ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash acb59b70d52fb7924fde8283038236d8
fa7b0f2d6f1e3b2defd1688c1c305ece38df9539
95e8603cc92d7ccc6c2cfa49a919e120d3ef333dadbafa732cf0ae8573cf20b8
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 16:16:18 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 29 Apr 2023 14:53:22 GMT
ETag: "fa7b0f2d6f1e3b2defd1688c1c305ece38df9539"
Last-Modified: Tue, 25 Apr 2023 14:53:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd7e3c4bb631c02-OSL
www.fl.ru/download/users/Ne/Neekita/private/orders/1640228/f_2136447f70011b3b.xlsx
185.129.100.57302 Found 0 B URL User Request GET HTTP/2 www.fl.ru/download/users/Ne/Neekita/private/orders/1640228/f_2136447f70011b3b.xlsx
IP 185.129.100.57:443
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /download/users/Ne/Neekita/private/orders/1640228/f_2136447f70011b3b.xlsx HTTP/1.1
Host: www.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: ddos-guard
date: Tue, 25 Apr 2023 16:16:18 GMT
content-type: text/html; charset=UTF-8
content-length: 0
set-cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx; Domain=.fl.ru; HttpOnly; Path=/; Expires=Wed, 24-Apr-2024 16:16:18 GMT
PHPSESSID=918b3b0395c800c91a200bc4fd1cd485; path=/; domain=www.fl.ru; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://www.fl.ru/404.php
towww: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests;, default-src 'self' fl.ru *.fl.ru flstatic-a.akamaihd.net *.facebook.com client.getinchat.com *.jivosite.com *.mail.ru *.yandex.ru *.doubleclick.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: *.fl.ru flstatic-a.akamaihd.net *.acstat.com client.getinchat.com cityadstrack.com www.cityadstrack.com artfut.com www.artut.com cdn.userecho.com connect.facebook.net *.adriver.ru counter.rambler.ru *.newrelic.com *.nr-data.net mc.yandex.ru *.doubleclick.net *.criteo.com *.criteo.net *.mail.ru pagead2.googlesyndication.com tpc.googlesyndication.com *.gstatic.com *.google.com *.google-analytics.com *.googleadservices.com *.googletagservices.com *.googletagmanager.com adservice.google.com adservice.google.ru adservice.google.com.ua *.tns-counter.ru x.cnt.my d31j93rd8oukbv.cloudfront.net *.jivosite.com; img-src data: blob: *; media-src *.fl.ru flstatic-a.akamaihd.net *.jivosite.com; style-src 'unsafe-inline' 'unsafe-eval' blob: https: 'self' *.fl.ru flstatic-a.akamaihd.net client.getinchat.com fonts.googleapis.com *.jivosite.com; font-src 'self' data: blob: https: fonts.gstatic.com an.yandex.ru yastatic.net yastat.net; frame-src 'self' *.fl.ru web.kyc.dev.homeoperator.net kyc-web.beorg.ru flstatic-a.akamaihd.net *.hcaptcha.com *.soundcloud.com fl.userecho.com *.sumsub.com *.cyberity.ru direct.yandex.ru *.yandex.md yastatic.net *.typeform.com client.getinchat.com *.criteo.com *.criteo.net *.facebook.com pagead2.googlesyndication.com tpc.googlesyndication.com *.adriver.ru *.doubleclick.net *.google.com *.google.ru *.indeed.com onesignal.com rutube.ru *.rutube.ru *.vimeo.com youtube.com *.youtube.com; child-src fl.ru *.fl.ru flstatic-a.akamaihd.net; connect-src 'self' *.fl.ru fl.ru fl.ru:* *.fl.ru:* ws://fl.ru:* wss://fl.ru:* ws://*.fl.ru:* wss://*.fl.ru:* *.hcaptcha.com err.t8h.io *.popmechanic.ru api.mindbox.ru *.ingest.sentry.io *.topmind.io *.mradx.net *.mail.ru vk.com *.vk.com ads.betweendigital.com *.bidvol.com *.buzzoola.com *.google.com *.adriver.ru *.advcake.com *.acstat.com flstatic-a.akamaihd.net *.doubleclick.net *.facebook.com pagead2.googlesyndication.com tpc.googlesyndication.com *.google-analytics.com *.mail.ru client.getinchat.com *.jivosite.com *.yandex.ru yandex.ru ymetrica1.com wss://*.jivosite.com ws://*.carrotquest.app *.carrottrack.app *.carrotquest.app *.carrotquest.io *.nr-data.net; report-uri https://flru.report-uri.com/r/d/csp/reportOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash b4cd1a910070fef78b7681bf28c6c7fa
cf9334303549164cc98c40f0e19c6542320a20a8
df0fe60323cd2a6d0fe9fc35afdc99afd43434ddd996f2b4f12b730ae2f8f6bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 16:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 0a09e2a511a2705b7631a12159f4bb80
809ae34d59c4695517221c93bb706aca5f7964a8
1973bd26c6c259506e18bcd24b0a08e8c1a5db99d682727b7ac977c938c8e00e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 16:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-W8DQCVQ
142.250.74.72200 OK 39 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-W8DQCVQ
IP 142.250.74.72:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT
File type ASCII text, with very long lines (2206)
Hash e3a1be934f8e65d191f2f0c90e61fbf4
e820e590420532666db83eadeb1a6440c237b03c
e07089e9500581e1f55bd17350ff4f65b0f3ff22eee4930f7000176e808a539a
GET /gtm.js?id=GTM-W8DQCVQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Apr 2023 16:16:19 GMT
expires: Tue, 25 Apr 2023 16:16:19 GMT
cache-control: private, max-age=900
last-modified: Tue, 25 Apr 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38986
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-RD9LL0K106
142.250.74.72200 OK 84 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-RD9LL0K106
IP 142.250.74.72:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT
File type ASCII text, with very long lines (4509)
Hash a51cfef2846066c7b27575bf033485bf
b2c2490a85985c42c981ef7cd89da54fa27741f0
2fd9c72ec956697791901ffd25ed9d2d947a27e8c8dda63dd0adc61f20faaa82
GET /gtag/js?id=G-RD9LL0K106 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Apr 2023 16:16:19 GMT
expires: Tue, 25 Apr 2023 16:16:19 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83805
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash b4cd1a910070fef78b7681bf28c6c7fa
cf9334303549164cc98c40f0e19c6542320a20a8
df0fe60323cd2a6d0fe9fc35afdc99afd43434ddd996f2b4f12b730ae2f8f6bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 16:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 0a09e2a511a2705b7631a12159f4bb80
809ae34d59c4695517221c93bb706aca5f7964a8
1973bd26c6c259506e18bcd24b0a08e8c1a5db99d682727b7ac977c938c8e00e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 25 Apr 2023 16:16:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.22 1.8 kB IP 192.124.249.22:0
Hash 71c05c0e05ba5f7009f68dc42c79f526
9560513c89b62f3f67b27b912d5bd6b16c2ebfb7
7db69f92cf967770ee9a757de2a31029ffc88a683428703ca999c0275002213d
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 25 Apr 2023 16:16:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 25 Apr 2023 10:15:08 GMT
Expires: Wed, 26 Apr 2023 10:15:08 GMT
ETag: "9560513c89b62f3f67b27b912d5bd6b16c2ebfb7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
api.mindbox.ru/scripts/v1/tracker.js
84.252.130.113200 OK 16 kB URL GET HTTP/1.1 api.mindbox.ru/scripts/v1/tracker.js
IP 84.252.130.113:443
ASN #200350 Yandex.Cloud LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.mindbox.ru
FingerprintFB:2D:FE:77:6A:7A:A9:3B:25:F4:2A:86:24:3A:B7:43:BD:64:F3:68
