ouo.press/images/world.png
104.22.58.251200 OK 5.7 kB URL GET HTTP/2 ouo.press/images/world.png
IP 104.22.58.251:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint05:D4:D2:12:6B:F3:99:B5:DE:A7:FB:DC:94:CD:12:15:1A:20:14:2B
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 4eea420a8830a6d695114427bf52b556
35579e7f1a656beb3a07a7093166ff37c634bade
70f03c74cc197cf154af36fa552a448d9ffebb55081c96e55ef4cf469123fe22
GET /images/world.png HTTP/1.1
Host: ouo.press
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/ClQ3j9U
Cookie: ouoio_session=eyJpdiI6IlJrU3VYcjBaU000alhNelVPeDRkXC9Ud1wvQWhweE5RelFwb1ZnS2hYU1p6az0iLCJ2YWx1ZSI6IkUwa0JDVXBEZ0U3TWo0V1EyNkdTXC81aVA2WENLSGE5OGk5NUNTaUFqN1NDWVZjUE1vTFd2WDlUaVFIV1krbHBCb2t3bmRETEU0VjNlcmNESGJOdXYyUT09IiwibWFjIjoiZmQ3YTI4ZTg3YjNjZGNiZTk2ZTY3YTJjMDg5NWZhNmE2YTRkMGY0YjNjYjVhYjM2OTgwYmUzNGU2NTM5ZjFkMSJ9; language=eyJpdiI6ImFRN09sRndYQjd4VitGMXE5VkdRYUdyVDRGdGNMQmVDUm9vZ3VzUDVPSHM9IiwidmFsdWUiOiJkMUl3SUJOOVV1MDlzMEJlVVZHMFwvZmtcL3gxM2lwb1ZpY25yNmZUY09aa1U9IiwibWFjIjoiM2ZjYzI3MzA5YTcwZDA0YjNlNTc0YTNlY2Q1Zjc4MjAxNTQ3Y2UwZjQ2MmY5YWNiNjA5YjkxZTk5OGVkNmE3ZCJ9; c57a82b2888a8532f726cf0e3960cb70a833eb4b=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%3D; __cf_bm=t.HeZbKoGQU9dliOeER3YTGZPfHdjA7MmkpfRXYjpPc-1685115875-0-AeUQPyI07VUHtbtgPzC8aFW1lbar4zGx5JcCykfBeyWTCuyuekCg4eQGR5NeI0FHOMHEGmWvyfGBTcgmI6e2P0c=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: image/png
content-length: 5692
cache-control: max-age=2592000
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "5549a07c-163c"
expires: Thu, 01 Jun 2023 22:50:54 GMT
last-modified: Wed, 06 May 2015 05:02:52 GMT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 2048021
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f06e1fb511-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
172.67.6.151302 Found 4.2 kB URL User Request GET HTTP/2 IP 172.67.6.151:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4C:30:F8:28:4D:C5:98:31:A7:A3:07:FC:34:2E:CC:A4:7E:39:66:75
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT
Hash 0b4a34796315065b621ab453f88bb5e4
641494271198e9ed7479f3c7c5585b1ad4431da1
64e707a67a925a7209bfb44eedbbc067d49a61cc4b6376f8a21e7528fc6ee9d2
GET /ClQ3j9U HTTP/1.1
Host: ouo.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 May 2023 15:44:35 GMT
content-type: text/html; charset=UTF-8
location: https://ouo.press/ClQ3j9U
cache-control: no-cache
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: ouoio_session=eyJpdiI6IjVZQ0tmU0VIdVI1dElnODdVbHlocG5tK3FhZ2xQUGMwK0FMVXJLWFR5eU09IiwidmFsdWUiOiJMU3FcL0RHcVVlQjRhNXA3cmRMS2c1TGFLVW5TZHp4NUVzSjdPOFZPZ21LRkFrak01U0lubzV6MDhZcTZkckhnN1pLOXV3aGRcLzYrTUhQalJycUZIdEd3PT0iLCJtYWMiOiIwMzMzMzFjMjczZWNmN2E5MWExMDgxMDdhZmFjMmMxMzA4MTBmODQ3NzkxNTFkMTc0ZjVmYmMyMzhmNzFkNGFhIn0%3D; path=/; httponly
language=eyJpdiI6IktwOGFTU0VpOXJRK2lQNm4zSFhsR2M5WHVzeitKbTJEa2gxWEFsOXpUOTA9IiwidmFsdWUiOiJ1MzdEQWFCZ1llK1pqN21xS0pVanRRYm12M2RLcEZ5b2dheklUNHp2MnNFPSIsIm1hYyI6IjMwNWYzMTYxMWU5MDFlZGY1MmYwNWYwMzMxMTJmODY2NWMxNGU2YjQ4MzE5OGU5MzFiZGExNzRmMzc0Yjc5NDIifQ%3D%3D; expires=Wed, 24-May-2028 15:44:35 GMT; Max-Age=157680000; path=/; httponly
1b542bb428ab433d9f2f7bd33c56efc28f32e555=eyJpdiI6IktmQlp1Z1hTUWZYMGRjTXJndDRCYkhQbGtocmRWVXNYQ3ZEK25wa3l2R2M9IiwidmFsdWUiOiJaVWhNVXNOclBwOU9kZXhPQXBnZkNQaENQNlFkZjN4QkY3VlVnOFROZmNINytZYTVleTI5aFZPSDhJcnk4NTdYZWxHT00wR0xxR0Z5ZXFZR0pOV2MyV2s2UFNSczRwYWtZYlhVZDhoRGJFazNVN2k1VXhxVVIwYzJzVk1ON3hyN1pXS3B2UklFdlcyS0ZDM3JWY3dmb29HV3h3Y0dUTWltOGYxMWVVK1d6TG81Qk5MUkErRzB1TUErMDFKU2E2XC9sU3FmWHVRSGxCa20wSnlZK2FWMThDbmppTG1wRFlZam1MRXNoZXpYY0hFMThTUGRaUWlmYXY3d1drOXlITXlmblZwamt2eEVrZ0FxNXFmTVhkcmFzUXZpSlV6T3ExVkdCMTE0cDlWWlZndWhOSFFjRVZKMk5XdEMya3BvNTlKUk0wS2orRXEwK1liK3lST09mU01cLytUUT09IiwibWFjIjoiZDY0Yjc4ZGNkOWU5NDYwMzIwZWYxZjMwNDgwNmUxMjcwZGJkNDNlMTU4OTZhNzJiYzhjMGZmOWIxODI5OTI1ZCJ9; expires=Fri, 26-May-2023 17:44:35 GMT; Max-Age=7200; path=/; httponly
