b23f659af8cbbdec299748d764989
e2a3670fc775ec5ad5bfa0da885d2ebe82150cc1
d1ca70e66154b310ead4582f68ad9b18dea52dd32ae971786c7c2eca2befa35e
GET /pub/assets/flo/img/flo-sq.png?v2 HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: image/png
content-length: 4893
last-modified: Mon, 27 Mar 2023 23:13:05 GMT
etag: "64222301-131d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
accept-ranges: bytes
x-cacheable: NO:RG Cacheable Not Exists
age: 0
x-cache: MISS
vary: User-Agent
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 600b67e46094ec7a1c3ae8d7ad2904d3
dd504ae4eb47813cf00a81aecd808c7a8ab5d434
3fe083b944c9bfe6d239e532f1356017758075193ee908cf9969cf07c5b0d269
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5626
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Last-Modified: Tue, 28 Mar 2023 08:13:48 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 34a0fa4f071fab7c58005c03e8065335
ffbe5c86ba430eb031ee67b002999124871583ce
2f2e76c39eb66f92572e4cfa5ff694e522156f98e45cdc23dc1a412caecbc402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/tr_TR/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/tr_TR/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash b68ac7e7220962893fc9d5b848bd3fa0
c4319ef431fae213c26e4c7e765309ac053140ce
795625e789120e941565f755aaf0ffc6af57905809859f7b6a753b743075284f
GET /tr_TR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8b679fcd1f2d0da5eb721a32d9b05d27
etag: "dc96173b1d45ca9d6185a54bb097f6ec"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 28 Mar 2023 09:54:34 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: torH5yIJYok/ydW4SL0/oA==
x-fb-debug: tqc+M2Vc6RuHvcUN01KAvIPG4jjjMBleVUEBTvr/62jipGezfmGPl9qCmKasFB/QjfO8wIqM02srCFw4xvrsoQ==
content-length: 1687
x-fb-trip-id: 1904183273
date: Tue, 28 Mar 2023 09:47:34 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash db1f11cedde47cf778700089de6fe437
f275c6617546a36e66bba98d8909af268adac418
cba914b21c23042c7b2d1abdf15f91dc21371a3eb8221e71395ccf71f93b9e8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
216.58.207.202200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
IP 216.58.207.202:0
File type ASCII text, with very long lines (32086)
Hash 430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Mar 2023 23:43:37 GMT
expires: Tue, 26 Mar 2024 23:43:37 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 36237
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1fbd0b4379412ad373597047a81f1057
eb2db2d7f54700b5e9be753e59c21e7df4be73a7
3c16ca9d67b98efcd52c463777a30088eaca46f5c7f06bbf4f6e91a8e84d8258
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 20:29:00 GMT
Expires: Mon, 03 Apr 2023 20:28:59 GMT
Etag: "eb2db2d7f54700b5e9be753e59c21e7df4be73a7"
Cache-Control: max-age=556284,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3d78fd9b51b-OSL
apis.google.com/js/api:client.js
216.58.207.238200 OK 6.9 kB URL HTTP/2 apis.google.com/js/api:client.js
IP 216.58.207.238:0
File type ASCII text, with very long lines (2054)
Hash 2ea55d4d61b60c29f5742bf879cc3c9d
3817ca24ba45d98d3d1cb38814bc7f9eebcdee78
685033b51f9590bcbd5e11d25fac1879fb84db19956451a23827912080cc31cc
GET /js/api:client.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 6895
date: Tue, 28 Mar 2023 09:47:34 GMT
expires: Tue, 28 Mar 2023 09:47:34 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "47f4c2d1a705d3f3"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 600b67e46094ec7a1c3ae8d7ad2904d3
dd504ae4eb47813cf00a81aecd808c7a8ab5d434
3fe083b944c9bfe6d239e532f1356017758075193ee908cf9969cf07c5b0d269
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5245
Cache-Control: max-age=160479
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Etag: "64227319-1d7"
Expires: Thu, 30 Mar 2023 06:22:14 GMT
Last-Modified: Tue, 28 Mar 2023 04:54:49 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
www.flo.com.tr/pub/assets/dist/flo-v2/466.72310f504b4a12863a21.bundle.js
3.69.34.207200 OK 15 kB URL HTTP/2 www.flo.com.tr/pub/assets/dist/flo-v2/466.72310f504b4a12863a21.bundle.js
IP 3.69.34.207:0
File type Unicode text, UTF-8 text, with very long lines (63718)
Hash 674b54abec2ff55a45f8493864ce713c
00b3ec2c455d1d280873cc6b74e9ac45fc679514
d2a248df1d6f8cde3d6f6b7748d0a1f2616742c39c3182ee979ba5c47099a570
GET /pub/assets/dist/flo-v2/466.72310f504b4a12863a21.bundle.js HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Cookie: get_user_id=r40930r65s220; activeTab=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: application/javascript; charset=utf-8
content-length: 14980
last-modified: Tue, 28 Mar 2023 03:18:16 GMT
etag: "64225c78-fa7c"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
age: 48
accept-ranges: bytes
x-cache: HIT, 53
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
216.58.207.205200 OK 79 kB URL HTTP/2 accounts.google.com/gsi/client
IP 216.58.207.205:0
Hash 5fb7ab01e9f942ecc97278abe4926196
a246715d7655c5827e4621ffbf97263226ed86e6
1c18f984b7f9f83b3bf0a25330be187815f6e675957fb1312498c9578531cd51
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Tue, 28 Mar 2023 09:47:35 GMT
date: Tue, 28 Mar 2023 09:47:35 GMT
cache-control: private, max-age=1800
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: script-src 'nonce-1e0k1YmpAnjeLXGG8y6-iA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/27/kadin-1400x1000.jpg.webp
31.3.2.70200 OK 30 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/27/kadin-1400x1000.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1400x1000, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0c251fa1a07e4b507c7516ddc60537ac
daf7780f9ac8fe416dd5499d2a196d78f7a60be7
98d42e595cf12081379576d1b532ab5cd0755038fe3b2c143abddd2eb1581912
GET /media/catalog/product/img/banners/23-03/27/kadin-1400x1000.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 30474
last-modified: Mon, 27 Mar 2023 06:51:47 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 80c1ad5f9352d00b95a9da73eb6b6be4.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: gcwr2mVBuGAraf-hH2vghRm9x8bsbFiaRmrOrnDwhZpW6vS92yKMOw==
age: 64
x-mserver: 2200
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 6c10e09e3c61434c8b49945cc0ed2077
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eb2978f78249fa2030ff84708ab627b5
0003a93bc57234fba10c90bd0bd80c00d5a90884
b76d3066ba863b1aaf4f5f4fced0a48768bc34de818dc3494e89c045f41f5acf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-T4KVJH2
142.250.74.72200 OK 108 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-T4KVJH2
IP 142.250.74.72:0
File type Unicode text, UTF-8 text, with very long lines (46132)
Size 108 kB (107905 bytes)
Hash 5d215ec482e26a92e4dd312f37bed6b6
16ee73a8e240822a7f0b9844b09e3a119a49c173
2d3ede72e3454fbad2f7d1ea61bb69fa78152aa10af7a574ebbc5c9ce960e1ec
GET /gtm.js?id=GTM-T4KVJH2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Mar 2023 09:47:35 GMT
expires: Tue, 28 Mar 2023 09:47:35 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Mar 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 107905
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.88.189.17101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.88.189.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cxqnkt0Mx3j7EUzfZn1RIA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bt9TxG1R4oddt9jx+QmDAyzmWw8=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7e2d8156baac12231cc9cbfdefedacf1
62384d8842fb5b560ac39636bb519953e22dc664
ee4dbd79fc1569ab6ae0ea7b90b4b7d8dbb846296cf7fc68b24be78b7b95993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.flo.com.tr/pub/assets/flo-v2/images/flo-logo.svg
3.69.34.207200 OK 1.2 kB URL HTTP/2 www.flo.com.tr/pub/assets/flo-v2/images/flo-logo.svg
IP 3.69.34.207:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 002c05562dc15a778e15c9005170e700
5f2e9fae52daf0d72c9981b62a9a236087001ebb
42b53c65a036b6cac010b6d8ca7228e1154900cb19d8fcf66aaf66fc2195bbe3
GET /pub/assets/flo-v2/images/flo-logo.svg HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Cookie: get_user_id=r40930r65s220; activeTab=1; PW-ABC=87
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/svg+xml
content-length: 1185
last-modified: Mon, 27 Mar 2023 23:13:05 GMT
etag: "64222301-92e"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
age: 111
accept-ranges: bytes
x-cache: HIT, 21
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-lumberjack-1669707277.jpg.webp
31.3.2.70200 OK 5.0 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-lumberjack-1669707277.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dec682499355f4c9f1be1335743744b3
e1474a51abd74dd53a29323b258cc035987d0b37
cfd97ff2b2448f6c1a094ad14eb74adecf1645adcd3691c3b410b4872797fcc4
GET /media/catalog/product/img/banners/22-11/29/marka-widget-web-lumberjack-1669707277.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 5010
last-modified: Tue, 29 Nov 2022 07:34:39 GMT
x-cache: Hit from cloudfront
via: 1.1 baaf38f0a0d54e4834bf934fa5189cea.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: 2u-LNKCAXALkKqVxblZGjKjvAgDIjWNtMPpQ-dY-OROGRVROlfQN0A==
age: 267
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 37b748baeaaa694b8440920c2f906769
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-nike.jpg.webp
31.3.2.70200 OK 1.7 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-nike.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 16568948ac2abf23be87ce2c44ff0113
0bfb803c743c78e409b7375f2d1501344e3f2a62
3400836b5e6f1bcf7d2e6dc5c2ba293a9689016bac6edfcd325ab43afb8ce0b5
GET /media/catalog/product/img/banners/22-11/29/marka-widget-web-nike.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 1720
last-modified: Tue, 29 Nov 2022 07:35:07 GMT
x-cache: Miss from cloudfront
via: 1.1 5de5e66003332bec09dff893114ac06c.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS1-P1
x-amz-cf-id: cjVMNAXsp1sglyOFbsL7fQwNE6bT9bs6I-wP7rL84y_aIegGZvbvVg==
x-mserver: 2215
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 39ec3966ddfcb4b24c4b60fbd21f6987
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-10/13/adidas.jpg.webp
31.3.2.70200 OK 1.8 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-10/13/adidas.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5c4199c30c7936a69fde030c6430096a
de3be10dbb89c8c5423c0359520b3b7a636dd886
f623c828a34fa2f6e679774a5ea5ecafd38694d6e58b801bb7041cae2992ee7e
GET /media/catalog/product/img/banners/22-10/13/adidas.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 1774
last-modified: Thu, 13 Oct 2022 14:13:59 GMT
x-cache: Miss from cloudfront
via: 1.1 ba77f90aac0ddbc2c4c2c02062fac762.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: HA0dedPrrs29Avk32ki_lMJpWSJLVp-tCO9ePio0wERzGSI-fcNpgA==
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 197674e7710024a6dcfaf28398a6caba
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-10/13/puma.jpg.webp
31.3.2.70200 OK 2.2 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-10/13/puma.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0269cde2d5d7d5c4dc21ea3d3c0b7285
e8b33a1dc000723e5b154c3a7e8dbb242cfbd561
fb36617fb1af166040ded4efbf60b8ec67f1087ce46b106a7e88209cf18124a0
GET /media/catalog/product/img/banners/22-10/13/puma.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 2156
last-modified: Thu, 13 Oct 2022 14:17:49 GMT
x-cache: Miss from cloudfront
via: 1.1 58c21e16c9e093deb494fbb4de260efa.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-C1
x-amz-cf-id: BcLwsa7PPS5vBOnQfHdRpvBShETDW6Nd1kERHBjzO8q5Gz61qiGGaw==
x-mserver: 2215
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 17533ae28159cbf01a05dd13c6d8aab2
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-kinetix.jpg.webp
31.3.2.70200 OK 5.8 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-kinetix.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c729b59b6c8158c5d12aef770afd8e4d
c715661c6e8a2fde432d3f17628bf95eae28913b
3455391b9037b99eea42aa6f1a2c3cd555b446dbab15838b2427711d9f1f67a5
GET /media/catalog/product/img/banners/22-11/29/marka-widget-web-kinetix.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 5782
last-modified: Tue, 29 Nov 2022 07:37:05 GMT
x-cache: Hit from cloudfront
via: 1.1 632ee301c4920b52f2463aa9e978c57e.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: jOSNOG4X81KIOs9kHWpLnDntYUT0E7dmqE9ML9ohF3Qz_REr4cKS4g==
age: 90
x-mserver: 2216
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 26106eab2a64a9dcc908fb0688ccf18d
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-09/22/nine_west.jpg.webp
31.3.2.70200 OK 1.8 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-09/22/nine_west.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x375, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fb6b88ccff38b07ed5ddb3ff44ec85d8
d3c9ed79ebf0dd4e28b7ff55e4c6f09be78017a1
fa88efb60d6154bff6934d5a416690568ba43bfebe71ae4caf9771d5ecb1bb3b
GET /media/catalog/product/img/banners/22-09/22/nine_west.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 1824
last-modified: Thu, 22 Sep 2022 12:02:42 GMT
x-cache: Miss from cloudfront
via: 1.1 d627b75d0c1aedd3691390ac8498d3b0.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: CD5f2J-afJPkKfHbEUO0jQ3eNWTOiIZLzd5raL_CbOhLKL65gRF0-A==
x-mserver: 2216
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 26a5e75cccfa69bad7a54d467008491f
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-inci.jpg.webp
31.3.2.70200 OK 2.3 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-inci.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2fd0ac7db8812b0f356d80a0544ad596
4d47b503e2be32a8edf78a67444ee629dd8e776b
38f2637163fe1674c1cadfe3efbe57f3b730351c70cd1596d2b5513224dc294a
GET /media/catalog/product/img/banners/22-11/29/marka-widget-web-inci.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 2324
last-modified: Tue, 29 Nov 2022 07:37:40 GMT
x-cache: Hit from cloudfront
via: 1.1 9eb0e845437929074828e0cf53f179ae.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: 6ceifU1L2mCMGaDrWyjt1GHc1EHVMSpxibGIc2UDfcpKQy_WOoYXqw==
age: 102
x-mserver: 2200
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 5b39871f3c64bdfbb0e7c463e008c6f9
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/uspa-1663852697.jpg.webp
31.3.2.70200 OK 6.6 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/uspa-1663852697.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x375, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bd59a6d13366dbacefd3fbdf7ca5e4f2
191913c40ab591412e482ec79d5b0b7e8c9771ef
f052116f3160a95c10aa326e25d9aae19546c01576afaf2e4079d072caf9198f
GET /media/catalog/product/img/banners/22-11/29/uspa-1663852697.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 6590
last-modified: Tue, 29 Nov 2022 07:38:12 GMT
x-cache: Hit from cloudfront
via: 1.1 5ad96647558bd4911f05189f8afefd98.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: Ukr6-TxidDxXnYUPltRYFYDnxc9bncUhgzBH5fgy1FVo_5V9oxYF3Q==
age: 102
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 246a96d17eeef377b46f0c5767cab262
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 44ec99bee3fa6a950dc700c8ec788d4e
b590584f756732e37a7e4e89f8931eb68cb94ee1
b86e97107fd43f53f6cad18fea9640ec5d7dab81145169b567ce6351e230663e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B86E97107FD43F53F6CAD18FEA9640EC5D7DAB81145169B567CE6351E230663E"
Last-Modified: Mon, 27 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7644
Expires: Tue, 28 Mar 2023 11:54:59 GMT
Date: Tue, 28 Mar 2023 09:47:35 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d5caae84eb2a6747764257939567ae83
1c868d9e1923172fbf2e5e8e05ef3c93cda5823b
b43046f2ef3ab4ea35c78478da4db2778be8c4a09d7ab7c3c24121a2720f42f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B43046F2EF3AB4EA35C78478DA4DB2778BE8C4A09D7AB7C3C24121A2720F42F3"
Last-Modified: Mon, 27 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16697
Expires: Tue, 28 Mar 2023 14:25:52 GMT
Date: Tue, 28 Mar 2023 09:47:35 GMT
Connection: keep-alive
api.flo-aws.primewidgets.com/products/recommend/flo
3.70.232.120204 No Content 0 B URL HTTP/2 api.flo-aws.primewidgets.com/products/recommend/flo
IP 3.70.232.120:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /products/recommend/flo HTTP/1.1
Host: api.flo-aws.primewidgets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.flo.com.tr/
Origin: https://www.flo.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 28 Mar 2023 09:47:35 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Authorization, Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
content-type: text/plain charset=UTF-8
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a5d7c873dc1b13b23c1e3e39fa266b65
9a88a6fc168e9e0c162ab9308e15c9e578ebbb07
5b0e3389347f42930bd4fc639814bf3f69d1d82dccaffc9ee909edf269258ae1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash b9c9f96caff74a2ecf5f7d7e6b8a7e70
3b9b8ef4b7af4ad10a0b734e59831efb60dcbb1b
70d2821060b785f070862f7d92de9ccce77e47d555fd6014b651e2462465b17a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:35 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 17:26:17 GMT
Expires: Sat, 01 Apr 2023 17:26:16 GMT
Etag: "3b9b8ef4b7af4ad10a0b734e59831efb60dcbb1b"
Cache-Control: max-age=372520,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3d9bbd1b51b-OSL
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 60b4b07d59dbdd7807e3bc9ceb40c3ba
fdcd14cfb7e0693a81abe2553421455edca61336
8f95b92305d4ee2fbaca71d9fb696702756333cdddce943a1975affaa9f917da
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5061
Cache-Control: max-age=146991
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Etag: "64223f21-1d7"
Expires: Thu, 30 Mar 2023 02:37:26 GMT
Last-Modified: Tue, 28 Mar 2023 01:13:05 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
11432614.fls.doubleclick.net/activityi;src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F?