ValiditySat, 18 Mar 2023 07:38:29 GMT - Sat, 16 Mar 2024 16:46:52 GMT
File type ASCII text, with very long lines (30749)
Hash f12082e4d6c8d22cdd51b0b5ab8e887e
b2af78aa962b23f5943b52c324a6514b821c371f
327c8342beee47a5187ac5e63c27f355126cfad5f0ee49d138d053d8a0849a0c
GET /scripts/v1/tracker.js HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 25 Apr 2023 16:16:19 GMT
etag: W/"32cedb2fc9c64a3daf14dffecf181d00"
feature-policy: vibrate 'self'
last-modified: Mon, 24 Apr 2023 09:26:01 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 782576ec635c5c45
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
cdn.fl.ru/assets/legacy/kword.964e60821d9b2c37c1155383ed5f824f.js
193.17.93.93200 OK 223 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/kword.964e60821d9b2c37c1155383ed5f824f.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Size 223 kB (223409 bytes)
Hash 2dfb42d028444d5d0319b1d46d16d54c
5f51abbd428e88fc6f78713b9fe05c0dd3d36e0e
9c527badc5166cd23fff10386af3931980bb9b3e3a09a659afecc7bea420d716
GET /assets/legacy/kword.964e60821d9b2c37c1155383ed5f824f.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"237bc8f23aeddbe2832fbb754821701e"
last-modified: Tue, 25 Apr 2023 07:39:26 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682408365.87327
x-trans-id: 17591d7eb6f56f54
x-xss-protection: 1; mode=block
age: 16
cache: HIT
x-cached-since: 2023-04-25T07:40:22+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/assets/legacy/professions.56a4ee1c6490f0f641d5d371cc78c474.js
193.17.93.93200 OK 151 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/professions.56a4ee1c6490f0f641d5d371cc78c474.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Size 151 kB (151355 bytes)
Hash ed9c74fa5252406d472edd672a0ac942
b6dccfdc9a766a6e467d189cc602b203785d6835
024ba4b3ced5a6fe08dacc4d27324b05f9f0497c88d0d460bd90e4051eb88d2f
GET /assets/legacy/professions.56a4ee1c6490f0f641d5d371cc78c474.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"527dcc550ae83878bcf6b423e0c6cde2"
last-modified: Tue, 25 Apr 2023 07:39:30 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682408369.31979
x-trans-id: 17591d7f8463e057
x-xss-protection: 1; mode=block
age: 28
cache: HIT
x-cached-since: 2023-04-25T07:40:22+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/fonts/FiraSans-SemiBold.woff2
193.17.93.93200 OK 155 kB URL GET HTTP/2 cdn.fl.ru/fonts/FiraSans-SemiBold.woff2
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 154908, version 1.0\012- data
Size 155 kB (154908 bytes)
Hash 94061f2f769c77e515d64ed97be7dbdd
d0373e7c46d6c5a2008c2c1bab2a78a901118d4b
dd042f85d2b46b2ed60c63e94ec02cfce4df22b3326772917da27f8a5aa1981a
GET /fonts/FiraSans-SemiBold.woff2 HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://cdn.fl.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/octet-stream
content-length: 154908
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: "94061f2f769c77e515d64ed97be7dbdd"
last-modified: Wed, 19 May 2021 09:13:39 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1621415618.81318
x-trans-id: 16806cea27c0746d
x-xss-protection: 1; mode=block
age: 0
cache: HIT
x-cached-since: 2023-04-07T13:01:47+00:00
x-id: m9p-up-gc9
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.fl.ru/assets/legacy/vendors-frontend.5e26ca2c74d1a02536a06bb0ad2d9a69.js
193.17.93.93200 OK 13 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/vendors-frontend.5e26ca2c74d1a02536a06bb0ad2d9a69.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Hash 49b20db149af8ed624cfc9c6654ddf9e
b08383f7a51210447e29c05c50ce5d87a82b39de
07b619692d74dd25113fdc3ead020d2f6ba7424c93667dc3aaede23fc49213f8
GET /assets/legacy/vendors-frontend.5e26ca2c74d1a02536a06bb0ad2d9a69.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"39c4677aac5f1241ccd0d3de57aaaa0d"
last-modified: Mon, 27 Mar 2023 08:44:26 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1679906665.58822
x-trans-id: 17503a363a1f5e95
x-xss-protection: 1; mode=block
age: 22
cache: HIT
x-cached-since: 2023-03-27T08:45:11+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.userecho.com/js/widget-1.4.gz.js
138.201.250.173200 OK 221 B URL GET HTTP/2 cdn.userecho.com/js/widget-1.4.gz.js
IP 138.201.250.173:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subject*.userecho.com
Fingerprint9D:34:86:58:79:88:04:59:1C:5D:7D:98:40:E2:F2:FD:23:C7:DB:39
ValidityMon, 27 Mar 2023 00:55:56 GMT - Sun, 25 Jun 2023 00:55:55 GMT
File type ASCII text, with no line terminators
Hash 32867119beeb9110e05b28c5ec9d66d3
32b947d41e602eacf9b12c02b20be1840d088334
1ce4a88db582dd98d0da4003a019f17ec29825b6f8cd49256e8b7b3998216903
GET /js/widget-1.4.gz.js HTTP/1.1
Host: cdn.userecho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/javascript
content-length: 221
last-modified: Mon, 17 Oct 2022 19:26:38 GMT
etag: "634dac6e-dd"
content-encoding: gzip
expires: Tue, 25 Apr 2023 17:16:20 GMT
cache-control: max-age=3600, public
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
api.mindbox.ru/v1.1/customer/track-visit?version=1.0.427&transport=XmlHttpRequest
84.252.130.113200 OK 134 B URL POST HTTP/1.1 api.mindbox.ru/v1.1/customer/track-visit?version=1.0.427&transport=XmlHttpRequest
IP 84.252.130.113:443
ASN #200350 Yandex.Cloud LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.mindbox.ru
FingerprintFB:2D:FE:77:6A:7A:A9:3B:25:F4:2A:86:24:3A:B7:43:BD:64:F3:68
ValiditySat, 18 Mar 2023 07:38:29 GMT - Sat, 16 Mar 2024 16:46:52 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 699df9c5471a29cbf1230805a500dd9c
3fb7d3dd632ed46614991ddc5987216ca78f3817
53e73a24c47a8ac4cd06b9bbab8a1212826b4d093a14877057fb21e57414e3b7
POST /v1.1/customer/track-visit?version=1.0.427&transport=XmlHttpRequest HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 141
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://www.fl.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 134
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/json; charset=utf-8
date: Tue, 25 Apr 2023 16:16:19 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=c3f1d64b-c9cb-427f-bb80-b820f3223722; expires=Tue, 19 Jan 2038 00:00:00 GMT; path=/; secure; samesite=none; httponly
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/js/byendpoint/fl.ru.js?_=467344
84.252.130.113200 OK 95 B URL GET HTTP/1.1 api.mindbox.ru/js/byendpoint/fl.ru.js?_=467344
IP 84.252.130.113:443
ASN #200350 Yandex.Cloud LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.mindbox.ru
FingerprintFB:2D:FE:77:6A:7A:A9:3B:25:F4:2A:86:24:3A:B7:43:BD:64:F3:68
ValiditySat, 18 Mar 2023 07:38:29 GMT - Sat, 16 Mar 2024 16:46:52 GMT
File type ASCII text, with no line terminators
Hash 2a2c891585318bfc7fe96f8b88be2cc9
a6981c45cabf8f78b341beb96d7e6df7b104a6fa
53f8f01888f3da0c65f9e6012a4403edcea3aaed612968284f7f988842588220
GET /js/byendpoint/fl.ru.js?_=467344 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fl.ru/