__cf_bm=3H18rDmWUF1mnxuUbowWKn7YlQDisNFaXIYiLZnJx84-1685115875-0-AR/K9ysTAsOwWlHHl1mt64CfFQBw8RbaK/Xx6rupLC//VmIC9tXZMXPV0zFs4zHn1M5J2/ew/M9kVAcg6ZiI01I=; path=/; expires=Fri, 26-May-23 16:14:35 GMT; domain=.ouo.io; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7cd723eaad010afe-OSL
X-Firefox-Spdy: h2
ouo.press/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.22.58.251200 OK 1.2 kB URL GET HTTP/2 ouo.press/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.22.58.251:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint05:D4:D2:12:6B:F3:99:B5:DE:A7:FB:DC:94:CD:12:15:1A:20:14:2B
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash eb82d4d37e6be19a250a3b51bf4cdb50
0bba553c6b93e7721eb6e0e6ecbf119b9e58e445
e4ae1489ce4e18e307bb6a7e27cfb29c7fc59d9fd549f9ae4a10ccb4bf3a72dd
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: ouo.press
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/ClQ3j9U
Cookie: ouoio_session=eyJpdiI6IlJrU3VYcjBaU000alhNelVPeDRkXC9Ud1wvQWhweE5RelFwb1ZnS2hYU1p6az0iLCJ2YWx1ZSI6IkUwa0JDVXBEZ0U3TWo0V1EyNkdTXC81aVA2WENLSGE5OGk5NUNTaUFqN1NDWVZjUE1vTFd2WDlUaVFIV1krbHBCb2t3bmRETEU0VjNlcmNESGJOdXYyUT09IiwibWFjIjoiZmQ3YTI4ZTg3YjNjZGNiZTk2ZTY3YTJjMDg5NWZhNmE2YTRkMGY0YjNjYjVhYjM2OTgwYmUzNGU2NTM5ZjFkMSJ9; language=eyJpdiI6ImFRN09sRndYQjd4VitGMXE5VkdRYUdyVDRGdGNMQmVDUm9vZ3VzUDVPSHM9IiwidmFsdWUiOiJkMUl3SUJOOVV1MDlzMEJlVVZHMFwvZmtcL3gxM2lwb1ZpY25yNmZUY09aa1U9IiwibWFjIjoiM2ZjYzI3MzA5YTcwZDA0YjNlNTc0YTNlY2Q1Zjc4MjAxNTQ3Y2UwZjQ2MmY5YWNiNjA5YjkxZTk5OGVkNmE3ZCJ9; c57a82b2888a8532f726cf0e3960cb70a833eb4b=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%3D; __cf_bm=t.HeZbKoGQU9dliOeER3YTGZPfHdjA7MmkpfRXYjpPc-1685115875-0-AeUQPyI07VUHtbtgPzC8aFW1lbar4zGx5JcCykfBeyWTCuyuekCg4eQGR5NeI0FHOMHEGmWvyfGBTcgmI6e2P0c=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 08:39:22 GMT
etag: W/"646f1eba-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f06e20b511-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 28 May 2023 15:44:35 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x
142.250.74.132200 OK 585 B URL GET HTTP/2 www.google.com/recaptcha/api.js?render=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x
IP 142.250.74.132:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type ASCII text, with very long lines (884), with no line terminators
Hash 4ad296074ab42cf684039bdcba948154
a6e0028f168ff9750c9d5751ff033d60543bdfa4
960d801222fe9e0b32bbf62d08459269d28bb6a845fb6d3980e260ed6f5d3f16
GET /recaptcha/api.js?render=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 26 May 2023 15:44:36 GMT
date: Fri, 26 May 2023 15:44:36 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
unhatedprotei.com/1clkn/48786
172.255.6.92200 OK 26 B URL GET HTTP/1.1 unhatedprotei.com/1clkn/48786
IP 172.255.6.92:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerLet's Encrypt
Subjectunhatedprotei.com
Fingerprint0B:53:89:3F:6C:8B:CF:72:ED:E2:29:90:08:73:1A:D5:DF:EE:0D:61
ValidityWed, 19 Apr 2023 23:43:47 GMT - Tue, 18 Jul 2023 23:43:46 GMT
File type ASCII text, with no line terminators
Hash 9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
GET /1clkn/48786 HTTP/1.1