142.250.74.38200 OK 231 B URL HTTP/2 11432614.fls.doubleclick.net/activityi;src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (450), with no line terminators
Hash 02aa98fc13b7a06b8e4791a6f77702b0
ddd65d53c7c4000d90b226833c447922752aece6
5e7ba1fb49518b6fb011ba363f416ad8cf3ee1a7d1b1e5d19b90c0dbf585ea7f
GET /activityi;src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F? HTTP/1.1
Host: 11432614.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:35 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 231
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 10:02:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 60b4b07d59dbdd7807e3bc9ceb40c3ba
fdcd14cfb7e0693a81abe2553421455edca61336
8f95b92305d4ee2fbaca71d9fb696702756333cdddce943a1975affaa9f917da
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5061
Cache-Control: max-age=146991
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Etag: "64223f21-1d7"
Expires: Thu, 30 Mar 2023 02:37:26 GMT
Last-Modified: Tue, 28 Mar 2023 01:13:05 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a5d7c873dc1b13b23c1e3e39fa266b65
9a88a6fc168e9e0c162ab9308e15c9e578ebbb07
5b0e3389347f42930bd4fc639814bf3f69d1d82dccaffc9ee909edf269258ae1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:35 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=rBYEk0Usu501HTG4Hzhu;Path=/;Domain=.creativecdn.com;Expires=Wed, 27-Mar-2024 09:47:35 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1679996855;Path=/;Domain=.creativecdn.com;Expires=Wed, 27-Mar-2024 09:47:35 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
content-length: 0
X-Firefox-Spdy: h2
cdn.primewidgets.com/customers/flo/init.js
188.114.96.1200 OK 38 kB URL HTTP/2 cdn.primewidgets.com/customers/flo/init.js
IP 188.114.96.1:0
File type Unicode text, UTF-8 text, with very long lines (10684)
Hash da6a1336838ed032fdfc93a35e2a6259
3f4aa90c8458bc3501592e929b8b9aa129b8048e
f4ad9f71d754c658f00d5a1805145c508253338cb7712ee2f910dffdcc721d4e
GET /customers/flo/init.js HTTP/1.1
Host: cdn.primewidgets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: application/javascript
cache-control: public,max-age=900
cf-bgj: minify
etag: W/"65df501aa6965fc0b5e32dda44c8649e"
last-modified: Tue, 28 Mar 2023 09:09:25 GMT
x-amz-id-2: LX2gbFbqXIUzfDfRtSBd4BAzuJtHKI2BKi4LxLBk2S5s32uJFn1Ba5tW75n0Lb16RDbR3hmMWc4=
x-amz-request-id: BQREJRK5TKSQP024
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FGKHuR%2F9Qgho2bIcj18Kqe%2BO9Y4gjbLkR9mJK9Dl75phP3BEakXh79UhB6Kq20dQ%2F5MYLoIhA%2BgNA6Ybic41wWSTvQZvhDpOMdRE8rq%2FmQHD81ZYo37vRRdndBe0Ax0rh%2FSfxhrnvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aeef3d60828b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:35 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=rSURlulSWPlNc21BG8WN;Path=/;Domain=.creativecdn.com;Expires=Wed, 27-Mar-2024 09:47:35 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1679996855;Path=/;Domain=.creativecdn.com;Expires=Wed, 27-Mar-2024 09:47:35 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
content-length: 0
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 772 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
File type gzip compressed data, max compression\012- data
Hash 0791c6c4af91e7a008bf470c41920b75
29d1da30b8e1bae6125d670d1883d9aba209ecd4
5436c317cfa294c001ddbe9764639f48b0d0d472e0fcf9f770f6e0bc35a56677
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143098
Date: Tue, 28 Mar 2023 09:47:35 GMT
Etag: "64223113-1d7"
Expires: Thu, 30 Mar 2023 01:32:33 GMT
Last-Modified: Tue, 28 Mar 2023 00:13:07 GMT
Server: ECAcc (dcb/7FEF)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VTQsV5SO1xfUD8epW9wH-gncbxEWHrSmxqXHPBmoRm-VGxBxIRc4ww==
Age: 4766
js.go2sdk.com/v2/tune.js
54.230.111.104200 OK 18 kB IP 54.230.111.104:0
File type ASCII text, with very long lines (7486)
Hash 074c9e70b17ef9db8aced963fef4e2d9
caa1063a824083eb483f25bfab3e7aade3441bcd
cca8ce472cbf8c44acf7ac24067c2d6075acd1e0cd4c9003de6055289ac5c68a
GET /v2/tune.js HTTP/1.1
Host: js.go2sdk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 17921
last-modified: Wed, 06 Jan 2021 18:55:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 27 Mar 2023 16:39:54 GMT
etag: "074c9e70b17ef9db8aced963fef4e2d9"
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jtZSaihXL3OB8tQA6INwO52WT3ApXnwW3LcZTZgwXenpK8mCiEempA==
age: 61676
X-Firefox-Spdy: h2
creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
185.184.8.90200 OK 131 B URL HTTP/2 creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type HTML document, ASCII text, with no line terminators
Hash 037ea923271a1d8a9e859d094ed2f166
a2fb5d3b863fc1d27d6cc8e6f2fbec7d4bd5d8f0
35f58eb9a5658a01f2cde4539bba759d94ca51378032cf6de17ac311fd0ea3c9
GET /tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: text/html;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:35 GMT, Tue, 28 Mar 2023 09:47:35 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 131
X-Firefox-Spdy: h2
creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
185.184.8.90200 OK 131 B URL HTTP/2 creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type HTML document, ASCII text, with no line terminators
Hash 037ea923271a1d8a9e859d094ed2f166
a2fb5d3b863fc1d27d6cc8e6f2fbec7d4bd5d8f0
35f58eb9a5658a01f2cde4539bba759d94ca51378032cf6de17ac311fd0ea3c9
GET /tags?id=pr_vFAsAUvasOK8KUF09Db3_home&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: text/html;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:35 GMT, Tue, 28 Mar 2023 09:47:35 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 131
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eb2978f78249fa2030ff84708ab627b5
0003a93bc57234fba10c90bd0bd80c00d5a90884
b76d3066ba863b1aaf4f5f4fced0a48768bc34de818dc3494e89c045f41f5acf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/vjSEbJ1SGMY
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vjSEbJ1SGMY
IP 142.250.74.131:0
Hash ea63a9e8c1dee0203b0cb3bee54a97e4
340529b35a69eb9fd8026cae3b28e79fb2c42393
fca1156dcba03b63ec4ab1fe8a2fff83b6799906097af05deab5e27497959134
POST /s/gts1d4/vjSEbJ1SGMY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F
142.250.74.2200 OK 233 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (449), with no line terminators
Hash d98df468c684a4cc7569c82bfe8864b2
61983f08a5a1f477859cdb44e29bb38260abb8ed
0c7fbc0914d833a49c49f45935f9465001e015ed05bc4d1e4286414bcbda150b
GET /ddm/fls/i/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11432614.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:35 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 233
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
creativecdn.com/extra-resources?ti=vFAsAUvasOK8KUF09Db3
185.184.8.90200 OK 42 B URL HTTP/2 creativecdn.com/extra-resources?ti=vFAsAUvasOK8KUF09Db3
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /extra-resources?ti=vFAsAUvasOK8KUF09Db3 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://creativecdn.com/tags?id=pr_vFAsAUvasOK8KUF09Db3&id=pr_vFAsAUvasOK8KUF09Db3_uid_unknown&tc=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
cache-control: no-cache, public
etag: "zh6N9AEAzZPvlWqjSXAg"
content-type: image/gif
content-length: 42
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-dockers.jpg.webp
31.3.2.70200 OK 6.4 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/marka-widget-web-dockers.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 396x505, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 31bce7d5feaae42e4394bf35e556ce6c
d60eb23a46a21ee0a7b119b46d21582d3618ee1f
6db2ed4766ce979a2f17a95f06cee36e0e85f326242d80ee61efed5c9d3af47b
GET /media/catalog/product/img/banners/22-11/29/marka-widget-web-dockers.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 6390
last-modified: Tue, 29 Nov 2022 07:38:41 GMT
x-cache: Miss from cloudfront
via: 1.1 32e3b86ae254a231182567c0124af892.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA2-C2
x-amz-cf-id: Vqs5ivDFpuznGH-2qTDwFdBJEugWG_NEijg4gBq3xIFIFF4Fcyk4Ww==
x-mserver: 2200
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: f032a6a371e1be77f07c92530d0fd49f
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/polaris.jpg.webp
31.3.2.70200 OK 3.3 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/22-11/29/polaris.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 294x375, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 12db69c2ff85a6d3c6f22f2abbdd9fba
c404df508098d600a7dceee1fb6fc2ae8b8e5021
eb0381293e4f41cbaf3651dc50e34e797cb04cec93a289194ba214afbc97e74b
GET /media/catalog/product/img/banners/22-11/29/polaris.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 3266
last-modified: Tue, 29 Nov 2022 07:39:11 GMT
x-cache: Hit from cloudfront
via: 1.1 a267c4458d5587daaaf85f1d134a02d4.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: mAKwO1c9rBx7hVon-zzxJc84Smq-0E2C3dOVeTmm-zJi75j3QxYM7Q==
age: 20
x-mserver: 2216
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: ea5285412233be4fee971bbba34a3c39
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-sneaker.jpg.webp
31.3.2.70200 OK 13 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-sneaker.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f88158bd9646ee4dca9809d0e92e73ae
59938dcc30b48ea259b2e174d39e283640fc53f0
aaf550f2e5f501870c2447e81c21500d2d5da230405d4bdc6d64a3499439a270
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-sneaker.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 13242
last-modified: Mon, 13 Mar 2023 10:11:35 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 fa5a3d5abd34c6fac657b045a4dcbdc4.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: enwkhtjfJOa699Q9ZbxvINShg-TZ2dAAGHet2U0AyF5KXA1MjuEJ6Q==
age: 308
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 90e8bfb31d9ef88cf443b05f055713ad
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-ayakkabi.jpg.webp
31.3.2.70200 OK 14 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-ayakkabi.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 95cfb436e30a72b304679993e99cd70e
802801e9adc6df6fee0569e92fb3dd786cf3520d
16771c8209b54ed39f0775d1fa1be8db31dda861e66a047c84514cd5bde2be65
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-ayakkabi.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 14430
last-modified: Mon, 13 Mar 2023 10:13:06 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 6ea9fcffa719a56ee2be748a73d37974.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: ipxuxxnsrfCsFVYIzuQIs5NUGMOkhckuw5DFkHs2wy_jjL1ZPTQzlQ==
age: 146
x-mserver: 2216
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 339c60b000dfa8031b0ba3634894c660
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-topuklu-ayakkabi.jpg.webp
31.3.2.70200 OK 16 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-topuklu-ayakkabi.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ff70bda7a18d4c7cf00aa59bf17ec87
4588e289f2c7fce3c951a4adf3ba871949bd3b1d
73f22ca71195bbb6b83263e60200e0b883c3961e00d317b6b6bbb8d2db371c16
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-topuklu-ayakkabi.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 16452
last-modified: Mon, 13 Mar 2023 10:13:45 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 0d37b2e69745cd9f0c5457fbf1a83128.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: MiJg25GZ3uIcVI8yiB-LKnlM0QH-T21Y5SGyKGu63XZ26X3yx1zjVQ==
age: 28
x-mserver: 2215
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 128b009da62991aa4fb7b3bce86540f4
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-spor.jpg.webp
31.3.2.70200 OK 20 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-spor.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8f0100d6659c74df60008136aa192142
bdfeb35eabdd47e4e5dc5aab855e5046bdfe91f1
423853b4f0449929f1d357b822dec22ac3742d4ac32bb11357e8ea5e45d9c113
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-spor.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 19596
last-modified: Mon, 13 Mar 2023 10:14:38 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 6b8ac2d6d64dc42007741d312e2d73aa.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: c-OS238n0JcsTyzcX0Iwaey2J-FXcbfSDtoC5k5vPjYX6oRl-m5VNA==
age: 161
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 43fb52b208936a342a2667f86d5a3e58
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-terlik.jpg.webp
31.3.2.70200 OK 48 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-terlik.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23406fd05db46863cec3257293c3ccb4
d20d4cb50368dd8f43fa6f5cfe4fcd79526e7f9a
6b6806406170e25a7eae0beb47c302fd686e7a33f841d6b0f97fb204b1b23bb3
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-terlik.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 48002
last-modified: Mon, 13 Mar 2023 10:16:00 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 a148356b14492df0e216c234ac2c2308.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: Kdv-wNzIq5JsuhQTUMfP7vlvZk-nyXUH4L0qYkC6AUopgeYHCKeZ5w==
age: 104
x-mserver: 2200
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 48de7dece9ccdd9f6667898a1ead8e80
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-sandalet.jpg.webp
31.3.2.70200 OK 35 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-sandalet.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash be85cbf3263f0d3a6226929fdd440e22
fdbb2383e12e657dc454f6e0c6b4479e06db7c3b
fbdae1a4f57c86c049f049cf56a01f7636b59730125a8a7759386c6e5d65fc35
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-sandalet.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 35160
last-modified: Mon, 13 Mar 2023 10:17:22 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 9eb0e845437929074828e0cf53f179ae.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: kjNJ6RmgacU6hOWXysuiKFfEn1Nmn5xOV4pMNRCAlF5qxqdbKLechg==
age: 161
x-mserver: 2216
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: bbbfc7429db849494abf8c8934142ef0
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-rahat-ayakkabi.jpg.webp
31.3.2.70200 OK 15 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-rahat-ayakkabi.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b6173f4db703b8ba22ffc6f376c503bd
418e68de2d6e4813fc2b6f0c5c4ea06a47066515
6faf9d80d2c2d61b80fc8885036c6e66b94377e46316569ceaead702747ca690
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-rahat-ayakkabi.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 14808
last-modified: Mon, 13 Mar 2023 10:18:30 GMT
x-amz-server-side-encryption: AES256
x-cache: Miss from cloudfront
via: 1.1 5ad96647558bd4911f05189f8afefd98.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: y7_l7M4Q7NHoZN8YZtX2mK3lVg6coRzEPuTaCnCpKFq_4bYbRaBZXQ==
x-mserver: 2215
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 537c60116e9dba11e38741ac25479cf4
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-lisansli-1678702953.jpg.webp
31.3.2.70200 OK 21 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-lisansli-1678702953.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6978c8aefa26e4649f062f8daf104155
5c2fb3246a45d838a4845d65d1e7c02389685c38
cb7b2091b7f41734b68beb8113464df6295660340470f682c29fc33434e05669
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-lisansli-1678702953.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: image/webp
content-length: 21182
last-modified: Mon, 13 Mar 2023 10:22:36 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 58bcd6f2e1bc29fb83f080f1743cfeca.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: DZTa9kN3VPUVA8sscngUogmNDXZOP7MFTFibVW6eeUwytGVbP6nV6g==
age: 377
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:35 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 0bc868923ddf10f5ef7ed4a40c0bad22
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7ba0b9730b8fb55610287ac3588f8aa1
b2e1c8b30219467965ebcc541bb2a33d5fe7bf59
764aff4d087b3a8e798a0eda5080a1d6026ca912568b7b9d44681c44daf207e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F
142.250.74.162302 Found 0 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/i/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://11432614.fls.doubleclick.net/ddm/fls/r/src=11432614;type=invmedia;cat=all-w0;ord=1872601082807;gtm=45He33r0;auiddc=1377183410.1679996876;~oref=https%3A%2F%2Fwww.flo.com.tr%2F
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C831H3O68TKSFI88OFH0&lib=ttq
23.36.79.32200 OK 1.1 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C831H3O68TKSFI88OFH0&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (2341)
Hash e1696debb9424d02be3e4faf119e078f
ed8dbe5af7e7ada33b15fd9245d8ced0ec96d44e
c1c1e233e411a6e25b876cb719ad1913fab6ca8870eb281d083876da9ce3b533
GET /i18n/pixel/events.js?sdkid=C831H3O68TKSFI88OFH0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2023032809473556E258FD7D17E2401055
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60787dee798e7afc9c5500f386c65d6ca1b99c1758b18c30df296d4f930acb5206b292ef0bc943e431e7be2170f8967b39784adc4a86bfc2b5ba4988dbdc2416d0b87007b74ad4f8abd926421aa460386e