Origin: https://www.fl.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 25 Apr 2023 16:16:20 GMT
etag: W/"7935f8503fb7c167fec39f5140eefd87"
feature-policy: vibrate 'self'
last-modified: Tue, 25 Apr 2023 09:52:20 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method,Origin
x-amz-request-id: ad9ba7451260e216
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
x.cnt.my/px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php
138.201.230.88301 Moved Permanently 174 B URL GET HTTP/2 x.cnt.my/px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php
IP 138.201.230.88:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subject*.x.cnt.my
Fingerprint63:44:EE:AB:C7:9B:39:E7:AB:9B:23:46:E4:57:A6:4B:68:3D:08:13
ValiditySat, 25 Mar 2023 20:05:41 GMT - Fri, 23 Jun 2023 20:05:40 GMT
File type ASCII text, with no line terminators
Hash 739ec9ce8f8e2f7850ad40fdf2872e72
aa4264e20a2a1e99a77f0d102289c0dd51e92069
177fc4ce009bac1ad89a1e6902daaf106eaad5fa19d48b95c191ce2be1a10f2d
GET /px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php HTTP/1.1
Host: x.cnt.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: text/plain; charset=utf-8
content-length: 174
cache-control: no-cache
set-cookie: xcntUt=x2112210f47de98115; Expires=Wed, 26 Apr 2023 16:16:20 GMT; Path=/; Domain=.cnt.my; Secure; SameSite=None
expires: 0
location: /px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php&rand=0.5234183499221827&xtmp=1
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
cdn.userecho.com/js/widget-script.gz.js?v=2.5.6
138.201.250.173200 OK 8.9 kB URL GET HTTP/2 cdn.userecho.com/js/widget-script.gz.js?v=2.5.6
IP 138.201.250.173:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subject*.userecho.com
Fingerprint9D:34:86:58:79:88:04:59:1C:5D:7D:98:40:E2:F2:FD:23:C7:DB:39
ValidityMon, 27 Mar 2023 00:55:56 GMT - Sun, 25 Jun 2023 00:55:55 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (30665), with no line terminators
Hash f1727b9f2ab3fe9478365448ff0bb097
8056563221f0369a02be47f8dcd0d4d2a77561dc
355de013364d8efbc67e443b73950aba9f43ae52945a47d228b002b20253cc9b
GET /js/widget-script.gz.js?v=2.5.6 HTTP/1.1
Host: cdn.userecho.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/javascript
content-length: 8872
last-modified: Mon, 17 Oct 2022 19:26:38 GMT
etag: "634dac6e-22a8"
content-encoding: gzip
expires: Wed, 24 Apr 2024 16:16:20 GMT
cache-control: max-age=31536000, public
cross-origin-resource-policy: cross-origin
X-Firefox-Spdy: h2
api.mindbox.ru/scripts/modules/webpush.js?version=1.0.427
84.252.130.113200 OK 36 kB URL GET HTTP/1.1 api.mindbox.ru/scripts/modules/webpush.js?version=1.0.427
IP 84.252.130.113:443
ASN #200350 Yandex.Cloud LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGoDaddy.com, Inc.
Subject*.mindbox.ru
FingerprintFB:2D:FE:77:6A:7A:A9:3B:25:F4:2A:86:24:3A:B7:43:BD:64:F3:68
ValiditySat, 18 Mar 2023 07:38:29 GMT - Sat, 16 Mar 2024 16:46:52 GMT
File type ASCII text, with very long lines (8179)
Hash b77f9f6f131ef827cf2a29027e52e014
407914e048ff5b053fce44420997fba818bc096a
d6101acc82c281b4e95e187998130a0a9a1cbc4d9a3fff0bf5f2bf57b98310e9
GET /scripts/modules/webpush.js?version=1.0.427 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 25 Apr 2023 16:16:20 GMT
etag: W/"16e1abcb492e117938591e2dc397b933"
feature-policy: vibrate 'self'
last-modified: Mon, 24 Apr 2023 09:26:01 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 7463eef3cb7c9f3c
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
x.cnt.my/px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php&rand=0.5234183499221827&xtmp=1
138.201.230.88200 OK 35 B URL GET HTTP/2 x.cnt.my/px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php&rand=0.5234183499221827&xtmp=1
IP 138.201.230.88:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subject*.x.cnt.my
Fingerprint63:44:EE:AB:C7:9B:39:E7:AB:9B:23:46:E4:57:A6:4B:68:3D:08:13
ValiditySat, 25 Mar 2023 20:05:41 GMT - Fri, 23 Jun 2023 20:05:40 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df16d33739defe9bda1f4c45d36fd7a7
ff7489a6dd9ab0d9a4b084315f5b9d77cf9fdf50
90252ef0aa9e3d36c861bbeaa1bd57b7f855333edf2957ab9473838a52e2dd7f
GET /px/?r=0.6466605427685913&dom=www.fl.ru&tz=0&sw=1280&sh=1024&ow=1280&oh=1024&iw=1280&ih=1024&scd=24&ifr=1&url=https%3A%2F%2Fwww.fl.ru%2F404.php&rand=0.5234183499221827&xtmp=1 HTTP/1.1
Host: x.cnt.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fl.ru/
Connection: keep-alive
Cookie: xcntUt=x2112210f47de98115
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: image/gif; charset=utf-8
content-length: 35
cache-control: no-cache,max-age=0,must-revalidate, no-cache
access-control-allow-origin: *
set-cookie: xcntIDR=y28569425215743172; Expires=Wed, 24 Apr 2024 16:16:20 GMT; Path=/; Domain=fl.ru; Secure; SameSite=None
xcntID=y28569425215743172; Expires=Wed, 24 Apr 2024 16:16:20 GMT; Path=/; Domain=.cnt.my; Secure; SameSite=None
xcntUt=x2112210f47de98115; Expires=Tue, 25 Apr 2023 16:16:20 GMT; Path=/; Domain=.cnt.my; Secure; SameSite=None
expires: 0
pragma: no-cache
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
www.fl.ru/scripts/mindbox/mindbox-services-worker.js?messagingSenderId=1049598945361&version=1.19.0
185.129.100.57 67 B URL www.fl.ru/scripts/mindbox/mindbox-services-worker.js?messagingSenderId=1049598945361&version=1.19.0
IP 185.129.100.57:0
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Hash de73dd54a4154c16e731f99d6dd0d826
3ea4134618a486741e2f66b8c50c4831110fb585
dd6699e6520d4ce7094b2ff50786f0b7775082703eefc494afa60ee2d7e66942
GET /scripts/mindbox/mindbox-services-worker.js?messagingSenderId=1049598945361&version=1.19.0 HTTP/1.1
Host: www.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx; PHPSESSID=918b3b0395c800c91a200bc4fd1cd485; _ga_cid=undefined; _ga_RD9LL0K106=GS1.1.1682439624.1.0.1682439624.0.0.0; _ga=GA1.1.1826523262.1682439625; mindboxDeviceUUID=c3f1d64b-c9cb-427f-bb80-b820f3223722; directCrm-session=%7B%22deviceGuid%22%3A%22c3f1d64b-c9cb-427f-bb80-b820f3223722%22%7D; uechat_3_pages_count=1; uechat_3_first_time=1682439624873
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/javascript
content-length: 67
last-modified: Fri, 11 Feb 2022 14:51:41 GMT
etag: "43-5d7bf346eb1d1"
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
service-worker-allowed: /
X-Firefox-Spdy: h2
st.fl.ru/images/favicons/apple-touch-icon-152x152.png
92.53.68.16200 OK 1.0 kB URL GET HTTP/2 st.fl.ru/images/favicons/apple-touch-icon-152x152.png
IP 92.53.68.16:443
ASN #49505 OOO Network of data-centers Selectel
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Hash d3b4a5910598081b5321e23de73fdb38
a442eff030e2a662f5d7fc3bec872fec4117afce
95107e3c7f55714ca131a2bf2e0af000879406418f92958219912fb7b2c19ccb
GET /images/favicons/apple-touch-icon-152x152.png HTTP/1.1