Host: unhatedprotei.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 May 2023 15:44:36 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Set-Cookie: GL_UI4=eJw9jU1Sg0AQhSH8RQ1oV3EAj8AQMcnSTVbegZphGhwD06lmQuLtHa3S3fteffVeEASr8hHCJY0husgGnl8aXe97Ve31tsZq34vda9UoIbp6u1PycIA7M7dOqhFdDOt5kuxat8SwGdAim67tSGMOT976a06WrjaGRLG0Oodk8saYQ6aYrjNyGUFs5YSQHQ1jTzdvyE9iiIQQPhvrc1jBiuYyKu4heTf2cis2aVAUaQAP51G6nnhqjfaYDCw1QvgG6046HIi%2FINM4nxydAWjU7b%2F%2Fe5qMP2uQalxM55HcB%2FI3ouZOdQ%3D%3D; expires=Sat, 27-May-2023 15:44:36 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJw9i8sKwjAURGuUYNVWBvwAf8D6QBdu1aXUhbgOtd6WYM0tTXzUr%2FcFruYwc8bzPDEIIXSJ3nIaLSfRfBZNF3M0c2KIeIdeylfjqlqZ5EKQMVf3pIasKNdsAnR%2FoFI%2BETrxbnQwZ8N38x8%2BtwCtVLs6gP%2BJrxu20dS2RLgq9GO45%2BLq3raFb8gpWxKd4K%2BTY0HjzX6L8N9%2Bz7KBtraqrPhRv7nv9IWebEhxlllyUqBxk%2BIFsdRBIw%3D%3D; expires=Sat, 27-May-2023 15:44:36 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 61d13c286970b667c506166085b27432
e17257068ae421f755f2c671371b2fdfc3ea7fe1
68a17d38798d905ccc0ea237654927ec0a6c66c5164909e9a21e3344a576fd62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.adtrue.com/rtb/async.js
172.67.190.192200 OK 4.3 kB URL GET HTTP/2 cdn.adtrue.com/rtb/async.js
IP 172.67.190.192:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectadtrue.com
Fingerprint8E:BC:39:3D:FF:42:E7:9C:FC:50:C9:C8:24:B3:98:BF:05:FD:7C:AC
ValidityTue, 09 May 2023 00:35:44 GMT - Mon, 07 Aug 2023 00:35:43 GMT
File type HTML document, ASCII text, with very long lines (7327), with no line terminators
Hash dbe9dbd01607e3ba22a2f5ace0ff9bc8
a8a15250afda5f8393b2c7f98c68a74790786d09
f979285e29b7738e79983b46d15f2c865f36ca1033937b4fd938af11798ef40f
GET /rtb/async.js HTTP/1.1
Host: cdn.adtrue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: application/javascript
last-modified: Mon, 16 Nov 2020 01:20:45 GMT
etag: W/"5fb1d3ed-1c9f"
expires: Sun, 24 Sep 2023 03:46:20 GMT
cache-control: max-age=31104000
access-control-allow-origin: *
cf-cache-status: HIT
age: 20692695
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q9IjSyo9exf3nMhgb97vHVVuc7MC70oonvmlvjuHpRQy7Wb7TZX6%2BR4oJrENhCpFkLVPBkf1lZ9kdqEtD4QJLTxoKYiToWwySIyA8%2BYpwFq2LB4OzP5arV44dHEANMKCTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f09bcdb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ecdn.firstimpression.io/fi_client.js
54.230.111.89200 OK 94 kB URL GET HTTP/1.1 ecdn.firstimpression.io/fi_client.js
IP 54.230.111.89:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerSectigo Limited
Subject*.firstimpression.io
Fingerprint85:60:EB:44:87:65:FF:6F:C0:1E:DA:BA:E9:E3:44:60:39:94:32:11
ValiditySun, 27 Nov 2022 00:00:00 GMT - Tue, 05 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (583)
Hash f5fb673a04ac02b13c4da602546dab7c
193750185a748513ae39268cfe2cd144562165b1
040d7b0778969a3b839646213f1dd7c37bb6d1fbe1e8787f3decebcc041baba3
GET /fi_client.js HTTP/1.1
Host: ecdn.firstimpression.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 26 May 2023 15:27:13 GMT
Server: Apache/2.4.54 (Debian)
X-Powered-By: PHP/8.2.0
Cache-Control: max-age=3600
X-XSS-Protection: 0
Last-Modified: Fri,26 May 2023 15:27:13 UTC
ETag: W/"f653651d42cfaff4644c1c9099ad3a81"
Access-Control-Allow-Origin: *
Content-Encoding: br
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: a7ItpnEVXF9U7vdCUcYr1NsL4tSfJnt79YEwecGIzeK6o4K0Iswbzg==
Age: 1043
cdn.firstimpression.io/delivery/spc_fi.php?id=7419&url=%2FClQ3j9U&charset=UTF-8&ch=15&ref=ouo.press&viewerId=null&aad=1&referer=&_firid=5421471
54.230.111.99200 OK 4.6 kB URL GET HTTP/1.1 cdn.firstimpression.io/delivery/spc_fi.php?id=7419&url=%2FClQ3j9U&charset=UTF-8&ch=15&ref=ouo.press&viewerId=null&aad=1&referer=&_firid=5421471
IP 54.230.111.99:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerSectigo Limited
Subject*.firstimpression.io
Fingerprint85:60:EB:44:87:65:FF:6F:C0:1E:DA:BA:E9:E3:44:60:39:94:32:11
ValiditySun, 27 Nov 2022 00:00:00 GMT - Tue, 05 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (21960), with no line terminators