content-encoding: gzip
expires: Tue, 28 Mar 2023 09:47:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:35 GMT
content-length: 1145
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
set-cookie: _ttp=2NdbMA5OFvUImxiXdPmTBbH6oM1; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=103
x-origin-response-time: 103,23.36.79.28
x-akamai-request-id: 281f367b
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMQ.js
23.36.79.32200 OK 68 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/main.MTE3ZGZjMmFkMQ.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21891)
Hash d47309bed2ba8c7cb99710b610b7737b
354a2a912469cb6ae50cd52a822c5c50a89e9bf2
00def6b36c70bea0e50f5a9564483ba42892dcf6595f7d144c33044b2a67d64b
GET /i18n/pixel/static/main.MTE3ZGZjMmFkMQ.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Cookie: _ttp=2NdbMA5OFvUImxiXdPmTBbH6oM1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 20230221145409FB9878CBA6BE9A62917C
x-tt-trace-host: 01f84846a243ec928f44598c479da931d886bc10cf04919b50fbd3365b689fd9f0492c4a077221ec0df058ac640b6b63212520c7cca20b8621352c0155137d22c48ad4c2f71d5867e4ec6bff2ada640d7530f7834fc77da50357651f9ddb23be74
content-encoding: gzip
date: Tue, 28 Mar 2023 09:47:35 GMT
content-length: 68414
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=4
x-akamai-request-id: 281f3770
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/static/identify_cab4d.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 681bc25d1e648965a9374cc7da238fd5
bb973302d1b656e343013fe741d0d54bfe33b15e
2d381181d954e35610fb06daba8df86d7abb4b823e87de97276e0bd81af03669
GET /i18n/pixel/static/identify_cab4d.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Cookie: _ttp=2NdbMA5OFvUImxiXdPmTBbH6oM1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000, immutable
x-tt-logid: 202302211453357ED32E9CB4A234CC4054
x-tt-trace-host: 015ddd7329836f23ed04aa0dd6eae000e61dfb35b73ddd0ea6d3f361692c7f8399f836da754548664a9d56a317cca937197d586aef26ea8efc3380c784f4b6030804835a6b84edf6ba964a401008dbe475da2a7be38cb7b795f8af41aeb5068142
content-encoding: gzip
date: Tue, 28 Mar 2023 09:47:35 GMT
content-length: 30779
x-cache: TCP_MEM_HIT from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=hit;type=static
server-timing: cdn-cache; desc=HIT, edge; dur=0, inner; dur=3
x-akamai-request-id: 281f37e7
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24b6b63c575b987ca5887b023df7d2eb
c77d2d86aebb9e8e55cb9be53683ae532535292c
2d484eb2a8975f592d679f557f8bc1cde3ae733f7ff7e6961265391dbcf71e8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion.js
142.250.74.162200 OK 18 kB URL HTTP/2 www.googleadservices.com/pagead/conversion.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (3424)
Hash b0ad4ed8b87f389841e7b0a631ce79e2
758799804fe51dc94031cc827445702b0688f406
a28fa85cebb0f9d3c1b8444c1c958bdb15046a7666ef25a3bf16448785a061d6
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11432614.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 28 Mar 2023 09:47:35 GMT
expires: Tue, 28 Mar 2023 09:47:35 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10694919648408394435
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 17742
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.flo.com.tr/relatedpush_sw.js
3.69.34.207404 Not Found 20 B URL HTTP/2 www.flo.com.tr/relatedpush_sw.js
IP 3.69.34.207:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /relatedpush_sw.js HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: get_user_id=r40930r65s220; activeTab=1; PW-ABC=87; _gcl_au=1.1.1377183410.1679996876; lastclick=direct / (none); jcoPageCount=1; _ga_5WB3FCGSW1=GS1.1.1679996875.1.0.1679996875.60.0.0; _ga=GA1.1.506436982.1679996876; _tt_enable_cookie=1; _ttp=KAyU8ZCh80JPy9I9kSQVle6nv-6
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: text/html; charset=UTF-8
content-length: 20
x-frame-options: SAMEORIGIN
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept, Origin, Content-Type, Referer, User-Agent, X-Platform, Authorization, X-Api-Version, Platform, ShoppingCartId, AuthenticationToken, access-control-allow-credentials
content-encoding: gzip
vary: Accept-Encoding
age: 110
x-cache: HIT, 241
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/10789055190/?random=1679996876164&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
142.250.74.162200 OK 1.5 kB URL HTTP/2 www.googleadservices.com/pagead/conversion/10789055190/?random=1679996876164&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2662), with no line terminators
Hash 904fbde91faf44864fc5189ef23ddf28
b784e92e096766057e9ac413dc10c18ad9f1cd75
d309d54a98244ea10856530a68217d63c5c24d20344102f94c901c2595ce429e
GET /pagead/conversion/10789055190/?random=1679996876164&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11432614.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1495
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 43dfc0545b2763ef5c9f4ce5eb0005c5
5d46db4bc91ded50ef36b6165eb6f8f6983fb164
b0e4bfbf3f00a518869e46e86a62ea2a0e29c0a88f4b0767cf85d5899a37fae6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.flo.com.tr/relatedpush_sw.js?1679996876147
3.69.34.207404 Not Found 20 B URL HTTP/2 www.flo.com.tr/relatedpush_sw.js?1679996876147
IP 3.69.34.207:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /relatedpush_sw.js?1679996876147 HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: get_user_id=r40930r65s220; activeTab=1; PW-ABC=87; _gcl_au=1.1.1377183410.1679996876; lastclick=direct / (none); jcoPageCount=1; _ga_5WB3FCGSW1=GS1.1.1679996875.1.0.1679996875.60.0.0; _ga=GA1.1.506436982.1679996876; _tt_enable_cookie=1; _ttp=KAyU8ZCh80JPy9I9kSQVle6nv-6
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: text/html; charset=UTF-8
content-length: 20
x-frame-options: SAMEORIGIN
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept, Origin, Content-Type, Referer, User-Agent, X-Platform, Authorization, X-Api-Version, Platform, ShoppingCartId, AuthenticationToken, access-control-allow-credentials
content-encoding: gzip
x-cacheable: NO:RG Cacheable Not Exists
age: 0
x-cache: MISS
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 764
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Cookie: _ttp=2NdbMA5OFvUImxiXdPmTBbH6oM1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2023032809473523FC19D0B01E4F69DC78
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb9abb2357fe18c025e499762154e74ea0342edb40ac82908685c69d1345149cc8a755074624e1369b8edf315fb400e29d3389106b72ba61fc2cb0508971d49849d8cbe674dd21442b2a90870a13fa4fde
x-origin-response-time: 18,23.218.220.137
x-akamai-request-id: 1f938886.281f37f3
expires: Tue, 28 Mar 2023 09:47:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:35 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/11.0.2.2-47519392) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=104, origin; dur=17, inner; dur=15
x-parent-response-time: 117,23.36.79.28
X-Firefox-Spdy: h2
creativecdn.com/tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:35 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=YagUazB53hwBjlKzkFaj;Path=/;Domain=.creativecdn.com;Expires=Wed, 27-Mar-2024 09:47:35 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1679996855;Path=/;Domain=.creativecdn.com;Expires=Wed, 27-Mar-2024 09:47:35 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rpdn.relateddigital.com/rdsdk/14593DC814F2419A89ADD946D4713230/4a3bc76d-682a-465a-83f2-d41cbb0cd150.js
13.107.237.53200 OK 122 kB URL HTTP/2 rpdn.relateddigital.com/rdsdk/14593DC814F2419A89ADD946D4713230/4a3bc76d-682a-465a-83f2-d41cbb0cd150.js
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, Unicode text, UTF-8 text, with very long lines (2185)
Size 122 kB (121637 bytes)
Hash 1121e47ca4a32580d745e720f7d572cb
d1450fe010d7a3914fc6caf01dbd9116214b42fe
99e29be1e524c2592ccbeeadd85f77705649547e87681d109b17ecfab2d3c200
GET /rdsdk/14593DC814F2419A89ADD946D4713230/4a3bc76d-682a-465a-83f2-d41cbb0cd150.js HTTP/1.1
Host: rpdn.relateddigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=86400
content-type: application/javascript
content-encoding: br
content-md5: 3epFTIsAhMc02VnIJ4lmPA==
last-modified: Tue, 16 Mar 2021 08:29:35 GMT
etag: 0x8D8E855A1AECE63
x-cache: TCP_HIT
x-ms-request-id: 203b5830-601e-0025-6b10-6156eb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0O3kiZAAAAACE9iF98lfCTa36Hs+iGyETQU1TMDRFREdFMTkxMQAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
x-azure-ref: 0t7ciZAAAAADlC6XG/UdZSrM3hE6W8TmmU1ZHMjBFREdFMDYxNAAxMTJlYjUwMC1jZmNiLTRmM2MtYTliMC1lYjZkMjVjZjI4NDM=
date: Tue, 28 Mar 2023 09:47:35 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba50d379b2776214995c207b42c083a4
0f1b48c6d01ace326c49acf5bcac222f772e9f6a
6692886530b311f94ac3855df31c774feed6d5135dad4ac24921b6030fcbb8d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/gtm/optimize.js?id=GTM-5JNWCCL
172.217.21.174200 OK 45 kB URL HTTP/2 www.google-analytics.com/gtm/optimize.js?id=GTM-5JNWCCL
IP 172.217.21.174:0
File type ASCII text, with very long lines (2206)
Hash 641434cdcdd78c9e08ab215bcced3f44
6683d220d4caf21a1075f90a3a7085286b09164e
05ac0b3644f4158ba41bfcf40e0ba9dbc53d380db5fcfd19e41f07b09fc7c2bf
GET /gtm/optimize.js?id=GTM-5JNWCCL HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Mar 2023 09:47:36 GMT
expires: Tue, 28 Mar 2023 09:47:36 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Mar 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45046
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
x-amz-server-side-encryption: AES256
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Tue, 28 Mar 2023 09:47:36 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1678-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&sscte=1&crd=
172.217.21.162302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&sscte=1&crd=
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11432614.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&random=216403977&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 10:02:36 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
creativecdn.com/tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1
185.184.8.90200 OK 590 B URL HTTP/2 creativecdn.com/tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type ASCII text, with very long lines (1074), with no line terminators
Hash 0437d528ee2c30ec0e900d6c9c8ae743
6c178be887b7ccc846a4f7fc15c6394b03371a07
18f8eb3543c688c99a135c646208d73deab0349e01fca2360f36bdf9a601869d
GET /tags?type=script&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/javascript; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:36 GMT, Tue, 28 Mar 2023 09:47:36 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 590
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5WB3FCGSW1&cid=506436982.1679996876>m=45je33r0&aip=1&z=1180394304
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5WB3FCGSW1&cid=506436982.1679996876>m=45je33r0&aip=1&z=1180394304
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-5WB3FCGSW1&cid=506436982.1679996876>m=45je33r0&aip=1&z=1180394304 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash e72581e972a09b71abcbe9af6d9a9df5
d710e2a78298b7c609c2c0db948ea996665e28de
5f3cee2555617e8d4e036432b4160256fd47c9b7873ef8f59a9023ac7aeadabd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3365
Cache-Control: max-age=141684
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Etag: "64223107-1d7"
Expires: Thu, 30 Mar 2023 01:09:00 GMT
Last-Modified: Tue, 28 Mar 2023 00:12:55 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/1022450378/?random=1679996875667&cv=11&fst=1679996875667&fmt=3&bg=ffffff&guid=ON&async=1>m=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.flo.com.tr%2F&label=8PckCPnJs4oYEMq1xecD&hn=www.google.com&frm=0&tiba=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&value=1¤cy_code=TRY&bttype=purchase&auid=1377183410.1679996876&gcp=1&ct_cookie_present=1
172.217.21.162200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1022450378/?random=1679996875667&cv=11&fst=1679996875667&fmt=3&bg=ffffff&guid=ON&async=1>m=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.flo.com.tr%2F&label=8PckCPnJs4oYEMq1xecD&hn=www.google.com&frm=0&tiba=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&value=1¤cy_code=TRY&bttype=purchase&auid=1377183410.1679996876&gcp=1&ct_cookie_present=1
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1022450378/?random=1679996875667&cv=11&fst=1679996875667&fmt=3&bg=ffffff&guid=ON&async=1>m=45He33r0&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.flo.com.tr%2F&label=8PckCPnJs4oYEMq1xecD&hn=www.google.com&frm=0&tiba=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&value=1¤cy_code=TRY&bttype=purchase&auid=1377183410.1679996876&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 10:02:36 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 000cd690d9ea323f6faf6cea5b93a604
1b25570e2e7ae65f918b01d1a6bedf1a241ec10a
e22ee27ff5105460e4b3223b1f8e1dc61b5aaebf52a4cb3836b0364734089ec1
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 01 Apr 2023 08:56:19 GMT
ETag: "1b25570e2e7ae65f918b01d1a6bedf1a241ec10a"
Last-Modified: Tue, 28 Mar 2023 08:56:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 218
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aeef3debebbb500-OSL
creativecdn.com/tags?type=iframe&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1
185.184.8.90200 OK 26 B URL HTTP/2 creativecdn.com/tags?type=iframe&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
File type HTML document, ASCII text, with no line terminators
Hash b256d97fbb697428b7a1286ea33539c0
7e4e54e0434406746420141881f419ac165d3edc
f70b370debd085dd9e9fb6495c796cdccf41c44574cc185dbe124f3ea8237623
GET /tags?type=iframe&id=pr_vFAsAUvasOK8KUF09Db3&ncm=1&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: text/html;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:36 GMT, Tue, 28 Mar 2023 09:47:36 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 26
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b76c41e7fa6c84786fbcab7d2cb465f4
8847dc11d36d0b4bb3bc84cf978ba5fd492a3123
851b090355da469b1e3c4ea302c7ad7941f2a6b4eb79447791927b792be73ac7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8861
Expires: Tue, 28 Mar 2023 12:15:17 GMT
Date: Tue, 28 Mar 2023 09:47:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8861
Expires: Tue, 28 Mar 2023 12:15:17 GMT
Date: Tue, 28 Mar 2023 09:47:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8861
Expires: Tue, 28 Mar 2023 12:15:17 GMT
Date: Tue, 28 Mar 2023 09:47:36 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8861
Expires: Tue, 28 Mar 2023 12:15:17 GMT
Date: Tue, 28 Mar 2023 09:47:36 GMT
Connection: keep-alive
per2.segmentify.com//get/key/v1.json?count=2
95.214.74.47200 48 B URL HTTP/1.1 per2.segmentify.com//get/key/v1.json?count=2
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 35a55a9ba8f12cdae054f23e2cc8259d
ec5bed8f84f1ad1f93509f7b059f40b116b4c75a
6f5a47f8e34f98b9ec2e418ee22bf48bdef298470e8b27a9cf32b3ca39851a40
GET //get/key/v1.json?count=2 HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Tue, 28 Mar 2023 09:47:36 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 2acabdcce7fdb085cfbff91c37e90792
mc.yandex.ru/metrika/tag.js
87.250.250.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash 65db7a1ccc94d27d03eacdcc4031a68a
636b875123f12ffdf896aac2337a422a6b19aff0
311041541157f365c434024b327d45e29e3ee83aec3cdce9df2f62c3917ad363
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 74016
date: Tue, 28 Mar 2023 09:47:36 GMT
access-control-allow-origin: *
etag: "64216024-12120"
expires: Tue, 28 Mar 2023 10:47:36 GMT
last-modified: Mon, 27 Mar 2023 12:21:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ada29e049501b12a35b0bcc5f68e3e57
5c1ba9bffbcc9007e7f119dbb3197db34a12f8da
b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: uCaEsILUx4u_fBJ7J9CgQanUW-BmV69mFvGRjZ0roFWluE_joVyVrA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 43155
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&random=216403977&resp=GooglemKTybQhCsO
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-conversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&random=216403977&resp=GooglemKTybQhCsO
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&random=216403977&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11432614.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Mar 2023 09:47:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/10789055190/?random=696222191&cv=9&fst=1679996876164&num=1&npa=1&label=izGaCNignpMYENbVz5go&guid=ON&resp=GooglemKTybQhCsO&eid=375603261%2C466465926%2C512247839&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F11432614.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D11432614%3Btype%3Dinvmedia%3Bcat%3Dall-w0%3Bord%3D1872601082807%3Bgtm%3D45He33r0%3Bauiddc%3D1377183410.1679996876%3B~oref%3Dhttps%253A%252F%252Fwww.flo.com.tr%252F&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=t7ciZOuSOcaJiQbgqKqwCw&random=216403977&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b013cb6-ed0b-4590-b333-a69ce6ed3986.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b013cb6-ed0b-4590-b333-a69ce6ed3986.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 478c720a6e45547c00de24695f491b36