Host: st.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx; _ga_RD9LL0K106=GS1.1.1682439624.1.0.1682439624.0.0.0; _ga=GA1.1.1826523262.1682439625; mindboxDeviceUUID=c3f1d64b-c9cb-427f-bb80-b820f3223722; directCrm-session=%7B%22deviceGuid%22%3A%22c3f1d64b-c9cb-427f-bb80-b820f3223722%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
content-length: 1034
content-type: image/png
etag: "d3b4a5910598081b5321e23de73fdb38"
last-modified: Tue, 21 Jul 2020 13:44:49 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1595339088.62472
x-trans-id: 1623c872d94634d4
x-xss-protection: 1; mode=block
date: Tue, 25 Apr 2023 12:41:31 GMT
age: 12889
X-Firefox-Spdy: h2
www.fl.ru/favicon.ico
185.129.100.57200 OK 4.5 kB IP 185.129.100.57:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type MS Windows icon resource - 1 icon, 33x32, 32 bits/pixel\012- data
Hash 2170bd32702d0f420e0f96220e16eb78
6c287f0dcdbf2259710cf6e3409705be4da89a11
2d193279addc3106f20379e618d628f24908c43eff7a502885f3ad45ddc55160
GET /favicon.ico HTTP/1.1
Host: www.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/404.php
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx; PHPSESSID=918b3b0395c800c91a200bc4fd1cd485; _ga_cid=undefined; _ga_RD9LL0K106=GS1.1.1682439624.1.0.1682439624.0.0.0; _ga=GA1.1.1826523262.1682439625; mindboxDeviceUUID=c3f1d64b-c9cb-427f-bb80-b820f3223722; directCrm-session=%7B%22deviceGuid%22%3A%22c3f1d64b-c9cb-427f-bb80-b820f3223722%22%7D; uechat_3_pages_count=1; uechat_3_first_time=1682439624873
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: image/x-icon
content-length: 4542
last-modified: Fri, 02 Oct 2020 14:04:51 GMT
etag: "5f773383-11be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
towww: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: upgrade-insecure-requests;, default-src 'self' fl.ru *.fl.ru flstatic-a.akamaihd.net *.facebook.com client.getinchat.com *.jivosite.com *.mail.ru *.yandex.ru *.doubleclick.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: *.fl.ru flstatic-a.akamaihd.net *.acstat.com client.getinchat.com cityadstrack.com www.cityadstrack.com artfut.com www.artut.com cdn.userecho.com connect.facebook.net *.adriver.ru counter.rambler.ru *.newrelic.com *.nr-data.net mc.yandex.ru *.doubleclick.net *.criteo.com *.criteo.net *.mail.ru pagead2.googlesyndication.com tpc.googlesyndication.com *.gstatic.com *.google.com *.google-analytics.com *.googleadservices.com *.googletagservices.com *.googletagmanager.com adservice.google.com adservice.google.ru adservice.google.com.ua *.tns-counter.ru x.cnt.my d31j93rd8oukbv.cloudfront.net *.jivosite.com; img-src data: blob: *; media-src *.fl.ru flstatic-a.akamaihd.net *.jivosite.com; style-src 'unsafe-inline' 'unsafe-eval' blob: https: 'self' *.fl.ru flstatic-a.akamaihd.net client.getinchat.com fonts.googleapis.com *.jivosite.com; font-src 'self' data: blob: https: fonts.gstatic.com an.yandex.ru yastatic.net yastat.net; frame-src 'self' *.fl.ru web.kyc.dev.homeoperator.net kyc-web.beorg.ru flstatic-a.akamaihd.net *.hcaptcha.com *.soundcloud.com fl.userecho.com *.sumsub.com *.cyberity.ru direct.yandex.ru *.yandex.md yastatic.net *.typeform.com client.getinchat.com *.criteo.com *.criteo.net *.facebook.com pagead2.googlesyndication.com tpc.googlesyndication.com *.adriver.ru *.doubleclick.net *.google.com *.google.ru *.indeed.com onesignal.com rutube.ru *.rutube.ru *.vimeo.com youtube.com *.youtube.com; child-src fl.ru *.fl.ru flstatic-a.akamaihd.net; connect-src 'self' *.fl.ru fl.ru fl.ru:* *.fl.ru:* ws://fl.ru:* wss://fl.ru:* ws://*.fl.ru:* wss://*.fl.ru:* *.hcaptcha.com err.t8h.io *.popmechanic.ru api.mindbox.ru *.ingest.sentry.io *.topmind.io *.mradx.net *.mail.ru vk.com *.vk.com ads.betweendigital.com *.bidvol.com *.buzzoola.com *.google.com *.adriver.ru *.advcake.com *.acstat.com flstatic-a.akamaihd.net *.doubleclick.net *.facebook.com pagead2.googlesyndication.com tpc.googlesyndication.com *.google-analytics.com *.mail.ru client.getinchat.com *.jivosite.com *.yandex.ru yandex.ru ymetrica1.com wss://*.jivosite.com ws://*.carrotquest.app *.carrottrack.app *.carrotquest.app *.carrotquest.io *.nr-data.net; report-uri https://flru.report-uri.com/r/d/csp/reportOnly
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226 939 B URL ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash cafa95eda3fcae79e7f36fda20e2ee85
86763df12232d8d25f5c70bce99623a6093d05de
8bb0629d53ca9ef50fd19955b9f6308169c8b1f1906b00514952246d8dbf266f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 16:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 29 Apr 2023 13:56:38 GMT
ETag: "86763df12232d8d25f5c70bce99623a6093d05de"
Last-Modified: Tue, 25 Apr 2023 13:56:39 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3037
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd7e3d27ab91c02-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 4b5a863fb97a7aba0fd236c22dcf6b28
884cf92ccb95eb57556d5d16bbf97337443e44af
7ede3ede6d33635056d28dbfd799e707eea54cc3793efec13f0885c5abeb23e9
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 16:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 29 Apr 2023 14:54:46 GMT
ETag: "884cf92ccb95eb57556d5d16bbf97337443e44af"
Last-Modified: Tue, 25 Apr 2023 14:54:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2658
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd7e3d27d6eb527-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash b78483c0988fc1e894f499dcfbe80c84
88aa21abd0579b9abb0b691a3b71402edabd08d8
85f1babc546532a1ce482f3b9b824223aded0ab3458e7689b2c1561a5a7e9b6c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 16:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 29 Apr 2023 13:30:59 GMT
ETag: "88aa21abd0579b9abb0b691a3b71402edabd08d8"
Last-Modified: Tue, 25 Apr 2023 13:31:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2745
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd7e3d27a000b65-OSL
content.adriver.ru/plugins/autoUpdate.adriver.js
217.16.18.206200 OK 5.2 kB URL GET HTTP/2 content.adriver.ru/plugins/autoUpdate.adriver.js
IP 217.16.18.206:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.adriver.ru
Fingerprint82:78:B9:EF:52:4A:3F:23:B9:6C:CA:C9:AE:F2:20:5F:96:74:96:4C
ValidityTue, 07 Mar 2023 06:24:27 GMT - Sun, 07 Apr 2024 06:24:26 GMT
File type ASCII text, with very long lines (338), with CRLF line terminators
Hash 59b151ba884c871fc20140a26bdfd282
6a7ec818b0209ffab3fe253929dbbde9635aace0
141f4ece65bc087908202669708c340e43c6a45c3d3be773e0cade65cb01e910
GET /plugins/autoUpdate.adriver.js HTTP/1.1
Host: content.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/x-javascript
content-length: 5205
last-modified: Mon, 24 Apr 2023 15:34:28 GMT
etag: "6446a184-1455"
expires: Tue, 25 Apr 2023 17:16:20 GMT
cache-control: max-age=3600
accept-ranges: bytes
X-Firefox-Spdy: h2
api.mindbox.ru/scripts/service-worker.js
84.252.130.113 32 kB URL api.mindbox.ru/scripts/service-worker.js
IP 84.252.130.113:0
ASN #200350 Yandex.Cloud LLC
Certificate IssuerGoDaddy.com, Inc.