Hash 3bb820252308b073f87e51e224310e27
68c0594b283ba574b6814535dee1c254568f4e1f
0d7345a36cd9a9d5cbf405e8355acd55479814992525fc51272d84110b0ac297
GET /delivery/spc_fi.php?id=7419&url=%2FClQ3j9U&charset=UTF-8&ch=15&ref=ouo.press&viewerId=null&aad=1&referer=&_firid=5421471 HTTP/1.1
Host: cdn.firstimpression.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ouo.press
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/json; charset=UTF-8
Content-Length: 4610
Connection: keep-alive
Date: Fri, 26 May 2023 15:44:36 GMT
Server: Apache/2.4.38 (Debian)
Pragma: no-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Access-Control-Allow-Origin: https://ouo.press
Access-Control-Allow-Credentials: true
P3P: CP="CUR ADM OUR NOR STA NID"
Vary: Accept-Encoding
Content-Encoding: gzip
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3PjcVAGT9VpdQUqjfS9LsQIFZ3JYxw72f9yJols5OilZKcjER6HAIQ==
itineraryupper.com/ed/36/01/ed36014633829dc70a42dccaefdf3f11.js
173.233.139.164403 Forbidden 0 B URL GET HTTP/1.1 itineraryupper.com/ed/36/01/ed36014633829dc70a42dccaefdf3f11.js
IP 173.233.139.164:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerLet's Encrypt
Subjectitineraryupper.com
Fingerprint5D:5E:12:7B:1A:EA:42:3C:84:24:26:B7:B3:35:96:E1:80:80:1D:A2
ValiditySat, 13 May 2023 06:39:17 GMT - Fri, 11 Aug 2023 06:39:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /ed/36/01/ed36014633829dc70a42dccaefdf3f11.js HTTP/1.1
Host: itineraryupper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Fri, 26 May 2023 15:44:36 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
ouo.press/favicon.ico
104.22.58.251200 OK 0 B IP 104.22.58.251:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint05:D4:D2:12:6B:F3:99:B5:DE:A7:FB:DC:94:CD:12:15:1A:20:14:2B
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ouo.press
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/ClQ3j9U
Cookie: ouoio_session=eyJpdiI6IlJrU3VYcjBaU000alhNelVPeDRkXC9Ud1wvQWhweE5RelFwb1ZnS2hYU1p6az0iLCJ2YWx1ZSI6IkUwa0JDVXBEZ0U3TWo0V1EyNkdTXC81aVA2WENLSGE5OGk5NUNTaUFqN1NDWVZjUE1vTFd2WDlUaVFIV1krbHBCb2t3bmRETEU0VjNlcmNESGJOdXYyUT09IiwibWFjIjoiZmQ3YTI4ZTg3YjNjZGNiZTk2ZTY3YTJjMDg5NWZhNmE2YTRkMGY0YjNjYjVhYjM2OTgwYmUzNGU2NTM5ZjFkMSJ9; language=eyJpdiI6ImFRN09sRndYQjd4VitGMXE5VkdRYUdyVDRGdGNMQmVDUm9vZ3VzUDVPSHM9IiwidmFsdWUiOiJkMUl3SUJOOVV1MDlzMEJlVVZHMFwvZmtcL3gxM2lwb1ZpY25yNmZUY09aa1U9IiwibWFjIjoiM2ZjYzI3MzA5YTcwZDA0YjNlNTc0YTNlY2Q1Zjc4MjAxNTQ3Y2UwZjQ2MmY5YWNiNjA5YjkxZTk5OGVkNmE3ZCJ9; c57a82b2888a8532f726cf0e3960cb70a833eb4b=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%3D; __cf_bm=t.HeZbKoGQU9dliOeER3YTGZPfHdjA7MmkpfRXYjpPc-1685115875-0-AeUQPyI07VUHtbtgPzC8aFW1lbar4zGx5JcCykfBeyWTCuyuekCg4eQGR5NeI0FHOMHEGmWvyfGBTcgmI6e2P0c=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:36 GMT
content-type: image/x-icon
content-length: 0
last-modified: Sat, 14 Feb 2015 06:41:24 GMT
etag: "54deee14-0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=86400
cf-cache-status: HIT
age: 6278
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f44b1bb511-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 6511d19b553fc77eb29bc4565edc46e0
e88a49981040eab52449d8cf558e0ed29d862927
6c5e6e9dde465dbaeadb02409d89f6ffece3748be3e37ae0d410474391e9e90a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ouo.press
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
216.58.211.3200 OK 19 kB URL GET HTTP/2 fonts.gstatic.com/s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2
IP 216.58.211.3:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 19292, version 1.0\012- data
Hash 19007b17e56daa60133bce9e9b352a95