27ac933b8ec68e34144691ecc9c90307b332c5b6
eecb9e57f5a92621ca79221094825ae7452616d1cd2e33e8ae96568c3467de3b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b013cb6-ed0b-4590-b333-a69ce6ed3986.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6136
x-amzn-requestid: 5613a97e-2bca-4e20-9ccb-f31c36d95f53
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbsjF9_IAMFWMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cb6-0c2c28581024b26c4db3bd1f;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: GoF8krRMHeKcjTHWhlu7RF2HmmETECJVZrQgEHSeOYwUW3hqxJhQLg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:14:00 GMT
etag: "27ac933b8ec68e34144691ecc9c90307b332c5b6"
content-type: image/jpeg
age: 41616
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d389dd69e54e5d7b547a425f9b22ebf
604a65cfc5572c5da9d3fdea795be3942b8d14cb
5beda50c5f20633003e1f939673a6005eca314372e7f8fe0a1d4bb5702ae1712
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9501
x-amzn-requestid: 4c3f56b8-4d4f-4c4d-bd7c-faa15f6cec41
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbskGe9IAMFrkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cb6-41acd1d8310ca659548a3039;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: _Mg3EgvJrS5IsmBULM6xZJra0-VkJEEtYlO-RfcE-4eHlghhqU8vdg==
via: 1.1 17d76c2aee343249585a570f2d36d2ee.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:06:36 GMT
age: 42060
etag: "604a65cfc5572c5da9d3fdea795be3942b8d14cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 718fd0a69c546765a1e4fb756d2c6660
f179206be32ab202458745c8b5b009faf236ba72
971bd81d829ea0f8aa54ef71cce89a5b8e1f1e4a87cb94c206770b2a233ccf0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: U1WnpJASpWxPY-8kq-3g3_dKqm5l6UqhA0xUYijO5FDLGAxI2mLthg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 05:43:53 GMT
age: 14623
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
20 kB URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png
IP :0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3e093e7b5c12cfc2aee601f823ea47e
d76b3958471b2ed70a2b52f078ec638748fdb441
de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
www.google-analytics.com/analytics.js
172.217.21.174200 OK 5.8 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 172.217.21.174:0
Hash 4dd00d7589433a33096cb824062c9b58
818ffa87758531c2951e5aa7f8a38bb42422027e
a4e60c0761223cabbe504ed42301b31562603b4aa3fd57449b06668cb74f5645
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 28 Mar 2023 08:05:11 GMT
expires: Tue, 28 Mar 2023 10:05:11 GMT
cache-control: public, max-age=7200
age: 6145
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-5WB3FCGSW1&cid=506436982.1679996876>m=45je33r0&aip=1
64.233.165.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-5WB3FCGSW1&cid=506436982.1679996876>m=45je33r0&aip=1
IP 64.233.165.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-5WB3FCGSW1&cid=506436982.1679996876>m=45je33r0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.flo.com.tr
date: Tue, 28 Mar 2023 09:47:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 7ca53f37015d5148776e39d10188bba2
1e197fb95f344573dca4ef95b98aa783479fe88d
1d80e4a61f339689b50ca6a16743889d477484969b75286b4a367e7f13911be4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5217
Cache-Control: max-age=101059
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Etag: "64218b1a-139"
Expires: Wed, 29 Mar 2023 13:51:55 GMT
Last-Modified: Mon, 27 Mar 2023 12:24:58 GMT
Server: ECAcc (ska/F73A)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 718fd0a69c546765a1e4fb756d2c6660
f179206be32ab202458745c8b5b009faf236ba72
971bd81d829ea0f8aa54ef71cce89a5b8e1f1e4a87cb94c206770b2a233ccf0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash eb4469ef4be56085b190c1881aa689c5
016a9762e838c5c3ed4b760be8235cd0d1745149
4cd4f4dbe0c4fc1f1f993c783583ba703187bc385361dfe6cc42ee3548c56503
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2316
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Etag: "6421afa8-1d7"
Last-Modified: Tue, 28 Mar 2023 09:09:00 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=47dfc0c1-eb14-4242-94f5-24a168d963bd&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=6523d65d-9b7f-4e83-af2d-87dc27873844&tw_document_href=https%3A%2F%2Fwww.flo.com.tr%2F&tw_iframe_status=0&txn_id=od41k&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=47dfc0c1-eb14-4242-94f5-24a168d963bd&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=6523d65d-9b7f-4e83-af2d-87dc27873844&tw_document_href=https%3A%2F%2Fwww.flo.com.tr%2F&tw_iframe_status=0&txn_id=od41k&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=47dfc0c1-eb14-4242-94f5-24a168d963bd&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=6523d65d-9b7f-4e83-af2d-87dc27873844&tw_document_href=https%3A%2F%2Fwww.flo.com.tr%2F&tw_iframe_status=0&txn_id=od41k&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:36 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=f8f10ba4-6ebf-49a6-a18d-d5b28d39ffb2; Max-Age=63072000; Expires=Thu, 27 Mar 2025 09:47:36 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 1a7c6cd2279aee01
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: b3e377014b18e67d3c57bb38d479a71cf916ff83656e35f6ae4b5cf5abe15be9
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=712418532277870&ev=PageView&dl=https%3A%2F%2Fwww.flo.com.tr%2F&rl=&if=false&ts=1679996876541&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=62&cs_est=true&fbp=fb.2.1679996876540.1424134125&it=1679996876252&coo=false&eid=1679997649461_16799978008691&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=712418532277870&ev=PageView&dl=https%3A%2F%2Fwww.flo.com.tr%2F&rl=&if=false&ts=1679996876541&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=62&cs_est=true&fbp=fb.2.1679996876540.1424134125&it=1679996876252&coo=false&eid=1679997649461_16799978008691&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=712418532277870&ev=PageView&dl=https%3A%2F%2Fwww.flo.com.tr%2F&rl=&if=false&ts=1679996876541&sw=1280&sh=1024&v=2.9.100&r=stable&ec=0&o=62&cs_est=true&fbp=fb.2.1679996876540.1424134125&it=1679996876252&coo=false&eid=1679997649461_16799978008691&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 28 Mar 2023 09:47:36 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Hash 48d399faaa696e710b9d841b934461e2
8b867014ac0ae0a2b81a55f171deede8336a496f
c905a4d23caf1f95d96c244084f15336fba5f65b74de870ec5c2be878410625d
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:45 GMT
expires: Sat, 23 Mar 2024 10:26:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 343251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1833248290026205&ev=fb_page_view&dl=https%3A%2F%2Fwww.flo.com.tr%2F&rl=&if=false&ts=1679996876596&sw=1280&sh=1024&at=
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1833248290026205&ev=fb_page_view&dl=https%3A%2F%2Fwww.flo.com.tr%2F&rl=&if=false&ts=1679996876596&sw=1280&sh=1024&at=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1833248290026205&ev=fb_page_view&dl=https%3A%2F%2Fwww.flo.com.tr%2F&rl=&if=false&ts=1679996876596&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 28 Mar 2023 09:47:36 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
142.250.74.35200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP 142.250.74.35:0
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:45 GMT
expires: Sat, 23 Mar 2024 10:26:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
vary: Accept-Encoding
age: 343251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 8737f5b387365c2eff3744295f232b50
98df1064e0fcb25d82f15bd63d280305e4074aee
36aeff0e2d141aea4995bfbae35ec795c91818d205395c48eabb3b792e1ae363
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5612
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Last-Modified: Tue, 28 Mar 2023 08:14:04 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 313
mc.yandex.ru/watch/90635891/1?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n%21&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
87.250.250.119200 OK 450 B URL HTTP/2 mc.yandex.ru/watch/90635891/1?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n%21&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (450), with no line terminators
Hash a8a08114d644cd309663af9b102745c6
7174e8d20e303fbf8582026eb586dc5d6c269b89
46c005f6ac43cc1f886b7828aa4dcc70bbabc95ed31b4d3970b486950760f724
GET /watch/90635891/1?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n%21&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.flo.com.tr
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 450
date: Tue, 28 Mar 2023 09:47:36 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:36 GMT
last-modified: Tue, 28-Mar-2023 09:47:36 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/90635891?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.250.119302 Found 4 B URL HTTP/2 mc.yandex.ru/watch/90635891?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.250.119:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
GET /watch/90635891?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/90635891/1?wmode=7&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtrrz%3Afp%3A964%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A312667521510%3Ahid%3A356240156%3Az%3A0%3Ai%3A20230328094756%3Aet%3A1679996877%3Ac%3A1%3Arn%3A913038654%3Arqn%3A1%3Au%3A1679996877247286258%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A1%2C120%2C30%2C0%2C283%2C0%2C%2C508%2C2%2C%2C%2C%2C1074%3Aco%3A0%3Ans%3A1679996873935%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1679996877%3At%3AFlo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n%21&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Tue, 28 Mar 2023 09:47:36 GMT
access-control-allow-origin: https://www.flo.com.tr
set-cookie: yabs-sid=1659153611679996856; Path=/; SameSite=None; Secure
i=8ow0E0OqZgs0TQ2bRHFSWX7G8cAkHHlaooS69ppB9RbpY0NxBPsBs7mLKKj4liDFdqoTkitfqIq3sERPIUbjYsRYV+A=; Expires=Fri, 25-Mar-2033 09:47:35 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6770064381679996856; Expires=Fri, 25-Mar-2033 09:47:35 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yuidss=6770064381679996856; Expires=Wed, 27-Mar-2024 09:47:36 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1711532856.yc.1679996856#1711532856.yrts.1679996856#1711532856.yrtsi.1679996856; Expires=Wed, 27-Mar-2024 09:47:36 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:36 GMT
last-modified: Tue, 28-Mar-2023 09:47:36 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 28 Mar 2023 09:47:36 GMT
access-control-allow-origin: *
etag: "64216024-2b"
expires: Tue, 28 Mar 2023 10:47:36 GMT
accept-ranges: bytes
last-modified: Mon, 27 Mar 2023 12:21:40 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 3d8dfee3a99f30e0e2ba426082c1afaf
d5a455e57bb51a122276ad2b0c3bded9af2b621b
542edf83f3b993ca847f3f8fe8ce8144411582d74bd904cc82f70b61ea8764d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3691
Cache-Control: max-age=117155
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Etag: "6421cff0-1d7"
Expires: Wed, 29 Mar 2023 18:20:11 GMT
Last-Modified: Mon, 27 Mar 2023 17:18:40 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Q1AE-F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJndnc3dHAlMkJnMCUyRmV6TVNvSEtONDl0U1NMakRmQlJ6eWhaZkNnSVVhcHdk; expires=Sun, 21 Apr 2024 09:47:36 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 354103
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=47dfc0c1-eb14-4242-94f5-24a168d963bd&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=6523d65d-9b7f-4e83-af2d-87dc27873844&tw_document_href=https%3A%2F%2Fwww.flo.com.tr%2F&tw_iframe_status=0&txn_id=od41k&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=47dfc0c1-eb14-4242-94f5-24a168d963bd&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=6523d65d-9b7f-4e83-af2d-87dc27873844&tw_document_href=https%3A%2F%2Fwww.flo.com.tr%2F&tw_iframe_status=0&txn_id=od41k&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=47dfc0c1-eb14-4242-94f5-24a168d963bd&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=6523d65d-9b7f-4e83-af2d-87dc27873844&tw_document_href=https%3A%2F%2Fwww.flo.com.tr%2F&tw_iframe_status=0&txn_id=od41k&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:36 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167999685663524874; Max-Age=63072000; Expires=Thu, 27 Mar 2025 09:47:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167999685663524874; Max-Age=63072000; Expires=Thu, 27 Mar 2025 09:47:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_i/2l2nq1wqs/v7kGNY6f9w=="; Max-Age=63072000; Expires=Thu, 27 Mar 2025 09:47:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167999685663524874; Max-Age=63072000; Expires=Thu, 27 Mar 2025 09:47:36 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: cd3339098be29745
strict-transport-security: max-age=631138519
x-response-time: 112
x-connection-hash: e69c16d8df2a252875f5f0fe273a9b2d2607d5241935af5839510c227c6f756c
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash f0a6feb08a28c7f2e21cf2d8ca1cc212
e6d487792583b84b3f20329a48d9dc973830a421
ac50c61cf37c0ac5ea2824e905510a7a308225ee0eca4c9bc5d9700f7f76c882
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6153
Cache-Control: max-age=165335
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:36 GMT
Etag: "64228286-138"
Expires: Thu, 30 Mar 2023 07:43:11 GMT
Last-Modified: Tue, 28 Mar 2023 06:00:38 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 312
js-agent.newrelic.com/async-api.61caf4d9-1228.min.js
151.101.194.137200 OK 1.1 kB URL HTTP/2 js-agent.newrelic.com/async-api.61caf4d9-1228.min.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (2127), with no line terminators
Hash 606b062f028a46f78399bb7d44e1bf9a
0db86185b54254f268bf63ad7eab2711e197396a
7e10af14b845f8d8bf4246edf5a58ad7962b843acee6dcf7ab358fa81b0ad763
GET /async-api.61caf4d9-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4qHimWNFjregNO0v24Uwy0VSu4TmAzYd49DPoEWeovYwE4PJjf1d38C588/3E3n3tidD+bqDd6g=
x-amz-request-id: 2YKDJKAR9W4YXCRZ
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "5a15fa90d5c9cf59729e937de488758b"
x-amz-server-side-encryption: AES256
x-amz-version-id: J0GluopGath26np.0jFNgGyfwhEN0LgG
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 28 Mar 2023 09:47:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 3847
x-timer: S1679996857.863141,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1122
X-Firefox-Spdy: h2
js-agent.newrelic.com/lazy-loader.37550b27-1228.min.js
151.101.194.137200 OK 415 B URL HTTP/2 js-agent.newrelic.com/lazy-loader.37550b27-1228.min.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (928), with no line terminators
Hash 5c27b117169d51b62811508a19428588
556e43e62196a24cce7eccf1ef69595759a9fbf2
c6f60726478aad438071daa75444fa323154769c9e691b135702483bf7c2a157
GET /lazy-loader.37550b27-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8doJj3ypzZDXTnbuEWGf9kkXHKLrI1CkcUoZIsWBpS0jLvtDZW9CMKuX9KRDn0F/1Ug/vSYTIkg=
x-amz-request-id: MV5VZ4WJZ8M58E8Z
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "b6eaf4dad9b3e3384b0e9366ff9d0080"
x-amz-server-side-encryption: AES256
x-amz-version-id: veSIorK788CursSmiZNo6DAf4uBLqr8D
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 28 Mar 2023 09:47:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 2722
x-timer: S1679996857.869189,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 415
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 285a0cd2c5ed9927f77bf90a45dead64
fa74988da56a6686474609a8ffc0040d1beb0e9d
577eccbdd4f54c5f9136c162df93417962619562993a23222e971c029165b73f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:36 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 01 Apr 2023 07:47:18 GMT
ETag: "fa74988da56a6686474609a8ffc0040d1beb0e9d"
Last-Modified: Tue, 28 Mar 2023 07:47:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1711
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aeef3e3ce23b500-OSL
floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-giyim.jpg.webp
31.3.2.70200 OK 14 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-giyim.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 415x695, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 50aba5742fbf2d9b1522224a792f457c
055125b213e7bf7e00a4e40696c58404cf0e1904
328c95ef4a1d0719bf62ba42557e7591b5d5dd7f320c41bb009fe2f62ec7f7c9