Subject*.mindbox.ru
FingerprintFB:2D:FE:77:6A:7A:A9:3B:25:F4:2A:86:24:3A:B7:43:BD:64:F3:68
ValiditySat, 18 Mar 2023 07:38:29 GMT - Sat, 16 Mar 2024 16:46:52 GMT
File type ASCII text, with very long lines (6364)
Hash ef2fb1cf4170b90d0ad961a0b06c1cc4
584cd31d279833a563316bfbdef57d4dfc51a439
a9c1d0e6fd768a869ee584b6eccbbccf5a5931a7e18d53e972807e32c449e552
GET /scripts/service-worker.js HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 25 Apr 2023 16:16:20 GMT
etag: W/"219534039f3b7a5fc63368e8df4c3902"
feature-policy: vibrate 'self'
last-modified: Mon, 24 Apr 2023 09:26:01 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 8a055e20d57affc5
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226 940 B URL ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 047a58c6731af424ce9f00f780eaf63a
c926384f23efa2dc0ba40dae41d90dcab629a88b
8ee6d7d659b0bdd9fc89918470c6220c02f0858fbae0c394da1ef8e2b099153d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 25 Apr 2023 16:16:20 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Sat, 29 Apr 2023 14:42:48 GMT
ETag: "c926384f23efa2dc0ba40dae41d90dcab629a88b"
Last-Modified: Tue, 25 Apr 2023 14:42:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2708
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7bd7e3d30b581c02-OSL
vk.com/js/api/openapi.js?168
87.240.132.78200 OK 23 kB URL GET HTTP/2 vk.com/js/api/openapi.js?168
IP 87.240.132.78:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.vk.com
Fingerprint6B:39:D3:5A:FA:5A:EE:80:1A:D7:F6:77:30:52:CF:2B:52:A1:82:09
ValidityThu, 16 Mar 2023 17:17:11 GMT - Tue, 20 Feb 2024 10:00:00 GMT
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?168 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: kittenx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Sat, 29 Apr 2023 16:16:20 GMT
cache-control: max-age=345600
x-frontend: front226205
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
93.158.134.119200 OK 74 kB URL GET HTTP/2 mc.yandex.ru/metrika/tag.js
IP 93.158.134.119:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (553)
Hash 6a934adb182cad91c573ffaf6459e79f
c14b131ffdab1c886e876f82012fbc41d103cd99
c5c014b3a36bcb6cb12510af211bbdc06287099cbb06c6411bcba6eb677eba66
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 74470
date: Tue, 25 Apr 2023 16:16:20 GMT
access-control-allow-origin: *
etag: "64425ee6-122e6"
expires: Tue, 25 Apr 2023 17:16:20 GMT
last-modified: Fri, 21 Apr 2023 13:01:10 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423
95.163.52.67302 Found 0 B URL GET HTTP/2 top-fwz1.mail.ru/counter?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423
IP 95.163.52.67:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423
set-cookie: FTID=1RMYgQ0tkIIH:1682439380:3297068:::; path=/; expires=Thu, 25-Apr-24 16:16:20 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
vk.com/rtrg?p=VK-RTRG-770158-3bPSa&metatag_url=https%3A%2F%2Fwww.fl.ru%2F404.php&metatag_title=404%20Not%20Found
87.240.132.78 65 B URL GET vk.com/rtrg?p=VK-RTRG-770158-3bPSa&metatag_url=https%3A%2F%2Fwww.fl.ru%2F404.php&metatag_title=404%20Not%20Found
IP 87.240.132.78:0
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.vk.com
Fingerprint6B:39:D3:5A:FA:5A:EE:80:1A:D7:F6:77:30:52:CF:2B:52:A1:82:09
ValidityThu, 16 Mar 2023 17:17:11 GMT - Tue, 20 Feb 2024 10:00:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ec4341fe3a8b2c4880fbfe0ef9cde34f
a0947414eb426b2939ca1a05fc870763f6bfc63f
01229c58f8015c623259e635969b8520945e2e0de1927a1375d48ad0ce915463
GET /rtrg?p=VK-RTRG-770158-3bPSa&metatag_url=https%3A%2F%2Fwww.fl.ru%2F404.php&metatag_title=404%20Not%20Found HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Tue, 25 Apr 2023 16:16:21 GMT
content-type: image/gif
content-length: 65
x-powered-by: KPHP/7.4.113707
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Fri, 26 Apr 2024 19:00:51 GMT; path=/; domain=.vk.com
remixstlid=9092866635841187033_MjrzD2tNsIpFnnfuS5Uq1dWZzbqFpun2aThOPExN1nT; expires=Wed, 24 Apr 2024 16:16:21 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front226205
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423
95.163.52.67200 OK 43 B URL GET HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423
IP 95.163.52.67:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;title=404%20Not%20Found;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;_=0.26986191888831423 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fl.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:21 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIH:1682439381:3297068:::; path=/; expires=Thu, 25-Apr-24 16:16:21 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
mc.yandex.ru/watch/6051055/1?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
93.158.134.119200 OK 400 B URL GET HTTP/2 mc.yandex.ru/watch/6051055/1?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 93.158.134.119:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash a56325d8eff84b6576288e2971b79794
2a8097c7f85ce193bace56c074be24905bace358
0cc51e11455554d77991f75fb55faa2c627c99b8fe22dc8f45d74f2af3311cf0
GET /watch/6051055/1?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fl.ru
Referer: https://www.fl.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Tue, 25 Apr 2023 16:16:21 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://www.fl.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 25-Apr-2023 16:16:21 GMT
last-modified: Tue, 25-Apr-2023 16:16:21 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
x.cnt.my/async/parser/www.fl.ru.js?r=4.03&dom=www.fl.ru
138.201.230.88200 OK 1.8 kB URL GET HTTP/2 x.cnt.my/async/parser/www.fl.ru.js?r=4.03&dom=www.fl.ru
IP 138.201.230.88:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subject*.x.cnt.my
Fingerprint63:44:EE:AB:C7:9B:39:E7:AB:9B:23:46:E4:57:A6:4B:68:3D:08:13
ValiditySat, 25 Mar 2023 20:05:41 GMT - Fri, 23 Jun 2023 20:05:40 GMT
Hash 833eb314c0e603df9087b5b8f3faa652
a9276836d9d8faf3d69e162628ad8b80de619bcf
6e1d8510ec3abdc82d80fe976e198d70318f9581fcd8bc2225d5b369f6407f0c
GET /async/parser/www.fl.ru.js?r=4.03&dom=www.fl.ru HTTP/1.1
Host: x.cnt.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/javascript
last-modified: Tue, 14 Feb 2023 17:51:39 GMT
etag: W/"63ebca2b-1769"
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL GET HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 25 Apr 2023 16:16:21 GMT
access-control-allow-origin: *
etag: "64425ee6-2b"
expires: Tue, 25 Apr 2023 17:16:21 GMT
accept-ranges: bytes
last-modified: Fri, 21 Apr 2023 13:01:10 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