bac1384caeae5762e7a1d8c18037f69c8cd21bc4
fd88a03358ba14440b78c6329717bdf6ed1a9fe97c3ad4e0a0a39d31fb1ac546
GET /s/questrial/v18/QdVUSTchPBm7nuUeVf70viFl.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ouo.press
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 20:08:51 GMT
expires: Wed, 22 May 2024 20:08:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:12:54 GMT
content-type: font/woff2
age: 243345
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 6511d19b553fc77eb29bc4565edc46e0
e88a49981040eab52449d8cf558e0ed29d862927
6c5e6e9dde465dbaeadb02409d89f6ffece3748be3e37ae0d410474391e9e90a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
142.250.74.132200 OK 28 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
IP 142.250.74.132:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (42630)
Hash 57298ca7a434987e3897d9a53b401714
89454503876ea1a830a5dae41b258514cf18fc2a
2493053fd628fd8f90c0a2f27f6453c14ec8189ff59fbc3b90730d5959935018
GET /recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 15:44:36 GMT
content-security-policy: script-src 'nonce-88WhZxizUhrLOIuLlSPs1A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27763
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
216.58.211.3200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 216.58.211.3:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 316142
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=GTM-NPLC9ST
142.250.74.168200 OK 50 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=GTM-NPLC9ST
IP 142.250.74.168:443
Requested by https://track.adtrue.com/track/request?pzoneid=12953&domain=ouo.press&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&loc=https%3A%2F%2Fouo.press%2FClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (2271)
Hash 4970db44ab765f9e0c606c7ffe4079ad
a0703177be6126a5876dab8777c8caef35c76ac4
9c37235ccf3e6f21338d6f98c103c109b109ade4b9991dd4c37eb3fc1fa1ca2a
GET /gtag/js?id=GTM-NPLC9ST HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://track.adtrue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 15:44:36 GMT
expires: Fri, 26 May 2023 15:44:36 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:44:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-0DTZ6LRDBJ&l=dataLayer&cx=c
142.250.74.168200 OK 80 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-0DTZ6LRDBJ&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://track.adtrue.com/track/request?pzoneid=12953&domain=ouo.press&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&loc=https%3A%2F%2Fouo.press%2FClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (3288)
Hash 53ae56da780086821028db2c5390edaf
daa9fbf25ad3cd70c1daca0daeb7b27c55530211
a0e7b3979a3cc3c6766c54e983d58fb1053ad160f9ad7181298567ee469bd4f6
GET /gtag/js?id=G-0DTZ6LRDBJ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://track.adtrue.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 15:44:37 GMT
expires: Fri, 26 May 2023 15:44:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80094
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.211.3200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.211.3:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 252785
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.211.3200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.211.3:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:40:21 GMT
expires: Wed, 22 May 2024 21:40:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 237856
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
142.250.74.132200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with no line terminators
Hash ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95
GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 26 May 2023 15:44:37 GMT
date: Fri, 26 May 2023 15:44:37 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
216.58.211.3200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 216.58.211.3:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 323739
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
216.58.211.3200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 216.58.211.3:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316508
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ib.adnxs.com/ut/v3/prebid
37.252.171.52200 OK 145 B URL POST HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP 37.252.171.52:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerDigiCert Inc
Subject*.adnxs.com
Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08
ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 2389b7485498d97c7c85f94c70e968a2
362737c75418102d49a04f9166540a2018d61138
0ceef2a742a43e7d2f248dc61e4bf21397dd0ae2ca2124d7614252be7844613d
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 537
Origin: https://ouo.press
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 26 May 2023 15:44:37 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 145
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ouo.press
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 6cd79a97-a4b3-45eb-9d9c-11752002646a
Set-Cookie: icu=ChkItZqGARAKGAEgASgBMOWnw6MGOAFAAUgBEOWnw6MGGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 24-Aug-2023 15:44:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=5029144812379216095; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 24-Aug-2023 15:44:37 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1005.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
www.google.com/recaptcha/api2/reload?k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x
142.250.74.132200 OK 19 kB URL POST HTTP/3 www.google.com/recaptcha/api2/reload?k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (33656)
Hash 0f74f6436275e7dd9d012453dea2aacb
4d4e37a46df876a8d2203270ddfbc54040c75995
07e8a0a569052dce3359a7c7c266463f37dac8f64715d1ba5019b405f4a77da9
POST /recaptcha/api2/reload?k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6091
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6Lcr1ncUAAAAAH3cghg6cOTPGARa8adOf-y9zv2x&co=aHR0cHM6Ly9vdW8ucHJlc3M6NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=invisible&cb=lipx6mlve3md
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 26 May 2023 15:44:37 GMT
expires: Fri, 26 May 2023 15:44:37 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 19340
server: GSE
set-cookie: _GRECAPTCHA=09AFoYGg3xZ2GdEIBAWSfDMusIgWyVUDR6yUpcLJWzB71IWExO0_l7QWAdsaLtWFW1LYoLoPMZH_svZKFILMIZkKM;Path=/recaptcha;Expires=Wed, 22-Nov-2023 15:44:37 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ouo.press/css/link-safe.css
104.22.58.251200 OK 6.2 kB URL GET HTTP/2 ouo.press/css/link-safe.css
IP 104.22.58.251:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint05:D4:D2:12:6B:F3:99:B5:DE:A7:FB:DC:94:CD:12:15:1A:20:14:2B
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (6856), with no line terminators
Hash 23ae251e3568d2b1a04e2db19aae3c39
1c695d821d095acdb67b1553028f0d6bd3b4724d
0072b18e739d5821c2a48aa46fdcf42059f01176387c2a51e9f956a8cea51920
GET /css/link-safe.css HTTP/1.1
Host: ouo.press
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/ClQ3j9U