GET /media/catalog/product/img/banners/23-03/13/en-popu-ler-kategoriler-giyim.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: image/webp
content-length: 13530
last-modified: Mon, 13 Mar 2023 10:19:41 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 b44e2902bb3501d47514e51618f1bda4.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: 3Z_ocpLyXkYehmJxFeVOmElWdTOd4peZaxp6mc_kW2AkkHPDrsJGMA==
age: 55
x-mserver: 2137
expires: Mon, 26 Jun 2023 09:47:37 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 61432578af2a639a817b0e92c0e92081
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
js-agent.newrelic.com/862.e74e95d2-1228.min.js
151.101.194.137200 OK 3.3 kB URL HTTP/2 js-agent.newrelic.com/862.e74e95d2-1228.min.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (8095), with no line terminators
Hash 2c6d67d2bd7aa1f6c08a76954d047c3c
5daade1c47bb6f50b2113b517b12d44b13931e83
7126244a7f6f3d790033e16d8ccf52d4d41f5f4b98168e9efae681f220899149
GET /862.e74e95d2-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ODGthdKEh8F/R/deEYOW1Ebm5p9rPL88/GI7HSz7IV4BKMngJo2h5cORVS61qEV/RpFxp2U2dMI=
x-amz-request-id: YJ7J044SFE2WJ1F3
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "ff02f82193fd2ec047cb131aa65a0dd8"
x-amz-server-side-encryption: AES256
x-amz-version-id: gDL8cpdspH3IxcZPeLUXHRvPqJEXPWmp
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 28 Mar 2023 09:47:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 740
x-timer: S1679996857.127921,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3271
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.30200 OK 1.8 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.30:0
File type JSON data\012- , ASCII text, with very long lines (3862), with no line terminators
Hash 421549686d002f4c34d9febbdc5725a3
13e17d6c1fa7f9d461ca72c72d13fea5a11019e5
1cc6461b85565b507f09595137d2ff788a06941782569530ddcd4b5bd2f32625
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 108706
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
js-agent.newrelic.com/page_view_timing-aggregate.ced8c919-1228.min.js
151.101.194.137200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/page_view_timing-aggregate.ced8c919-1228.min.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (5426), with no line terminators
Hash c75a5acd79c2d258696d115cb843a372
d6e6ca6e03dddd29d5bb612b7894261a8b445a98
0de60dedc16b420a590189f7e3bf8b8bdadfa33b6419834db2ffa3fa6b7e69fd
GET /page_view_timing-aggregate.ced8c919-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: GB3dqnW6PpnOi3rUocoggX/qYb28eMXhMVEm8cDOh0LjJhHU9idywolI8WwfDnrXVNPyQAmCvCc=
x-amz-request-id: YJ7T5DYXGA9D7XKC
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "ddb946a277f5c644d555e8e1bcf23b77"
x-amz-server-side-encryption: AES256
x-amz-version-id: ktDXvd_Dmea2UVJNoozUGAPGaGpVn1ZV
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 28 Mar 2023 09:47:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 737
x-timer: S1679996857.128613,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
js-agent.newrelic.com/metrics-aggregate.56d9a464-1228.min.js
151.101.194.137200 OK 1.8 kB URL HTTP/2 js-agent.newrelic.com/metrics-aggregate.56d9a464-1228.min.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (4128), with no line terminators
Hash f84674d70f2da6cf2475d96cb7bd17a3
ab21646e21c60f5434becfdddbdc7ed93dc37675
bdffea2371721acbad0ce69cbe57a6fda503fd0e4a300918aa3d8da4a598d65f
GET /metrics-aggregate.56d9a464-1228.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 9tYWuYw8BkKxP0WzUFSHj0hhJ/h+lb0pIcLzT1iE87nHv7MFgWZtzLIC3BjQ+f7xSwwC6PN3GIA=
x-amz-request-id: YJ7K11MQHVY5FB6B
last-modified: Mon, 20 Mar 2023 23:57:31 GMT
etag: "04475d81e10a8c7213d39d14e581c599"
x-amz-server-side-encryption: AES256
x-amz-version-id: cAHIZ8FQmEPf2jyMvAgXJXAVQ_Jrw1XM
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 28 Mar 2023 09:47:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 7199
x-timer: S1679996857.129966,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1751
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 1.7 kB IP 178.250.0.157:0
Hash 4a68680770f6f06de6aee51ca35c267e
76208a943099a18fdfb0d88955c40e4d3dbc975d
7b39f578d2eff0791c2118239e761335c2720ad4db1069600b6fe234115c8dd2
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=Q1AE-F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJndnc3dHAlMkJnMCUyRmV6TVNvSEtONDl0U1NMakRmQlJ6eWhaZkNnSVVhcHdk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=U2rppF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czJndnc3dHAlMkJnMCUyRmV6TVNvSEtONDl1Q09nN1NYenVSSlNHZGJueFpoaU5z; expires=Sun, 21 Apr 2024 09:47:36 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 287302
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
95.214.74.47200 OK 0 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS //add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sfy-api-key
Referer: https://www.flo.com.tr/
Origin: https://www.flo.com.tr
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, X-Switch-User, X-Switch-Account, X-Switch-Region, X-Sfy-Api-Key
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3600
Connection: keep-alive
Content-Length: 0
Content-Type: application/json
Date: Tue, 28 Mar 2023 09:47:37 GMT
Server: nginx
X-Server-Name: 2acabdcce7fdb085cfbff91c37e90792
per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
95.214.74.47200 124 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 517a342f26c616785bc9236627d5f760
0656f2ec841ebaf75a48a9c34e8dd8f922d9e83b
aa38b437702ac0b0224c417ec4c7d9bccc73e9d6f13a0c0ec0808eb930cb66ea
POST //add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 6fc7807d-9298-4cf7-9d6f-04952ea037fc
Content-Length: 1129
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Tue, 28 Mar 2023 09:47:37 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: c0d6d9efa916a39dacfc6986d35c0822
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 55bfaa4767a8b7c5568803ec5c33ad32
6300f8daf2b02b03ce22feefd1dfdca4037f5842
f95393694e6ab7f0f31f26e5cf251bd4d439f0194a98e016ffc2515383c04407
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4113
Cache-Control: max-age=109672
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "6421b110-1d7"
Expires: Wed, 29 Mar 2023 16:15:29 GMT
Last-Modified: Mon, 27 Mar 2023 15:06:56 GMT
Server: ECAcc (amb/6AA6)
X-Cache: HIT
Content-Length: 471
an.yandex.ru/sync_cookie?wmode=7&duid=1679996877247286258&hid=356240156
213.180.193.90200 OK 205 B URL HTTP/2 an.yandex.ru/sync_cookie?wmode=7&duid=1679996877247286258&hid=356240156
IP 213.180.193.90:0
Hash 33fbc70cc0c42e6eacfb2c6fc4984592
d147ddd467a0bad7e94f7d8b17c444c7e0207d71
d05efb11d6c925a31f6a88abdeeaf6b995c215cad3dfdb9af843f356534158f2
GET /sync_cookie?wmode=7&duid=1679996877247286258&hid=356240156 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
date: Tue, 28 Mar 2023 09:47:36 GMT
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:36 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
script.hotjar.com/modules.3f303823017921c313c7.js
54.230.111.44200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.3f303823017921c313c7.js
IP 54.230.111.44:0
File type Unicode text, UTF-8 text, with very long lines (50980)
Hash b1bcc4fd7382665a4f4986bf6ddf6294
faee9c8c20398589cffcc5485843d4bd28b02c34
ea7d6cdf2e4047fcaa66af0ec010ed924ba01005eb62cfb48735b5326fc9c851
GET /modules.3f303823017921c313c7.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 69090
date: Tue, 28 Mar 2023 08:51:07 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "b1bcc4fd7382665a4f4986bf6ddf6294"
last-modified: Tue, 28 Mar 2023 08:50:20 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IJ4D775-vEKdB3SoYU_xUHmuvQfZtIE5N5MxFp-qKw9muJxvH19ddw==
age: 3390
X-Firefox-Spdy: h2
bam.eu01.nr-data.net/1/87ece9ea62?a=10367482&v=1228.PROD&to=MhBSZQoZDEMFB0VcXAtac0QLDA1dSw1fUVYdTwpYFhwHSA%3D%3D&rst=3471&ck=0&s=4ed3b57eeea785d5&ref=https://www.flo.com.tr/&ap=43&be=490&fe=2640&dc=584&perf=%7B%22timing%22:%7B%22of%22:1679996873935,%22n%22:0,%22f%22:282,%22dn%22:312,%22dne%22:313,%22c%22:313,%22s%22:342,%22ce%22:433,%22rq%22:433,%22rp%22:463,%22rpe%22:490,%22dl%22:475,%22di%22:970,%22ds%22:1073,%22de%22:1076,%22dc%22:3127,%22l%22:3127,%22le%22:3160%7D,%22navigation%22:%7B%7D%7D&fcp=964&at=HldRE0IDH00%3D&jsonp=NREUM.setToken
185.221.87.23200 OK 49 B URL HTTP/1.1 bam.eu01.nr-data.net/1/87ece9ea62?a=10367482&v=1228.PROD&to=MhBSZQoZDEMFB0VcXAtac0QLDA1dSw1fUVYdTwpYFhwHSA%3D%3D&rst=3471&ck=0&s=4ed3b57eeea785d5&ref=https://www.flo.com.tr/&ap=43&be=490&fe=2640&dc=584&perf=%7B%22timing%22:%7B%22of%22:1679996873935,%22n%22:0,%22f%22:282,%22dn%22:312,%22dne%22:313,%22c%22:313,%22s%22:342,%22ce%22:433,%22rq%22:433,%22rp%22:463,%22rpe%22:490,%22dl%22:475,%22di%22:970,%22ds%22:1073,%22de%22:1076,%22dc%22:3127,%22l%22:3127,%22le%22:3160%7D,%22navigation%22:%7B%7D%7D&fcp=964&at=HldRE0IDH00%3D&jsonp=NREUM.setToken
IP 185.221.87.23:0
ASN #206998 New Relic International Limited
File type ASCII text, with no line terminators
Hash ada33e5b8877e743ff658bf4bfa1867c
5a78662243dac43c0ee48bcb7e05a536b84c2e38
dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82
GET /1/87ece9ea62?a=10367482&v=1228.PROD&to=MhBSZQoZDEMFB0VcXAtac0QLDA1dSw1fUVYdTwpYFhwHSA%3D%3D&rst=3471&ck=0&s=4ed3b57eeea785d5&ref=https://www.flo.com.tr/&ap=43&be=490&fe=2640&dc=584&perf=%7B%22timing%22:%7B%22of%22:1679996873935,%22n%22:0,%22f%22:282,%22dn%22:312,%22dne%22:313,%22c%22:313,%22s%22:342,%22ce%22:433,%22rq%22:433,%22rp%22:463,%22rpe%22:490,%22dl%22:475,%22di%22:970,%22ds%22:1073,%22de%22:1076,%22dc%22:3127,%22l%22:3127,%22le%22:3160%7D,%22navigation%22:%7B%7D%7D&fcp=964&at=HldRE0IDH00%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.eu01.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 49
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: text/javascript
server: istio-envoy
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-envoy-upstream-service-time: 3
x-served-by: cache-bma1647-BMA
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 077a1f38f1da3be279ca56ff28533752
64d61888b72db5dea6f7794f00f8043ab5b8d565
01a4612899c8bdc653d946b9d8af06088aee38ec76bca618b5a95987a0ff3bfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01A4612899C8BDC653D946B9D8AF06088AEE38EC76BCA618B5A95987A0FF3BFD"
Last-Modified: Mon, 27 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16736
Expires: Tue, 28 Mar 2023 14:26:33 GMT
Date: Tue, 28 Mar 2023 09:47:37 GMT
Connection: keep-alive
per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
95.214.74.47200 122 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 32eab54f21f9ed50b7c749a8bab97132
21c69248eedadf827caa3117435f372c1a2a9256
074a7adb9ffd8350d9142bb61e1fd908636e7b8092e020298b328637c170dea0
POST //add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 6fc7807d-9298-4cf7-9d6f-04952ea037fc
Content-Length: 622
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Tue, 28 Mar 2023 09:47:37 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: c0d6d9efa916a39dacfc6986d35c0822
an.yandex.ru/mapuid/azerionis/?duid=1679996877247286258
213.180.193.90302 Found 62 B URL HTTP/2 an.yandex.ru/mapuid/azerionis/?duid=1679996877247286258
IP 213.180.193.90:0
Hash 14264ec4f085176d5e5f07235b33195f
087df384002dd5567f7360b90f6422c3a67bc5e8
3120804c6cc0530b0c8ab510bc9a8378ac61100aa04594e9cfa80dc356db6dfa
GET /mapuid/azerionis/?duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/azerionis/?redir-setuniq=1&duid=1679996877247286258
date: Tue, 28 Mar 2023 09:47:37 GMT
set-cookie: yandexuid=1998965511679996857; domain=.yandex.ru; path=/; expires=Fri, 25-Mar-2033 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_hm=&google_nid=yandex_ag&google_ula=7186619844&google_cm&duid=1679996877247286258
142.250.74.66302 Found 352 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_hm=&google_nid=yandex_ag&google_ula=7186619844&google_cm&duid=1679996877247286258
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 18a1038f035bdcf2bf6bc35303f5f4fe
ae97c647b66f43a1004c5ef89f8c3d73c0390a5e
a4c478024bf5861f68227c765500c2dfc26780eb69c8fcf31cd24ce158510b64
GET /pixel?google_hm=&google_nid=yandex_ag&google_ula=7186619844&google_cm&duid=1679996877247286258 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_hm=&google_nid=yandex_ag&google_ula=7186619844&google_cm=&duid=1679996877247286258&google_tc=
date: Tue, 28 Mar 2023 09:47:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 352
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 28-Mar-2023 10:02:37 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 077a1f38f1da3be279ca56ff28533752
64d61888b72db5dea6f7794f00f8043ab5b8d565
01a4612899c8bdc653d946b9d8af06088aee38ec76bca618b5a95987a0ff3bfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01A4612899C8BDC653D946B9D8AF06088AEE38EC76BCA618B5A95987A0FF3BFD"
Last-Modified: Mon, 27 Mar 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16736
Expires: Tue, 28 Mar 2023 14:26:33 GMT
Date: Tue, 28 Mar 2023 09:47:37 GMT
Connection: keep-alive
an.yandex.ru/mapuid/azerionis/?redir-setuniq=1&duid=1679996877247286258
213.180.193.90200 OK 50 B URL HTTP/2 an.yandex.ru/mapuid/azerionis/?redir-setuniq=1&duid=1679996877247286258
IP 213.180.193.90:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bef53a5c76b7ad469692178eeaeb08d8
aaae1c11fa0b5a086770957c8857d3937ed653e9
be24bb564cc16e1fe9113f63db905a1b7a3a653c6642f0c27d5e823729a99ee3
GET /mapuid/azerionis/?redir-setuniq=1&duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Tue, 28 Mar 2023 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash a997bbb4895231d9764e49e0354ac140
0dae65ff1e5039ba424efb3929fcf126cb7881a5
8061982543271b5436e7b92c771aa37a739bf6a245ba2ddc146d52e9d8ff1afc
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100987
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "64219209-1d7"
Expires: Wed, 29 Mar 2023 13:50:44 GMT
Last-Modified: Mon, 27 Mar 2023 12:54:33 GMT
Server: ECAcc (nya/789D)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nym22C028coiqdx4eqkWOcstfkjeNBnQfYh8kbpStyd0iclCkeSMBw==
Age: 3371
an.yandex.ru/mapuid/operacom/?redir-setuniq=1&duid=1679996877247286258
213.180.193.90200 OK 490 B URL HTTP/2 an.yandex.ru/mapuid/operacom/?redir-setuniq=1&duid=1679996877247286258
IP 213.180.193.90:0
Hash 433f78f8d56cbc543c5a12faa322d51c
18be835f83db5d46aa4503c9b9c4a446f133fb19
3f39703081f3915a02bc716eda6a401685b1148b08a07a0724c99553e4fb4a0b
GET /mapuid/operacom/?redir-setuniq=1&duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Tue, 28 Mar 2023 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1045399.js?sv=7
54.230.111.8200 OK 3.7 kB URL HTTP/2 static.hotjar.com/c/hotjar-1045399.js?sv=7
IP 54.230.111.8:0
File type Unicode text, UTF-8 text, with very long lines (7815)
Hash 9bd1e85ebfa533015d182365de095f8d
5bf7642e7e3e1154c7bb45c9d8edb329b38d1601
a184f7d7f1b4af5a725392b02302edbcb50d20ba2ea4c469a34c8ea06b96a382
GET /c/hotjar-1045399.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: max-age=60
etag: W/1c0b4283695b0a252a51393217c5e00b
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NevV34bIROcSHpI_pIWVa309B8t4CboOFtIYrsheB2Jvs2RJ_Lq0BA==
age: 21
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-gLItowsMJXZ8ERtA7yjPaMlCzsJMHSFXjQUFQw
2.18.172.23200 OK 61 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-gLItowsMJXZ8ERtA7yjPaMlCzsJMHSFXjQUFQw
IP 2.18.172.23:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash c531d16af31b1ce5267e4b87946c35ec
9942323fe522b914b8863d64ebf352750d8addb9
cc0e716595a20cd577f4cba25c11b4b54d92311f5f4bf22b992af281cabbc0c7
GET /cksync.php?cs=3&type=crt&ovsid=k-gLItowsMJXZ8ERtA7yjPaMlCzsJMHSFXjQUFQw HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 61
content-type: image/gif
set-cookie: visitor-id=3229984573580258000V10; Expires=Wed, 27 Mar 2024 09:47:37 GMT; domain=.media.net; Path=/;
data-c-ts=1679996857;Expires=Thu, 27 Apr 2023 09:47:37 GMT;path=/;domain=.media.net;
data-c=k-gLItowsMJXZ8ERtA7yjPaMlCzsJMHSFXjQUFQw~~3;Expires=Thu, 27 Apr 2023 09:47:37 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:37 GMT
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-XEuLZgsMJXZ8ERtA7yjPaMlCzsIym2N6FkjIpw
184.24.45.54200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-XEuLZgsMJXZ8ERtA7yjPaMlCzsIym2N6FkjIpw
IP 184.24.45.54:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-XEuLZgsMJXZ8ERtA7yjPaMlCzsIym2N6FkjIpw HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.10
content-length: 23
expires: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 28 Mar 2023 09:47:37 GMT
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.89.210.90307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.89.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 70523462-6bd5-42cd-b9f9-32913cfa81fb
Set-Cookie: uuid2=4592393282962351936; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 26-Jun-2023 09:47:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