top-fwz1.mail.ru/tracker?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;nt=0/0/1682439622784/////192/192/192/192/192/192/195/299/327/528/1751/1807/1875/3041/3041/;_=0.5436826632475664;e=RT/load;et=1682439625829
95.163.52.67200 OK 43 B URL GET HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;nt=0/0/1682439622784/////192/192/192/192/192/192/195/299/327/528/1751/1807/1875/3041/3041/;_=0.5436826632475664;e=RT/load;et=1682439625829
IP 95.163.52.67:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=3297068;u=https%3A//www.fl.ru/404.php;st=1682439624498;s=1280*1024;vp=1280*1024;touch=0;hds=1;flash=;sid=52b68d13b333d8a1;ver=60;nt=0/0/1682439622784/////192/192/192/192/192/192/195/299/327/528/1751/1807/1875/3041/3041/;_=0.5436826632475664;e=RT/load;et=1682439625829 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:21 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIH:1682439381:3297068:::; path=/; expires=Thu, 25-Apr-24 16:16:21 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
citydsp.com/dsp?h=www.fl.ru&r=0.20739702394007742
62.138.6.193200 OK 300 B URL GET HTTP/1.1 citydsp.com/dsp?h=www.fl.ru&r=0.20739702394007742
IP 62.138.6.193:443
ASN #8972 Host Europe GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subjectcitydsp.com
FingerprintBF:3F:A6:8C:56:D5:D0:C3:AA:6F:E8:CC:10:90:0D:7A:74:3A:23:1F
ValiditySat, 25 Mar 2023 14:15:51 GMT - Fri, 23 Jun 2023 14:15:50 GMT
File type ASCII text, with very long lines (540), with no line terminators
Hash e249bb83554c5077e442d453c091defe
23de50ad6cc57487e7cb4bd500d14be025b310ad
71a96e9ffae1b3c27a03b8a810f2703ab566b204d53dc95ae3d13691910cd4cf
GET /dsp?h=www.fl.ru&r=0.20739702394007742 HTTP/1.1
Host: citydsp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 16:16:22 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: no-cache
Cache-Control: no-store, no-cache, private
Set-Cookie: userId=10209699266; path=/; HttpOnly; Secure; SameSite=none; expires=Sun, 22 Oct 2023 16:16:22 GMT; httponly
Content-Encoding: gzip
cdn.fl.ru/assets/legacy/entry-client-vendor.fdc24caf6e3dc2f79ca17afa644db2f2.js
193.17.93.93200 OK 301 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/entry-client-vendor.fdc24caf6e3dc2f79ca17afa644db2f2.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Size 301 kB (300713 bytes)
Hash c7bb05fc9f22dbf10cb56a165fdb0f6f
00d46d722de2d2829ff5c2959cf4d264d317cf1f
5f166d07823f6fa76b1e20cd250aa828449036b611a1c6a51c8bfbfd5f508bf1
GET /assets/legacy/entry-client-vendor.fdc24caf6e3dc2f79ca17afa644db2f2.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"56cc0b36342034f124e7e88588d81527"
last-modified: Mon, 24 Apr 2023 10:44:25 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682333064.50987
x-trans-id: 1758d9023ff2c316
x-xss-protection: 1; mode=block
age: 46
cache: HIT
x-cached-since: 2023-04-24T10:46:10+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
stikilo.com/start?r=0.8822506389627689
104.248.36.113200 OK 20 B URL GET HTTP/1.1 stikilo.com/start?r=0.8822506389627689
IP 104.248.36.113:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subjectakimilo.com
Fingerprint60:AC:08:21:30:5D:F0:8D:A3:08:77:68:67:73:4F:1E:52:01:58:35
ValiditySat, 15 Apr 2023 08:34:37 GMT - Fri, 14 Jul 2023 08:34:36 GMT
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /start?r=0.8822506389627689 HTTP/1.1
Host: stikilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 16:16:22 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: no-cache
Cache-Control: no-store, no-cache, private
Content-Encoding: gzip
retagro.com/init?r=0.014559940930662263
85.25.203.29200 OK 20 B URL GET HTTP/1.1 retagro.com/init?r=0.014559940930662263
IP 85.25.203.29:443
ASN #8972 Host Europe GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subjectadprety.com
FingerprintD8:B9:73:89:5C:BD:2F:B2:E9:CE:0B:77:76:CE:8F:6C:8F:CA:94:2B
ValiditySat, 25 Mar 2023 14:15:34 GMT - Fri, 23 Jun 2023 14:15:33 GMT
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /init?r=0.014559940930662263 HTTP/1.1
Host: retagro.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 25 Apr 2023 16:16:22 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Pragma: no-cache
Cache-Control: no-store, no-cache, private
Content-Encoding: gzip
mc.yandex.ru/watch/6051055/1?page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&hittoken=1682439381_eb9fd6cc8289858e852797ebbba5eba6bd7d172e29d16b16b0ce4ed08e2d4711&browser-info=pa%3A1%3Aar%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439626%3Ac%3A1%3Arn%3A488633208%3Arqn%3A2%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Arqnl%3A1%3Ast%3A1682439626&t=gdpr(14)mc(p-1-up-1)clc(0-0-0)rqnt(2)aw(1)ti(2)
93.158.134.119200 OK 43 B URL POST HTTP/2 mc.yandex.ru/watch/6051055/1?page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&hittoken=1682439381_eb9fd6cc8289858e852797ebbba5eba6bd7d172e29d16b16b0ce4ed08e2d4711&browser-info=pa%3A1%3Aar%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439626%3Ac%3A1%3Arn%3A488633208%3Arqn%3A2%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Arqnl%3A1%3Ast%3A1682439626&t=gdpr(14)mc(p-1-up-1)clc(0-0-0)rqnt(2)aw(1)ti(2)
IP 93.158.134.119:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/6051055/1?page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&hittoken=1682439381_eb9fd6cc8289858e852797ebbba5eba6bd7d172e29d16b16b0ce4ed08e2d4711&browser-info=pa%3A1%3Aar%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439626%3Ac%3A1%3Arn%3A488633208%3Arqn%3A2%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Arqnl%3A1%3Ast%3A1682439626&t=gdpr(14)mc(p-1-up-1)clc(0-0-0)rqnt(2)aw(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 52
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 25 Apr 2023 16:16:25 GMT
access-control-allow-origin: https://www.fl.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 25-Apr-2023 16:16:25 GMT
last-modified: Tue, 25-Apr-2023 16:16:25 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-RD9LL0K106&l=dataLayer&cx=c
142.250.74.72200 OK 246 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-RD9LL0K106&l=dataLayer&cx=c
IP 142.250.74.72:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint07:22:19:79:30:9E:4C:35:4E:21:BD:55:7D:44:2F:A9:71:9E:4C:AA
ValidityMon, 03 Apr 2023 08:16:11 GMT - Mon, 26 Jun 2023 08:16:10 GMT
File type ASCII text, with very long lines (4509)
Size 246 kB (246278 bytes)
Hash 86282fda8a73f618de3a9005dac4e3da
73d319ddce40e9b8b620b8820109b8476a774e6a
ca31b20682aeaaf92500774bec147edb76f1d6f73a74406ed7f6ae75e4195d9f
GET /gtag/js?id=G-RD9LL0K106&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.googletagmanager.com
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 25 Apr 2023 16:16:20 GMT
expires: Tue, 25 Apr 2023 16:16:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83837