Cookie: ouoio_session=eyJpdiI6IlJrU3VYcjBaU000alhNelVPeDRkXC9Ud1wvQWhweE5RelFwb1ZnS2hYU1p6az0iLCJ2YWx1ZSI6IkUwa0JDVXBEZ0U3TWo0V1EyNkdTXC81aVA2WENLSGE5OGk5NUNTaUFqN1NDWVZjUE1vTFd2WDlUaVFIV1krbHBCb2t3bmRETEU0VjNlcmNESGJOdXYyUT09IiwibWFjIjoiZmQ3YTI4ZTg3YjNjZGNiZTk2ZTY3YTJjMDg5NWZhNmE2YTRkMGY0YjNjYjVhYjM2OTgwYmUzNGU2NTM5ZjFkMSJ9; language=eyJpdiI6ImFRN09sRndYQjd4VitGMXE5VkdRYUdyVDRGdGNMQmVDUm9vZ3VzUDVPSHM9IiwidmFsdWUiOiJkMUl3SUJOOVV1MDlzMEJlVVZHMFwvZmtcL3gxM2lwb1ZpY25yNmZUY09aa1U9IiwibWFjIjoiM2ZjYzI3MzA5YTcwZDA0YjNlNTc0YTNlY2Q1Zjc4MjAxNTQ3Y2UwZjQ2MmY5YWNiNjA5YjkxZTk5OGVkNmE3ZCJ9; c57a82b2888a8532f726cf0e3960cb70a833eb4b=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%3D; __cf_bm=t.HeZbKoGQU9dliOeER3YTGZPfHdjA7MmkpfRXYjpPc-1685115875-0-AeUQPyI07VUHtbtgPzC8aFW1lbar4zGx5JcCykfBeyWTCuyuekCg4eQGR5NeI0FHOMHEGmWvyfGBTcgmI6e2P0c=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: status=cannot_optimize
etag: W/"5d951ace-1830"
expires: Sat, 27 May 2023 03:22:42 GMT
last-modified: Wed, 02 Oct 2019 21:46:54 GMT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1313
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f05e13b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
exchange.adtrue.com/delivery/impress?pzoneid=12953&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&cb=1239659443&timeZone=0&adWidth=300&adHeight=250&loc=https://ouo.press/ClQ3j9U
172.67.190.192200 OK 4.0 kB URL GET HTTP/3 exchange.adtrue.com/delivery/impress?pzoneid=12953&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&cb=1239659443&timeZone=0&adWidth=300&adHeight=250&loc=https://ouo.press/ClQ3j9U
IP 172.67.190.192:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectadtrue.com
Fingerprint8E:BC:39:3D:FF:42:E7:9C:FC:50:C9:C8:24:B3:98:BF:05:FD:7C:AC
ValidityTue, 09 May 2023 00:35:44 GMT - Mon, 07 Aug 2023 00:35:43 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (4283), with no line terminators
Hash 95703a8590f94a2e8de8f16d180c516d
b10f1703315f53135263c65bb4141c3185eaa518
1ea4c90f9e5c520cc8462bd17bc843889feb86de1e68bf398f61e1365d3ec58d
GET /delivery/impress?pzoneid=12953&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&cb=1239659443&timeZone=0&adWidth=300&adHeight=250&loc=https://ouo.press/ClQ3j9U HTTP/1.1
Host: exchange.adtrue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 15:44:36 GMT
content-type: application/javascript
x-adtrue-instance: adt-backend-1
set-cookie: _TRUE_AD_USER_COOKIE_ID=b465faee-dcd2-4d6e-b7b2-2dcc94529883; Max-Age=7776000; Expires=Thu, 24 Aug 2023 15:44:36 GMT; Path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R4K3EsrccJ7%2B%2BsyGgca%2Bhb2u5KKmw2cyzoY6jWmfQ6mrvQM0OU2VDRGU5XKTSItuFozSzD3ilbkeTkPWn%2BmaJMPqnIB3NMhD15mTaJ%2BDCyF1JyqN1I1w1DBT97Cxv0IhrCMZGk%2Bx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd723f4ac7cb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ouo.press/css/bootstrap.css
104.22.58.251200 OK 109 kB URL GET HTTP/2 ouo.press/css/bootstrap.css
IP 104.22.58.251:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint05:D4:D2:12:6B:F3:99:B5:DE:A7:FB:DC:94:CD:12:15:1A:20:14:2B
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65452)
Size 109 kB (109424 bytes)
Hash 1b39eabea9f9a5828b0b29e691f063f7
2499b872667e69b525a0ecf4f0ea82e839cf0ace
92bee51ee5dbafaff82c524f7629314d069107bc30913a93b181e4c631a58a0f
GET /css/bootstrap.css HTTP/1.1
Host: ouo.press
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/ClQ3j9U
Cookie: ouoio_session=eyJpdiI6IlJrU3VYcjBaU000alhNelVPeDRkXC9Ud1wvQWhweE5RelFwb1ZnS2hYU1p6az0iLCJ2YWx1ZSI6IkUwa0JDVXBEZ0U3TWo0V1EyNkdTXC81aVA2WENLSGE5OGk5NUNTaUFqN1NDWVZjUE1vTFd2WDlUaVFIV1krbHBCb2t3bmRETEU0VjNlcmNESGJOdXYyUT09IiwibWFjIjoiZmQ3YTI4ZTg3YjNjZGNiZTk2ZTY3YTJjMDg5NWZhNmE2YTRkMGY0YjNjYjVhYjM2OTgwYmUzNGU2NTM5ZjFkMSJ9; language=eyJpdiI6ImFRN09sRndYQjd4VitGMXE5VkdRYUdyVDRGdGNMQmVDUm9vZ3VzUDVPSHM9IiwidmFsdWUiOiJkMUl3SUJOOVV1MDlzMEJlVVZHMFwvZmtcL3gxM2lwb1ZpY25yNmZUY09aa1U9IiwibWFjIjoiM2ZjYzI3MzA5YTcwZDA0YjNlNTc0YTNlY2Q1Zjc4MjAxNTQ3Y2UwZjQ2MmY5YWNiNjA5YjkxZTk5OGVkNmE3ZCJ9; c57a82b2888a8532f726cf0e3960cb70a833eb4b=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%3D; __cf_bm=t.HeZbKoGQU9dliOeER3YTGZPfHdjA7MmkpfRXYjpPc-1685115875-0-AeUQPyI07VUHtbtgPzC8aFW1lbar4zGx5JcCykfBeyWTCuyuekCg4eQGR5NeI0FHOMHEGmWvyfGBTcgmI6e2P0c=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: text/css