secure.adnxs.com/setuid?entity=52&code=k-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA
185.89.210.101307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/setuid?entity=52&code=k-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA
IP 185.89.210.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=52&code=k-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA
AN-X-Request-Uuid: 7a86b28a-5bb1-4f69-888d-486198721802
Set-Cookie: uuid2=815360702216682615; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 26-Jun-2023 09:47:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash b18b122f70aea0e50ed8a951e0773e2c
845f75894ae5ad388f7482b47a02763d0a40b57f
a718c5c52c9fe4703bcef551e559894c4fefff64908dd208ef0942b77eced3f2
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=158015
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "64226668-1d7"
Expires: Thu, 30 Mar 2023 05:41:12 GMT
Last-Modified: Tue, 28 Mar 2023 04:00:40 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: c3w_jjW_EQMpkLZ2N_b2z9S7lIOWKidsgf2n5e3QKH8hkCT3DBBlDg==
Age: 6032
eb2.3lift.com/xuid?mid=2711&xuid=k-CRVPOAsMJXZ8ERtA7yjPaMlCzsL3AhSAygAZRg&dongle=013b
13.248.245.213200 OK 87 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-CRVPOAsMJXZ8ERtA7yjPaMlCzsL3AhSAygAZRg&dongle=013b
IP 13.248.245.213:0
File type gzip compressed data, from Unix\012- data
Hash d1b50be0c70eb749e8b9ce33567eca66
d0dc4a017e72d68d936c95532d7462ed6ae33ebb
46d7c1f2eb698ac012de12184a42fc110f391b544ceccc28b5a4da6ae3ff073d
GET /xuid?mid=2711&xuid=k-CRVPOAsMJXZ8ERtA7yjPaMlCzsL3AhSAygAZRg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash b106b7b2f4ecc424c55a1b334c5fc704
5a509145fbd454dc527ad3fa07117ff39e681fad
58b48a5d9a7d6b00ae501f386f72b2f33cdb9fce1ee949185375498a6637c83e
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 28 Mar 2023 09:47:37 GMT
Last-Modified: Tue, 28 Mar 2023 08:40:04 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YYs6GnBEPZS9LGpsp5SLhZBRpTISQi2mkX7xgqSOu5M5iGZfGFxdXA==
Age: 4053
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash ac87b8b53eb958f6f68e22569dc2cac7
07e8adbd34bdfeb283ceb9923d5dff619a548efd
2755266fc68e00e5e3db78a73b4148b102e8b08f77c2d095cfddf926c8c0bc5f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2830
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Last-Modified: Tue, 28 Mar 2023 09:00:27 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 0a7b4bcba2708adbe285e1d7a70369ac
e45ddd05b6db0996036933593ccba13a1af33af2
e6657bb3a7d909c6bfdf2d4950a65b8a9816d042f13eda307918ea1f4d453870
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5237
Cache-Control: max-age=96054
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "6421777a-1d7"
Expires: Wed, 29 Mar 2023 12:28:31 GMT
Last-Modified: Mon, 27 Mar 2023 11:01:14 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-Q5X9GQsMJXZ8ERtA7yjPaMlCzsLgtu_5IZnrGw
18.195.53.94204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-Q5X9GQsMJXZ8ERtA7yjPaMlCzsLgtu_5IZnrGw
IP 18.195.53.94:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-Q5X9GQsMJXZ8ERtA7yjPaMlCzsLgtu_5IZnrGw HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 28 Mar 2023 09:47:37 GMT
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-u0HiTwsMJXZ8ERtA7yjPaMlCzsK29CWcFVkn6A&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-u0HiTwsMJXZ8ERtA7yjPaMlCzsK29CWcFVkn6A&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-u0HiTwsMJXZ8ERtA7yjPaMlCzsK29CWcFVkn6A&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 7c5d24517ee193cc868994bc18883d1d
Content-Type: image/gif
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
185.89.210.90302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 185.89.210.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 602a10b6-ec08-4919-b955-aa40ca1da8da
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 941.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-soekkwsMJXZ8ERtA7yjPaMlCzsJ2ZBDUudZtrQ
3.71.149.231302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-soekkwsMJXZ8ERtA7yjPaMlCzsJ2ZBDUudZtrQ
IP 3.71.149.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-soekkwsMJXZ8ERtA7yjPaMlCzsJ2ZBDUudZtrQ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:37 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-soekkwsMJXZ8ERtA7yjPaMlCzsJ2ZBDUudZtrQ&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBLm3ImQCEDgo4NUWFMAp1C9zt1kkat0FEgEBAQEJJGQsZAAAAAAA_eMAAA&S=AQAAAj0vhjYheL483q7dMhkI_cM; Expires=Wed, 27 Mar 2024 15:47:37 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 7d8ef53a76a12f928f1a3a9276ff8196
e8a58e5c1e62a56dd15954ec908447ff273f761a
18d6b90c7b635aeb98944ac9d3635e3faade0cea4bea5d6c4cf82147061cace0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5549
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Last-Modified: Tue, 28 Mar 2023 08:15:08 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 313
secure.adnxs.com/bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA
185.89.210.101200 OK 43 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA
IP 185.89.210.101:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D52%26code%3Dk-QuNcYwsMJXZ8ERtA7yjPaMlCzsJq33M6UamLVA HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: ccc24c3d-732f-426d-b151-9b16c9a1ba5e
Set-Cookie: anj=dTM7k!M4/rCxrEQF']wIg2In:mYJsX!]tbPl@/D!9hy6]/Cr.5j4[mkba*li/3Mg`[8V+w4.SOu5tnN2k[6FSk`m_54#Vjx?12Wf^*c`+%nugO%v4VB%nrEP+d*lk; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 26-Jun-2023 09:47:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 174e3ac33d6786a335d6e691ba1b77e4
fc91e6e240d4f4f76182ae6f673fb968e3a1d9d2
8304b40b05686182cde54f3176bbddc84c9e17392a30056a440506feed067d17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 804
Cache-Control: max-age=102016
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "6421a015-1d7"
Expires: Wed, 29 Mar 2023 14:07:53 GMT
Last-Modified: Mon, 27 Mar 2023 13:54:29 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 471
an.yandex.ru/mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_error=3&duid=1679996877247286258
213.180.193.90400 Bad Request 50 B URL HTTP/2 an.yandex.ru/mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_error=3&duid=1679996877247286258
IP 213.180.193.90:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bef53a5c76b7ad469692178eeaeb08d8
aaae1c11fa0b5a086770957c8857d3937ed653e9
be24bb564cc16e1fe9113f63db905a1b7a3a653c6642f0c27d5e823729a99ee3
GET /mapuid/GoogleSspUid/?partner-tag=yandex_ag&ssp-id=17298340&google_error=3&duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 400 Bad Request
timing-allow-origin: *
date: Tue, 28 Mar 2023 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-MkIv9QsMJXZ8ERtA7yjPaMlCzsKCuTwIbVAn5A
37.157.3.29200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-MkIv9QsMJXZ8ERtA7yjPaMlCzsKCuTwIbVAn5A
IP 37.157.3.29:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-MkIv9QsMJXZ8ERtA7yjPaMlCzsKCuTwIbVAn5A HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: image/gif
content-length: 43
last-modified: Fri, 07 Feb 2020 08:03:00 GMT
etag: "5e3d19b4-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 4b078745f7f749b251f1a10ddef5746f
affc7c6f688cabceabb321c9d7a0768495478f48
ae0f7e2727391e9a99518bc1f8b2470424b7be9cc08e75f5868c532d17a70bac
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 27 Mar 2023 21:13:09 GMT
Expires: Tue, 28 Mar 2023 21:13:09 GMT
ETag: "affc7c6f688cabceabb321c9d7a0768495478f48"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5689e39bb7e2cde91ef7dabc5e7eeaa1
72d5d8ecffdc5a9a8c24384ede6781fb6685f905
c7c09ccf0ad209e2efc0ec7c7e021f803e24de1a041b1eb51210ec9c9f40e432
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7C09CCF0AD209E2EFC0EC7C7E021F803E24DE1A041B1EB51210EC9C9F40E432"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13697
Expires: Tue, 28 Mar 2023 13:35:54 GMT
Date: Tue, 28 Mar 2023 09:47:37 GMT
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0da47f1019b3f2b041aeb498dbda489e
f8afc7fd330b981a285aab5f01e31124305eb89a
732eaf79a4283b9e0485c99fdb7c66dac8c9baadb8864b53716b2b525acd6b3d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 22:45:38 GMT
Expires: Mon, 03 Apr 2023 22:45:37 GMT
Etag: "f8afc7fd330b981a285aab5f01e31124305eb89a"
Cache-Control: max-age=564479,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3e969770b41-OSL
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A
185.80.36.245302 Found 0 B URL HTTP/1.1 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Tue, 28 Mar 2023 09:47:37 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=ZCK3uYQhaCmsFQCjEpsh2QAA; Path=/; Domain=casalemedia.com; Expires=Wed, 27 Mar 2024 09:47:37 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=1837; Path=/; Domain=casalemedia.com; Expires=Mon, 26 Jun 2023 09:47:37 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=1837; Path=/; Domain=casalemedia.com; Expires=Mon, 26 Jun 2023 09:47:37 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
id5-sync.com/s/966/9.gif?puid=k-QCjMawsMJXZ8ERtA7yjPaMlCzsL67a-58wGpOw
162.19.138.82200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-QCjMawsMJXZ8ERtA7yjPaMlCzsL67a-58wGpOw
IP 162.19.138.82:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-QCjMawsMJXZ8ERtA7yjPaMlCzsL67a-58wGpOw HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Tue, 28-Mar-2023 09:52:37 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Tue, 28-Mar-2023 09:52:37 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Tue, 28-Mar-2023 09:52:37 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Tue, 28-Mar-2023 09:52:37 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Tue, 28-Mar-2023 09:52:37 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Tue, 28-Mar-2023 09:52:37 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Tue, 28 Mar 2023 09:47:37 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash e6893aff6547c79a9ae650d0e10ad367
89c7d67f34a6353a08ce5e3483bf625f93f6c305
9f03fd0aac72d302987b17595747e8f1944d1c5a8941e8c70695b95d03c4b8ea
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 15:11:57 GMT
Expires: Sat, 01 Apr 2023 15:11:56 GMT
Etag: "89c7d67f34a6353a08ce5e3483bf625f93f6c305"
Cache-Control: max-age=364458,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3e9986b1c16-OSL
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash d67af573e94fde9acb23afbf1593a0d2
c0bdeba3467f31b8693b33adc998b93b554cc64d
876d9dce64d3573fae3b60e7cf1ef9c9019b62fdc471febe6a8cd37e5a2b440d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1952
Cache-Control: max-age=170495
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "6422a718-1d7"
Expires: Thu, 30 Mar 2023 09:09:12 GMT
Last-Modified: Tue, 28 Mar 2023 08:36:40 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-m4VEyAsMJXZ8ERtA7yjPaMlCzsI9MbakFWLZ7A&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:37 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7ef51c0fa2320bb875996a5e9dc8a3b2
9800551f1f2e2b51d6bd2142972770683dc5df97
0e153635305bdf3a1bcda79feac0d97209af15bc0044cc176c3b8a621c768f22
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 01:56:50 GMT
Expires: Sat, 01 Apr 2023 01:56:49 GMT
Etag: "9800551f1f2e2b51d6bd2142972770683dc5df97"
Cache-Control: max-age=316751,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3e8cb9bb51b-OSL
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash e03e36232159e7c3f58c79153c4f2a99
f72cf7c0eba8a373ae9d330c83d6e81cf1e1c1f7
2992df4cd478cbea340f65cf429ac3d7f3950d46daa8202f24148b8255a87884
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4032
Cache-Control: max-age=159995
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "642275f4-1d7"
Expires: Thu, 30 Mar 2023 06:14:12 GMT
Last-Modified: Tue, 28 Mar 2023 05:07:00 GMT
Server: ECAcc (ska/F757)
X-Cache: HIT
Content-Length: 471
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-LMwexgsMJXZ8ERtA7yjPaMlCzsL8PQGQtk-0JA
185.255.84.152200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-LMwexgsMJXZ8ERtA7yjPaMlCzsL8PQGQtk-0JA
IP 185.255.84.152:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-LMwexgsMJXZ8ERtA7yjPaMlCzsL8PQGQtk-0JA HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=cd1d0cad481875974702743c297c6f90; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Tue, 28 Mar 2023 09:47:37 GMT
content-length: 49
x-envoy-upstream-service-time: 5
server: ayl-lb-fra02
X-Firefox-Spdy: h2
lgr.visilabs.net/flocomtr/om.gif?OM.siteID=797A6D724B41724A506B733D&OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT
185.29.195.171200 OK 70 B URL HTTP/1.1 lgr.visilabs.net/flocomtr/om.gif?OM.siteID=797A6D724B41724A506B733D&OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT
IP 185.29.195.171:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 02a065761e036bca2f981f3ed704dc79
e251c670f45fb6dadca5f779fed5b6cc132c7cdf
cd8feca47797d25495f03a52b6a8605de61b829c01be0dca0c2ff0fed71ec3d8
GET /flocomtr/om.gif?OM.siteID=797A6D724B41724A506B733D&OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT HTTP/1.1
Host: lgr.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: Image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Set-Cookie: OM.3rd=dc48532f-b706-40f0-ac52-8a8495b3bc1c; domain=.visilabs.net; expires=Sat, 28-Mar-2043 09:47:38 GMT; path=/
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Length: 70
x.bidswitch.net/sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30
52.28.20.73302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30
IP 52.28.20.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:37 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=3a0d191f-f871-467f-9c71-bfb81b1bccc9; path=/; expires=Wed, 27-Mar-2024 09:47:37 GMT; domain=.bidswitch.net; samesite=none; secure
c=1679996857; path=/; expires=Wed, 27-Mar-2024 09:47:37 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1679996857; path=/; expires=Wed, 27-Mar-2024 09:47:37 GMT; domain=.bidswitch.net; samesite=none; secure
c=1679996857; path=/; expires=Wed, 27-Mar-2024 09:47:37 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA&KRTB&23144-uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA&KRTB&23286-uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA&KRTB&23287-uid:k-K3qzpwsMJXZ8ERtA7yjPaMlCzsI8OdF5tVTuPA; domain=pubmatic.com; secure; expires=Thu, 27-Apr-2023 09:47:37 GMT; path=/
PugT=1679996857; domain=pubmatic.com; secure; expires=Thu, 27-Apr-2023 09:47:37 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-3i1oUQsMJXZ8ERtA7yjPaMlCzsL2SqHmSXZzbA
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-3i1oUQsMJXZ8ERtA7yjPaMlCzsL2SqHmSXZzbA
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-3i1oUQsMJXZ8ERtA7yjPaMlCzsL2SqHmSXZzbA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Mon, 27 Mar 2023 09:47:37 GMT
Date: Tue, 28 Mar 2023 09:47:37 GMT
Connection: keep-alive
Set-Cookie: id=8a2cc50f-3ba6-401a-9d82-37710e235960; Path=/; Domain=prod.svc.y6b.de; Expires=Wed, 27-Mar-2024 09:47:37 GMT; Max-Age=31536000; Secure; SameSite=None
status.thawte.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 222eb4db2e6ed15412204941b269d9f7
80399325e519ad82b42e23f8b87c15a1e05bbff6
f4880f17dfd0e6a41eba3f3e2073f27f6e357cae552f644b79f80bb254485b0f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1866
Cache-Control: max-age=125801
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "6421f8d8-1d7"
Expires: Wed, 29 Mar 2023 20:44:18 GMT
Last-Modified: Mon, 27 Mar 2023 20:13:12 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/ibs:dpid=28645&dpuuid=
52.17.35.147302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 52.17.35.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v046-0040bba41.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=55806132965797572954593013093363658112; Max-Age=15552000; Expires=Sun, 24 Sep 2023 09:47:37 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 9EfeitFfQAc=
Content-Length: 0
Connection: keep-alive
vc.hotjar.io/sessions/1045399?s=0.25&r=0.19504812203198096
54.230.111.70204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/1045399?s=0.25&r=0.19504812203198096
IP 54.230.111.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/1045399?s=0.25&r=0.19504812203198096 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Tue, 28 Mar 2023 09:47:37 GMT
server: Python/3.8 aiohttp/3.8.4
x-cache: Miss from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 964bY_wZs52njYzLY00J9MYgQboJEvjQS0GkmKQX7X8bMjqGSsFsRw==
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30
52.28.20.73200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30
IP 52.28.20.73:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-eh3PNAsMJXZ8ERtA7yjPaMlCzsJabnOi5SRHZA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
s.visilabs.net/act.js?OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.siteID=797A6D724B41724A506B733D&OM.obj=_VTObjs%5B%22_VisilabsTarget_0%22%5D&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!