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.fl.ru/assets/legacy/vendors.c95ac5851192a036c0a893eb9023ab60.css
193.17.93.93200 OK 1.1 MB URL GET HTTP/2 cdn.fl.ru/assets/legacy/vendors.c95ac5851192a036c0a893eb9023ab60.css
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Size 1.1 MB (1122973 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/legacy/vendors.c95ac5851192a036c0a893eb9023ab60.css HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"c95ac5851192a036c0a893eb9023ab60"
last-modified: Mon, 24 Apr 2023 10:44:26 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682333065.74747
x-trans-id: 1758d90289aef079
x-xss-protection: 1; mode=block
age: 45
cache: HIT
x-cached-since: 2023-04-24T10:46:10+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
x.cnt.my/async/track/?r=0.3136070805235873
138.201.230.88200 OK 2.6 kB URL GET HTTP/2 x.cnt.my/async/track/?r=0.3136070805235873
IP 138.201.230.88:443
ASN #24940 Hetzner Online GmbH
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subject*.x.cnt.my
Fingerprint63:44:EE:AB:C7:9B:39:E7:AB:9B:23:46:E4:57:A6:4B:68:3D:08:13
ValiditySat, 25 Mar 2023 20:05:41 GMT - Fri, 23 Jun 2023 20:05:40 GMT
File type ASCII text, with very long lines (2857), with no line terminators
Hash 5a9133f0b4f0e6fb9268bed691304fd7
38ad152e9dd473653f7debc1ad450ff8aeaa1e61
65864b4a6b674ef989d00b2c494057ea30f0c15b699529628b0578d76bc4109e
GET /async/track/?r=0.3136070805235873 HTTP/1.1
Host: x.cnt.my
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/javascript
last-modified: Mon, 18 Jul 2022 14:03:34 GMT
etag: W/"62d56836-a11"
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/fonts/FiraSans-Regular.woff2
193.17.93.93200 OK 146 kB URL GET HTTP/2 cdn.fl.ru/fonts/FiraSans-Regular.woff2
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type Web Open Font Format (Version 2), TrueType, length 145720, version 1.0\012- data
Size 146 kB (145720 bytes)
Hash cfa5be9e756ebdef4ba6996c6a70c696
ab9f4b623d19e8eb4af2d1458f6b80753a48c1c8
4f5cf570037be6c36dfa12bd31e4cce13897e9fc56268213ebba235f2980d456
GET /fonts/FiraSans-Regular.woff2 HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://cdn.fl.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: application/octet-stream
content-length: 145720
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: "cfa5be9e756ebdef4ba6996c6a70c696"
last-modified: Wed, 19 May 2021 09:13:39 GMT
x-timestamp: 1621415618.77107
x-trans-id: 16806cea252d00d6
x-xss-protection: 1; mode=block
age: 0
cache: HIT
x-cached-since: 2023-04-20T20:34:07+00:00
x-id: m9p-up-gc9
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/6051055?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found 400 B URL GET HTTP/2 mc.yandex.ru/watch/6051055?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 93.158.134.119:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subjectmc.yandex.ru
Fingerprint7A:70:D1:52:BA:7F:21:BF:33:10:84:91:DB:A0:28:85:23:1D:7A:20
ValidityFri, 17 Mar 2023 21:01:01 GMT - Sun, 27 Aug 2023 20:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/6051055?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: /watch/6051055/1?wmode=7&page-url=https%3A%2F%2Fwww.fl.ru%2F404.php&charset=utf-8&uah=che%0A0&browser-info=pv%3A1%3Avf%3A10ym9geic8i73flogxj2lsv%3Afp%3A1797%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A1030%3Acn%3A1%3Adp%3A0%3Als%3A633553529668%3Ahid%3A97011783%3Az%3A0%3Ai%3A20230425162025%3Aet%3A1682439625%3Ac%3A1%3Arn%3A1032358598%3Arqn%3A1%3Au%3A168243962590310941%3Aw%3A1280x1024%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C104%2C28%2C191%2C0%2C%2C1425%2C68%2C%2C%2C%2C1807%3Aco%3A0%3Acpf%3A1%3Ans%3A1682439622784%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-0ed8ce9e1e39cec802dafc59181dfc61-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-13a84b69804b2bddf31f36f8f1aa466f-61b9878bbce18de73aafc8582a198c0c-5274424d88b08056c17f1a11bd3f2aff-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-861578da3666aba98730162cd5ac0199%3Arqnl%3A1%3Ast%3A1682439625%3At%3A404%20Not%20Found&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Tue, 25 Apr 2023 16:16:21 GMT
access-control-allow-origin: https://www.fl.ru
set-cookie: yabs-sid=2229234301682439381; Path=/; SameSite=None; Secure
i=7kOA29DwE8ZqFVxa9U/XqngA78IjhukZv5t+It2R2LGgVUHw6vyCuRfhp/+a43TY5ZZSA2zVNfC27CHPowEHIvdHLM4=; Expires=Fri, 22-Apr-2033 16:16:19 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6509741621682439381; Expires=Fri, 22-Apr-2033 16:16:19 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yuidss=6509741621682439381; Expires=Wed, 24-Apr-2024 16:16:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1713975381.yc.1682439381#1713975381.yrts.1682439381#1713975381.yrtsi.1682439381; Expires=Wed, 24-Apr-2024 16:16:21 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 25-Apr-2023 16:16:21 GMT
last-modified: Tue, 25-Apr-2023 16:16:21 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
185.129.100.57404 Not Found 84 kB URL User Request GET HTTP/2 IP 185.129.100.57:443
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /404.php HTTP/1.1
Host: www.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx; PHPSESSID=918b3b0395c800c91a200bc4fd1cd485
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 25 Apr 2023 16:16:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/assets/icons.svg
193.17.93.93200 OK 477 kB URL GET HTTP/2 cdn.fl.ru/assets/icons.svg
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 477 kB (477025 bytes)
Hash bc24fb27a9100ee86b09dcf7a5c43e2a
8fcd683726267c83574d872df8634a02de87a86a
92ba4e11335dffd651ab626c562142561c9de48591855f8d9bdd8ffa1b882968
GET /assets/icons.svg HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:20 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"bc24fb27a9100ee86b09dcf7a5c43e2a"
last-modified: Thu, 13 Apr 2023 11:39:18 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1681385957.79740
x-trans-id: 17557b9ec8cca0fa
x-xss-protection: 1; mode=block
age: 278
cache: HIT
x-cached-since: 2023-04-13T12:00:54+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:300,400,500,700&display=swap&subset=cyrillic-ext
142.250.74.106200 OK 7.5 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Montserrat:300,400,500,700&display=swap&subset=cyrillic-ext
IP 142.250.74.106:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT
File type ASCII text, with very long lines (7696), with no line terminators
Hash 1b1708225cc110bae1e982e2f2278b9b
f409cd48ea8f0ae0546ab8024a10bdd2704223e2
9641000aad3112c9b95b2ced386390b82106bb951df6cdb3c6feadd1761787fa
GET /css?family=Montserrat:300,400,500,700&display=swap&subset=cyrillic-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: fonts.googleapis.com