185.29.195.173200 OK 209 B URL HTTP/1.1 s.visilabs.net/act.js?OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.siteID=797A6D724B41724A506B733D&OM.obj=_VTObjs%5B%22_VisilabsTarget_0%22%5D&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!
IP 185.29.195.173:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type ASCII text, with no line terminators
Hash 7c7a47349ff6f2d2743cad78c480cc19
7dc464a4856363ebe5c94af740432c453b1f54fb
53bfd4e549a08ded8c30a5c9fbf42bf12b88f33fbdc1d002f0a03dfe80bd94ed
GET /act.js?OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.siteID=797A6D724B41724A506B733D&OM.obj=_VTObjs%5B%22_VisilabsTarget_0%22%5D&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n! HTTP/1.1
Host: s.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server:
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-AspNet-Version:
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536061; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
X-POWERED-BY:
Date: Tue, 28 Mar 2023 09:47:38 GMT
Content-Length: 209
Set-Cookie: BIGipServerVisilabsTargetPool=!r58r7QDlUJ9tAKFL4yUPcyE0T9BkAv1PF+c0t4iG/LLmT1pvP8M0deKt6Kdb2fKEZfk0+ZTCqZkXYA==; path=/; Httponly; Secure
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
52.17.35.147200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 52.17.35.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v046-0a376095d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: Y9ikgnZ8Se8=
Content-Length: 59
Connection: keep-alive
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 58b49f623e20d32af51f00254abbeb9f
3a199d5e4c73e7cbd85ac2b71e7ee029bb5d9d0c
991627a96d0de4618674908495658f40937edf1b78d8536f2781fab727cf944e
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133049
Date: Tue, 28 Mar 2023 09:47:37 GMT
Etag: "64220833-1d7"
Expires: Wed, 29 Mar 2023 22:45:06 GMT
Last-Modified: Mon, 27 Mar 2023 21:18:43 GMT
Server: ECAcc (nya/1C5E)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KUWh7c-1herUQJKjKEmmYHUKhS2mEs8MupQU-gmKt-IZ5cOPycCSow==
Age: 5183
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash dd449a40063b746aaf502c0c7e972ef2
45203421fa31b7333db20332749821e66001f3af
8918af77b9b41df8758da8065b9518838fff3d547892b9c89ee86cdc0975cd82
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 28 Mar 2023 09:47:38 GMT
Last-Modified: Tue, 28 Mar 2023 08:50:06 GMT
Server: ECAcc (nya/78E9)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xYqAGZC5OV520s-uPatR1cWfv5FnEsK2O2pBgpurquiLYLmsG5rz2A==
Age: 3452
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash fea1971b41d8151ec0e9d2e7c9de92a8
82de62fe2d96b721067687c65b9a79f1127d1273
30534412c3e5e7dc6a328b8adee40dbe57e9d369126d2de430b14664ffe032e1
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127208
Date: Tue, 28 Mar 2023 09:47:38 GMT
Etag: "6421ed9c-1d7"
Expires: Wed, 29 Mar 2023 21:07:46 GMT
Last-Modified: Mon, 27 Mar 2023 19:25:16 GMT
Server: ECAcc (bsa/EB26)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IK_33U8nL18WYTqDTUEwhvYIu_8pc1fh24o1j3Mcaj6tuzTA0WN_Pg==
Age: 6150
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:37 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 712398
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-r-mdfgsMJXZ8ERtA7yjPaMlCzsInvunlHXaTdw&initiator=partner
64.202.112.223200 OK 20 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-r-mdfgsMJXZ8ERtA7yjPaMlCzsInvunlHXaTdw&initiator=partner
IP 64.202.112.223:0
File type gzip compressed data, from Unix\012- data
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /cookie-sync?p=criteo&uid=k-r-mdfgsMJXZ8ERtA7yjPaMlCzsInvunlHXaTdw&initiator=partner HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:38 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 0ab5bef494ba7071670ba53f1843b84d
sync-criteo.ads.yieldmo.com/sync?id=k-w5_GGAsMJXZ8ERtA7yjPaMlCzsJWKGJ4Z2f8jA&pn_id=criteo&ext=1
52.49.84.227200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-w5_GGAsMJXZ8ERtA7yjPaMlCzsJWKGJ4Z2f8jA&pn_id=criteo&ext=1
IP 52.49.84.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-w5_GGAsMJXZ8ERtA7yjPaMlCzsJWKGJ4Z2f8jA&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:38 GMT
content-type: img/gif;charset=utf-8
content-length: 43
set-cookie: yieldmo_id=g1edf999a8ab2825bf2d%7C1679996858050%7C0%7C; Domain=.yieldmo.com; Expires=Wed, 27-Mar-2024 09:47:38 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-w5_GGAsMJXZ8ERtA7yjPaMlCzsJWKGJ4Z2f8jA; Domain=ads.yieldmo.com; Expires=Wed, 27-Mar-2024 09:47:38 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-headers: Cache-Control, Pragma, *
access-control-allow-methods: POST, GET, OPTIONS
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Model,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Mobile
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.57200 OK 90 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.57:0
Hash 2e38d582a33b3f06e8da786602a50fd5
c028bcdcac9c844b655e91c8d609406fecb857f5
a16d506a42ec63b466cd72411327dc8f609fc1cca2e7c9e19b088b724307a81d
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 82674
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 0da47f1019b3f2b041aeb498dbda489e
f8afc7fd330b981a285aab5f01e31124305eb89a
732eaf79a4283b9e0485c99fdb7c66dac8c9baadb8864b53716b2b525acd6b3d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 28 Mar 2023 09:47:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 22:45:38 GMT
Expires: Mon, 03 Apr 2023 22:45:37 GMT
Etag: "f8afc7fd330b981a285aab5f01e31124305eb89a"
Cache-Control: max-age=564478,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aeef3e9c9e20b41-OSL
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-ogvONAsMJXZ8ERtA7yjPaMlCzsIWKfp66LVAcw
18.198.156.47200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-ogvONAsMJXZ8ERtA7yjPaMlCzsIWKfp66LVAcw
IP 18.198.156.47:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-ogvONAsMJXZ8ERtA7yjPaMlCzsIWKfp66LVAcw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:38 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
rt.visilabs.net/flocomtr/om.gif?OM.siteID=797A6D724B41724A506B733D&OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT
185.29.195.174200 OK 70 B URL HTTP/1.1 rt.visilabs.net/flocomtr/om.gif?OM.siteID=797A6D724B41724A506B733D&OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT
IP 185.29.195.174:0
ASN #201160 Dogus Bilgi Islem ve Teknoloji Hizmetleri A.S
File type GIF image data, version 89a, 1 x 1\012- data
Hash 14d1707eda790f543c6fb8d0dcff6359
cf7049298a876447c2854cf2bc4df2987587aac5
de9d3fd0eb948bd294477d0eda60a73b85caff1794803530d0463193a113da98
GET /flocomtr/om.gif?OM.siteID=797A6D724B41724A506B733D&OM.cookieID=IYWJLXMUQQRYUFQH20230328094757&OM.oid=4B7255614D4A666A78656B3D&OM.pushnotifystatus=default&OM.pushchannel=webpush&OM.pviv=1&OM.tvc=1&OM.th=1&OM.resol=1280x1024&OM.jv=No&OM.nrv=1&OM.domain=www.flo.com.tr&OM.uri=%2F&OM.title=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&dat=Tue,%2028%20Mar%202023%2009:47:57%20GMT HTTP/1.1
Host: rt.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: image/gif
P3P: CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536027; includeSubDomains
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-XSS-Protection: 1; mode=block
SERVER:
X-ASPNET-VERSION:
X-POWERED-BY:
Date: Tue, 28 Mar 2023 09:47:37 GMT
Content-Length: 70
Set-Cookie: BIGipServerVisilabsRealtimePoolHTTP=!OmSQ1p7wrWHS3FhL4yUPcyE0T9BkAhie9JWvlWu5jt0xt5GSgxZHqSv23jbu10zt9zJ4IA5sw/aXXg==; path=/; Httponly; Secure
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b05cf9ff55f6700bcaf0273a8bc098fb
3da6f77ad6ad44022be188b40a2ea6352d731b50
c59bd7528833a59fb47ea3849baaa87e2c6e3206b3f20fad29c1800e987ba7cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2120
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 09:47:38 GMT
Last-Modified: Tue, 28 Mar 2023 09:12:18 GMT
Server: ECAcc (ska/F73A)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
54.171.92.63204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 54.171.92.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 28 Mar 2023 09:47:38 GMT
set-cookie: _kuid_=PdhpHlet; Expires=Sun, 24-Sep-23 09:47:38 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n024-dub-prod.krxd.net
x-request-time: D=25 t=1679996858
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Tue, 28 Mar 2023 09:47:38 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 542273
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 17169ba948f688d25cc0a50374e542c2
7220a0bbf3ee0abf53d6c12cae012d45fad07282
84fce49d9be777baf09500170efa1c23dd4b2dc4cb57ceea26e935dc9e7c6a54
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "84FCE49D9BE777BAF09500170EFA1C23DD4B2DC4CB57CEEA26E935DC9E7C6A54"
Last-Modified: Tue, 28 Mar 2023 02:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3185
Expires: Tue, 28 Mar 2023 10:40:43 GMT
Date: Tue, 28 Mar 2023 09:47:38 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.12.8.145200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.12.8.145:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:38 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 936d1990-cd4d-11ed-bcf0-0000ac170031
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
floimages.mncdn.com/media/catalog/product/img/banners/23-03/27/c-ocuk-1400x1000.jpg.webp
31.3.2.70200 OK 50 kB URL HTTP/2 floimages.mncdn.com/media/catalog/product/img/banners/23-03/27/c-ocuk-1400x1000.jpg.webp
IP 31.3.2.70:0
ASN #21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1400x1000, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0016f38e6e1eaf2f8645998a7755a763
e1ec7ff6ed2114abafa1c82739090879215436c0
a8eff55c34fcce9441e004383f368b2fedeaa99775f5f06e103e550af9a1d05a
GET /media/catalog/product/img/banners/23-03/27/c-ocuk-1400x1000.jpg.webp HTTP/1.1
Host: floimages.mncdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:39 GMT
content-type: image/webp
content-length: 50338
last-modified: Mon, 27 Mar 2023 06:52:07 GMT
x-amz-server-side-encryption: AES256
x-cache: Hit from cloudfront
via: 1.1 1b73451818d2dd47a574604c0b84f692.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA50-C1
x-amz-cf-id: N1dmQMUHhXQpoNe9JrVVrHWhwatQkbythFKpO3rLvflgS4g_tNLBDQ==
age: 11
x-mserver: 2215
expires: Mon, 26 Jun 2023 09:47:39 GMT
cache-control: max-age=7776000
server: MNCDN-236
x-edge-location: DE-372
x-mnrequest-id: 4200ea61ba781e46f56539148a783916
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
95.214.74.47200 122 B URL HTTP/1.1 per2.segmentify.com//add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc
IP 95.214.74.47:0
ASN #15830 Telecitygroup International Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash 2cccdf0d46cc716a2ff4e3ec6880cb02
c65022f07a6d4c7664a894b94997376ab97c0373
3be73d6d8ee2a851012267609094cf7964801ad71130f5aebe420acd910e217c
POST //add/events/v1.json?apiKey=6fc7807d-9298-4cf7-9d6f-04952ea037fc HTTP/1.1
Host: per2.segmentify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 6fc7807d-9298-4cf7-9d6f-04952ea037fc
Content-Length: 622
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Tue, 28 Mar 2023 09:47:39 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: c0d6d9efa916a39dacfc6986d35c0822
mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=1&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=293687126&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996880%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094800%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996880&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=1&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=293687126&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996880%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094800%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996880&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90635891?wmode=0&wv-part=1&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=293687126&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996880%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094800%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996880&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 272490
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 28 Mar 2023 09:47:40 GMT
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:40 GMT
last-modified: Tue, 28-Mar-2023 09:47:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=1&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=803076266&wv-type=3&browser-info=we%3A1%3Aet%3A1679996881%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094800%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996881&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=1&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=803076266&wv-type=3&browser-info=we%3A1%3Aet%3A1679996881%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094800%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996881&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90635891?wmode=0&wv-part=1&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=803076266&wv-type=3&browser-info=we%3A1%3Aet%3A1679996881%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094800%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996881&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 28 Mar 2023 09:47:40 GMT
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:40 GMT
last-modified: Tue, 28-Mar-2023 09:47:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=2&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=61443084&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996881%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094801%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996881&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=2&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=61443084&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996881%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094801%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996881&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90635891?wmode=0&wv-part=2&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=61443084&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996881%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094801%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996881&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1434
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 28 Mar 2023 09:47:41 GMT
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:41 GMT
last-modified: Tue, 28-Mar-2023 09:47:41 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=2&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=353286896&wv-type=3&browser-info=we%3A1%3Aet%3A1679996883%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094803%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996883&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=2&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=353286896&wv-type=3&browser-info=we%3A1%3Aet%3A1679996883%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094803%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996883&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90635891?wmode=0&wv-part=2&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=353286896&wv-type=3&browser-info=we%3A1%3Aet%3A1679996883%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094803%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996883&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 28 Mar 2023 09:47:42 GMT