Connection: keep-alive
Referer: https://cdn.fl.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Apr 2023 16:16:19 GMT
date: Tue, 25 Apr 2023 16:16:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Montserrat:300,400,500,700&display=swap&subset=cyrillic-ext
142.250.74.106200 OK 7.5 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,500,700&display=swap&subset=cyrillic-ext
IP 142.250.74.106:443
Requested by https://www.fl.ru/404.php
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:8B:BB:40:DD:1D:5B:E9:7B:AA:CC:94:45:44:7F:FD:56:6E:E4:60
ValidityMon, 03 Apr 2023 08:24:24 GMT - Mon, 26 Jun 2023 08:24:23 GMT
File type ASCII text, with very long lines (7696), with no line terminators
Hash 1b1708225cc110bae1e982e2f2278b9b
f409cd48ea8f0ae0546ab8024a10bdd2704223e2
9641000aad3112c9b95b2ced386390b82106bb951df6cdb3c6feadd1761787fa
GET /css?family=Montserrat:300,400,500,700&display=swap&subset=cyrillic-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 25 Apr 2023 16:16:19 GMT
date: Tue, 25 Apr 2023 16:16:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.fl.ru/assets/legacy/entry-client.25433ba9a1fbe12b26ea31e4d0033412.js
193.17.93.93200 OK 1.5 MB URL GET HTTP/2 cdn.fl.ru/assets/legacy/entry-client.25433ba9a1fbe12b26ea31e4d0033412.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Size 1.5 MB (1471613 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/legacy/entry-client.25433ba9a1fbe12b26ea31e4d0033412.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"fd9a4a22c8bd03d7a6ec89a660c76739"
last-modified: Tue, 25 Apr 2023 07:39:28 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682408367.01845
x-trans-id: 17591d7efb3b18c3
x-xss-protection: 1; mode=block
age: 28
cache: HIT
x-cached-since: 2023-04-25T07:40:22+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/assets/legacy/vendors.3e43c32acf34289dc621184328ae433c.js
193.17.93.93200 OK 733 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/vendors.3e43c32acf34289dc621184328ae433c.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Size 733 kB (733198 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/legacy/vendors.3e43c32acf34289dc621184328ae433c.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"fa158acc3e97fb6834dd2ba6753873db"
last-modified: Mon, 24 Apr 2023 10:44:27 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682333066.21918
x-trans-id: 1758d902a5d2fdf0
x-xss-protection: 1; mode=block
age: 30
cache: HIT
x-cached-since: 2023-04-24T10:46:10+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/assets/legacy/cities.a221c2d143d1a508b8067ca7ba4a1b70.js
193.17.93.93200 OK 85 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/cities.a221c2d143d1a508b8067ca7ba4a1b70.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/legacy/cities.a221c2d143d1a508b8067ca7ba4a1b70.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"dec186bb29a91f44139d50a93f668cc3"
last-modified: Tue, 25 Apr 2023 07:39:29 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1682408368.52352
x-trans-id: 17591d7f54ef5e95
x-xss-protection: 1; mode=block
age: 23
cache: HIT
x-cached-since: 2023-04-25T07:40:22+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.fl.ru/assets/legacy/entry-client-manifest.cac1a521823575e024db214bbed6eea2.js
193.17.93.93200 OK 3.0 kB URL GET HTTP/2 cdn.fl.ru/assets/legacy/entry-client-manifest.cac1a521823575e024db214bbed6eea2.js
IP 193.17.93.93:443
ASN #210756 G-Core Rus LLC
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type ASCII text, with very long lines (3106), with no line terminators
Hash c6044570e8f190bd0ef952866d197746
2a264d91c845ea1b089ddf618ed069a69f00dc99
f7b95dfd21fd329d03889d5e30d26f09b21e6818cad2015923326df7d6bb58cc
GET /assets/legacy/entry-client-manifest.cac1a521823575e024db214bbed6eea2.js HTTP/1.1
Host: cdn.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 25 Apr 2023 16:16:19 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
cache-control: max-age=2592000
etag: W/"4566340230f5b61a7af6a55208078891"
last-modified: Wed, 12 Apr 2023 06:56:36 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1681282595.43360
x-trans-id: 17551d9cdbd0b690
x-xss-protection: 1; mode=block
age: 38
cache: HIT
x-cached-since: 2023-04-12T06:57:48+00:00
x-id: m9p-up-gc9
content-encoding: gzip
X-Firefox-Spdy: h2
client.getinchat.com/ue/agents/feedback.fl.ru?rnd=0.5872767919189137&uewv=2.5.6
147.135.44.9200 OK 2 B URL GET HTTP/2 client.getinchat.com/ue/agents/feedback.fl.ru?rnd=0.5872767919189137&uewv=2.5.6
IP 147.135.44.9:443
Requested by https://www.fl.ru/404.php
Certificate IssuerLet's Encrypt
Subjectgetinchat.com
Fingerprint26:F0:EC:C1:B8:2A:55:23:1D:59:6F:6E:0D:B7:94:B9:A3:58:9C:3F
ValidityMon, 27 Feb 2023 19:01:19 GMT - Sun, 28 May 2023 19:01:18 GMT
File type ASCII text, with no line terminators
Hash eac96aa70fd9a357e25d6de6f3b2937a
83c41a375df4540859e6d43a8752e95220f59504
101770a4004c3406015d7e013e2729f1d23b7e8ceb486069d48f2693088cf7c4
GET /ue/agents/feedback.fl.ru?rnd=0.5872767919189137&uewv=2.5.6 HTTP/1.1
Host: client.getinchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fl.ru
Connection: keep-alive
Referer: https://www.fl.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.17.6
date: Tue, 25 Apr 2023 16:16:21 GMT
content-type: text/html
content-length: 2
last-modified: Thu, 19 Dec 2019 20:38:16 GMT
etag: "5dfbdfb8-2"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
st.fl.ru/scripts/mailru/code.js
92.53.68.16200 OK 9.5 kB URL GET HTTP/2 st.fl.ru/scripts/mailru/code.js
IP 92.53.68.16:443
ASN #49505 OOO Network of data-centers Selectel
Requested by https://www.fl.ru/404.php
Certificate IssuerGlobalSign nv-sa
Subject*.fl.ru
Fingerprint55:8E:7A:CC:EF:B9:E3:21:5B:9A:2E:14:5B:C1:A7:81:25:EE:32:3A
ValidityFri, 23 Sep 2022 14:32:32 GMT - Wed, 25 Oct 2023 14:32:31 GMT
File type ASCII text, with very long lines (9892), with no line terminators
Hash 3e0517af73e4456f8c3e65afbe3f5a1a
47e064be79e9b355e88ac3e2d1cf03ba23aaf12a
fc392b3e00ee2e780d6df59d0bf11d60fe438ff42e18a25e206661e2b6b934bd
GET /scripts/mailru/code.js HTTP/1.1
Host: st.fl.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fl.ru/
Cookie: __ddg1_=RF8ackMXVIpfiFGgQQJx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges, X-Xss-Protection
content-length: 9481
content-type: application/javascript
etag: "1c625557d5109c32f53a7ab3777a7df5"
last-modified: Wed, 27 Sep 2017 17:23:58 GMT
x-container-storage-policy-index: 0
x-container-storage-policy-name: Policy-0
x-timestamp: 1506533037.94856
x-trans-id: 14e847d0e8e31216
x-xss-protection: 1; mode=block
date: Tue, 25 Apr 2023 11:41:27 GMT
age: 16494
X-Firefox-Spdy: h2