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:42 GMT
last-modified: Tue, 28-Mar-2023 09:47:42 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=3&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=318736421&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996883%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094803%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996883&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90635891?wmode=0&wv-part=3&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=318736421&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996883%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094803%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996883&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90635891?wmode=0&wv-part=3&wv-hit=356240156&page-url=https%3A%2F%2Fwww.flo.com.tr%2F&rn=318736421&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1679996883%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230328094803%3Au%3A1679996877247286258%3Avf%3A3ue65zhww2f2brt35wtrrz%3Ast%3A1679996883&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 28 Mar 2023 09:47:42 GMT
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28-Mar-2023 09:47:42 GMT
last-modified: Tue, 28-Mar-2023 09:47:42 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=10565&v=5.14.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=onq6QF9COUZEJTJCZDc0aFFwUzAydk1yajhhRlpvUER0UkNLd1dVQjJEdnZtanlzbXhjaFdxd3ExJTJGaXJYNXN5eFB5V25ITm1qaGRyUHVyJTJGZDE1QUNLRiUyRjVCT09qSmVabHJOZXE2NjlYY2VleHBJSzFCUnFyOEdlSW1BWkxZMUVnOTZFbWVRbHh0R1F5RVphbWNqTzFiMHdKTzhTdyUzRCUzRA&tld=flo.com.tr&fu=https%253A%252F%252Fwww.flo.com.tr%252F&dtycbr=35021
178.250.0.163200 OK 0 B URL HTTP/2 sslwidget.criteo.com/event?a=10565&v=5.14.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=onq6QF9COUZEJTJCZDc0aFFwUzAydk1yajhhRlpvUER0UkNLd1dVQjJEdnZtanlzbXhjaFdxd3ExJTJGaXJYNXN5eFB5V25ITm1qaGRyUHVyJTJGZDE1QUNLRiUyRjVCT09qSmVabHJOZXE2NjlYY2VleHBJSzFCUnFyOEdlSW1BWkxZMUVnOTZFbWVRbHh0R1F5RVphbWNqTzFiMHdKTzhTdyUzRCUzRA&tld=flo.com.tr&fu=https%253A%252F%252Fwww.flo.com.tr%252F&dtycbr=35021
IP 178.250.0.163:0
GET /event?a=10565&v=5.14.1&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26site_type%3Dd&p2=e%3Dvh&p3=e%3Ddis&adce=1&bundle=onq6QF9COUZEJTJCZDc0aFFwUzAydk1yajhhRlpvUER0UkNLd1dVQjJEdnZtanlzbXhjaFdxd3ExJTJGaXJYNXN5eFB5V25ITm1qaGRyUHVyJTJGZDE1QUNLRiUyRjVCT09qSmVabHJOZXE2NjlYY2VleHBJSzFCUnFyOEdlSW1BWkxZMUVnOTZFbWVRbHh0R1F5RVphbWNqTzFiMHdKTzhTdyUzRCUzRA&tld=flo.com.tr&fu=https%253A%252F%252Fwww.flo.com.tr%252F&dtycbr=35021 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:36 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 17659922
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-zx8QrQsMJXZ8ERtA7yjPaMlCzsIc2_qUcfKb0w
54.204.147.31200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-zx8QrQsMJXZ8ERtA7yjPaMlCzsIc2_qUcfKb0w
IP 54.204.147.31:0
GET /sync?UICR=k-zx8QrQsMJXZ8ERtA7yjPaMlCzsIc2_qUcfKb0w HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:38 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
set-cookie: tvid=ea4f668a90ff4c61b22f0796a99e543e; Domain=.tremorhub.com; Expires=Wed, 27-Mar-2024 15:35:58 GMT; Path=/; Secure; SameSite=None
tv_UICR=k-zx8QrQsMJXZ8ERtA7yjPaMlCzsIc2_qUcfKb0w; Domain=.tremorhub.com; Expires=Thu, 27-Apr-2023 09:47:38 GMT; Path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=www.flo.com.tr&origin=onetag
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.flo.com.tr&origin=onetag
IP 178.250.0.157:0
GET /syncframe?topUrl=www.flo.com.tr&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:36 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: optout=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; domain=.criteo.com; path=/
uid=65d7395d-58ac-4844-9570-37f081539f61; expires=Sun, 21 Apr 2024 09:47:36 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 838503
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
gtm.flo.com.tr/g/collect?v=2&tid=G-5WB3FCGSW1>m=45je33r0&_p=544011640&_gaz=1&cid=506436982.1679996876&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_eu=EA&sst.uc=NO&sst.gcsub=region1&_s=1&sid=1679996875&sct=1&seg=0&dl=https%3A%2F%2Fwww.flo.com.tr%2F&dt=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&en=page_view&_fv=2&_nsi=1&_ss=2&ep.event_id=1679997649461_16799978008691&richsstsse
216.239.38.21200 OK 0 B URL HTTP/2 gtm.flo.com.tr/g/collect?v=2&tid=G-5WB3FCGSW1>m=45je33r0&_p=544011640&_gaz=1&cid=506436982.1679996876&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_eu=EA&sst.uc=NO&sst.gcsub=region1&_s=1&sid=1679996875&sct=1&seg=0&dl=https%3A%2F%2Fwww.flo.com.tr%2F&dt=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&en=page_view&_fv=2&_nsi=1&_ss=2&ep.event_id=1679997649461_16799978008691&richsstsse
IP 216.239.38.21:0
GET /g/collect?v=2&tid=G-5WB3FCGSW1>m=45je33r0&_p=544011640&_gaz=1&cid=506436982.1679996876&ul=en-us&sr=1280x1024&_fplc=0&ir=1&_eu=EA&sst.uc=NO&sst.gcsub=region1&_s=1&sid=1679996875&sct=1&seg=0&dl=https%3A%2F%2Fwww.flo.com.tr%2F&dt=Flo%20%7C%20Online%20Ayakkab%C4%B1%20ve%20Giyim%20Al%C4%B1%C5%9Fveri%C5%9Fi%20%C4%B0%C3%A7in%20T%C4%B1klay%C4%B1n!&en=page_view&_fv=2&_nsi=1&_ss=2&ep.event_id=1679997649461_16799978008691&richsstsse HTTP/1.1
Host: gtm.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.flo.com.tr
Connection: keep-alive
Referer: https://www.flo.com.tr/
Cookie: _gcl_au=1.1.1377183410.1679996876; jcoPageCount=1; _ga_5WB3FCGSW1=GS1.1.1679996875.1.0.1679996875.60.0.0; _ga=GA1.1.506436982.1679996876
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPLC=s1Y%2BIDi%2BQ5QA9vMkRhbTIHjsKn50408GBgA0a7uUYJplEIJ7T0FB86B1%2FUwkx%2F9If2ZPwqQ3AkVXOrHeAXBApTXm7AkiqxlNZt3sjU4VbQLAy4ZXqV%2BAEovMVRJHOg%3D%3D; Max-Age=72000; Domain=flo.com.tr; Path=/; Secure
FPID=FPID2.3.UgGFoWCzqbb9ixgXga%2F9ncO%2FIfFA5HYdSOBUIvLlEgw%3D.1679996876; Max-Age=63072000; Domain=flo.com.tr; Path=/; Secure; HttpOnly
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://www.flo.com.tr
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/betweenx/?duid=1679996877247286258
213.180.193.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/betweenx/?duid=1679996877247286258
IP 213.180.193.90:0
GET /mapuid/betweenx/?duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/betweenx/?redir-setuniq=1&duid=1679996877247286258
date: Tue, 28 Mar 2023 09:47:37 GMT
set-cookie: yandexuid=5746717451679996857; domain=.yandex.ru; path=/; expires=Fri, 25-Mar-2033 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.1.9200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.1.9:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 251722
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-1jj0kwsMJXZ8ERtA7yjPaMlCzsJuKcSm-yYPgg
185.86.139.93200 OK 0 B URL HTTP/2 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-1jj0kwsMJXZ8ERtA7yjPaMlCzsJuKcSm-yYPgg
IP 185.86.139.93:0
ASN #201081 SmartAdServer SAS
GET /redir/?partnerid=79&partneruserid=k-1jj0kwsMJXZ8ERtA7yjPaMlCzsJuKcSm-yYPgg HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=6514921654198143976; expires=Sun, 28 Apr 2024 09:47:37 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Sun, 28 Apr 2024 09:47:37 GMT; domain=smartadserver.com; path=/
csync=79:k-1jj0kwsMJXZ8ERtA7yjPaMlCzsJuKcSm-yYPgg; expires=Thu, 28 Mar 2024 09:47:37 GMT; domain=smartadserver.com; path=/
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
X-Firefox-Spdy: h2
api.flo-aws.primewidgets.com/products/recommend/flo
3.70.232.120200 OK 0 B URL HTTP/2 api.flo-aws.primewidgets.com/products/recommend/flo
IP 3.70.232.120:0
POST /products/recommend/flo HTTP/1.1
Host: api.flo-aws.primewidgets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.flo.com.tr/
Content-Type: application/json
Origin: https://www.flo.com.tr
Content-Length: 91
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 09:47:35 GMT
content-type: application/json
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
access-control-allow-methods: POST
x-cache: HITS
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.0.130:0
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 09:47:36 GMT
content-type: text/javascript
last-modified: Tue, 07 Mar 2023 15:05:20 GMT
etag: W/"640752b0-ae53"
expires: Wed, 29 Mar 2023 09:47:36 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/blueseaxcom/?duid=1679996877247286258
213.180.193.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/blueseaxcom/?duid=1679996877247286258
IP 213.180.193.90:0
GET /mapuid/blueseaxcom/?duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/blueseaxcom/?redir-setuniq=1&duid=1679996877247286258
date: Tue, 28 Mar 2023 09:47:37 GMT
set-cookie: yandexuid=2307960621679996857; domain=.yandex.ru; path=/; expires=Fri, 25-Mar-2033 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
avlsh.visilabs.net/4B7255614D4A666A78656B3D/797A6D724B41724A506B733D/Visilabs.min.js
13.107.237.53200 OK 0 B URL HTTP/2 avlsh.visilabs.net/4B7255614D4A666A78656B3D/797A6D724B41724A506B733D/Visilabs.min.js
IP 13.107.237.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /4B7255614D4A666A78656B3D/797A6D724B41724A506B733D/Visilabs.min.js HTTP/1.1
Host: avlsh.visilabs.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=8640000
content-type: text/javascript
content-encoding: br
content-md5: Ug1vXxOAea30dVCv7HnFKw==
last-modified: Tue, 04 Oct 2022 07:50:50 GMT
etag: 0x8DAA5DD27F69CE9
x-cache: TCP_HIT
x-ms-request-id: cc12741e-101e-002f-2104-5ff25c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
x-azure-ref-originshield: 0JLEiZAAAAABFNFAY8vOzQLlCDQjgDFbOQU1TMDRFREdFMTgxNgAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
x-azure-ref: 0ubciZAAAAAA0VIyNR6QIT6ABmSaCMh9WU1ZHMjBFREdFMDYyMAAzMDAwNzE3NS1iODgwLTRkYmEtODY5ZS02M2MzNjA0NTUyMjk=
date: Tue, 28 Mar 2023 09:47:36 GMT
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.js?v=1474562e
3.69.34.207200 OK 0 B URL HTTP/2 www.flo.com.tr/pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.js?v=1474562e
IP 3.69.34.207:0
GET /pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.js?v=1474562e HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 28 Mar 2023 03:18:16 GMT
etag: W/"64225c78-179929"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cacheable: NO:RG Cacheable Not Exists
age: 0
accept-ranges: bytes
x-cache: MISS
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700&display=swap
172.217.21.170200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700&display=swap
IP 172.217.21.170:0
GET /css2?family=Roboto:wght@100;300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Mar 2023 09:47:34 GMT
date: Tue, 28 Mar 2023 09:47:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/google/?partner-tag=yandex_ag&enable_guid_cm_redir=1&google_ula=7186619844&duid=1679996877247286258
213.180.193.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/google/?partner-tag=yandex_ag&enable_guid_cm_redir=1&google_ula=7186619844&duid=1679996877247286258
IP 213.180.193.90:0
GET /mapuid/google/?partner-tag=yandex_ag&enable_guid_cm_redir=1&google_ula=7186619844&duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/google/?redir-setuniq=1&partner-tag=yandex_ag&enable_guid_cm_redir=1&google_ula=7186619844&duid=1679996877247286258
date: Tue, 28 Mar 2023 09:47:37 GMT
set-cookie: yandexuid=9223490341679996857; domain=.yandex.ru; path=/; expires=Fri, 25-Mar-2033 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/operacom/?duid=1679996877247286258
213.180.193.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/operacom/?duid=1679996877247286258
IP 213.180.193.90:0
GET /mapuid/operacom/?duid=1679996877247286258 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/operacom/?redir-setuniq=1&duid=1679996877247286258
date: Tue, 28 Mar 2023 09:47:37 GMT
set-cookie: yandexuid=6565525431679996857; domain=.yandex.ru; path=/; expires=Fri, 25-Mar-2033 09:47:37 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 28 Mar 2023 09:47:37 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 28 Mar 2023 09:47:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.flo.com.tr/pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.css?v=74562e12
3.69.34.207200 OK 0 B URL HTTP/2 www.flo.com.tr/pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.css?v=74562e12
IP 3.69.34.207:0
GET /pub/assets/dist/flo-v2/app.72310f504b4a12863a21.bundle.css?v=74562e12 HTTP/1.1
Host: www.flo.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.flo.com.tr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:34 GMT
content-type: text/css
last-modified: Tue, 28 Mar 2023 03:18:16 GMT
etag: W/"64225c78-92682"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval' data: blob:
strict-transport-security: max-age=31536000
content-encoding: gzip
x-cacheable: NO:RG Cacheable Not Exists
age: 0
accept-ranges: bytes
x-cache: MISS
vary: Accept-Encoding,User-Agent
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-3BjXGAsMJXZ8ERtA7yjPaMlCzsIPGmvIMDOQPQUC90wWCkmk
52.58.184.79200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-3BjXGAsMJXZ8ERtA7yjPaMlCzsIPGmvIMDOQPQUC90wWCkmk
IP 52.58.184.79:0
GET /usersync/push?partner=criteo&partnerId=k-3BjXGAsMJXZ8ERtA7yjPaMlCzsIPGmvIMDOQPQUC90wWCkmk HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 28 Mar 2023 09:47:37 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2292ac1380-cd4d-11ed-980b-edea6ba54c30%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 11 Apr 2023 09:47:37 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2292ac1380-cd4d-11ed-980b-edea6ba54c30%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 11 Apr 2023 09:47:37 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%2292ac1380-cd4d-11ed-980b-edea6ba54c30%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 11 Apr 2023 09:47:37 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2292ac1380-cd4d-11ed-980b-edea6ba54c30%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Tue, 11 Apr 2023 09:47:37 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-3BjXGAsMJXZ8ERtA7yjPaMlCzsIPGmvIMDOQPQUC90wWCkmk%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Tue, 11 Apr 2023 09:47:37 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k--OcT_QsMJXZ8ERtA7yjPaMlCzsJMx430g5KBtw
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k--OcT_QsMJXZ8ERtA7yjPaMlCzsJMx430g5KBtw
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k--OcT_QsMJXZ8ERtA7yjPaMlCzsJMx430g5KBtw HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 09:47:37 GMT
x-fastly-to-nlb-rtt: 22455
access-control-allow-credentials: true
X-Firefox-Spdy: h2