cache-control: max-age=86400
cf-bgj: minify
cf-polished: origSize=109522
etag: W/"54def1fc-1abd2"
expires: Sat, 27 May 2023 03:22:42 GMT
last-modified: Sat, 14 Feb 2015 06:58:04 GMT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 1313
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f05e12b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
measure.analysis.fi/
54.230.111.111200 OK 2 B IP 54.230.111.111:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerAmazon
Subjectanalysis.fi
Fingerprint50:F9:73:07:92:06:CC:67:AC:82:76:BD:D4:40:32:55:75:21:0B:3D
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 58b9e70b65a77700ba66e9c64d6b9f89
9d891e731f75deae56884d79e9816736b7488080
5ec1f7e700f37c3d0b2981d04855fc34b94aaa15457b05ca571817442d228f81
POST / HTTP/1.1
Host: measure.analysis.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 24
Origin: https://ouo.press
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
date: Fri, 26 May 2023 15:44:36 GMT
access-control-allow-origin: *
access-control-allow-methods: POST
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V84rcTsJFYs5wZO-4zDPqwsHe6gxeFFEROgi_mr5h5uJDFEgxWgHsQ==
X-Firefox-Spdy: h2
track.adtrue.com/track/request?pzoneid=12953&domain=ouo.press&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&loc=https%3A%2F%2Fouo.press%2FClQ3j9U
172.67.190.192200 OK 377 B URL GET HTTP/3 track.adtrue.com/track/request?pzoneid=12953&domain=ouo.press&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&loc=https%3A%2F%2Fouo.press%2FClQ3j9U
IP 172.67.190.192:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectadtrue.com
Fingerprint8E:BC:39:3D:FF:42:E7:9C:FC:50:C9:C8:24:B3:98:BF:05:FD:7C:AC
ValidityTue, 09 May 2023 00:35:44 GMT - Mon, 07 Aug 2023 00:35:43 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (385), with no line terminators
Hash a80f7e3e9445db67d991ed2a138f8386
3ae9ff45592e67463d88cd72557112aacacaacbb
6dbcf471b68f9215cf8c4362da5d6df47fe6326b2909bfbc0bd3bdffb72a588a
GET /track/request?pzoneid=12953&domain=ouo.press&ref=https%3A%2F%2Fouo.press%2FClQ3j9U&loc=https%3A%2F%2Fouo.press%2FClQ3j9U HTTP/1.1
Host: track.adtrue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 15:44:36 GMT
content-type: text/html
x-host-name: adt-backend-1
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vWTcs7RH4JfTUxPbNH763s65LtBe5po1pKBLY%2F0LaX9ZpXjkzFleqWQLCCGjLQU98VLYcwu3Jy0S3xLPKcpCLhwpeuG7nb64yWPI3LN3lMKSaVu7myENKeccQ8r2f5uRQlGp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd723f58dceb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.adtrue.com/pb/prebid.js
172.67.190.192200 OK 316 kB URL GET HTTP/3 cdn.adtrue.com/pb/prebid.js
IP 172.67.190.192:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectadtrue.com
Fingerprint8E:BC:39:3D:FF:42:E7:9C:FC:50:C9:C8:24:B3:98:BF:05:FD:7C:AC
ValidityTue, 09 May 2023 00:35:44 GMT - Mon, 07 Aug 2023 00:35:43 GMT
File type ASCII text, with very long lines (64936)
Size 316 kB (315990 bytes)
Hash 7cd7b39ef4bdc4a9c7053b23221130e0
61fa3a98e8951458003bf840b8f031dd8338dc73
825d5cd71dbdd99c5c8181e2e88e24573f837019cc0b15a6a15fa98bdffc506e
GET /pb/prebid.js HTTP/1.1
Host: cdn.adtrue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 15:44:36 GMT
content-type: application/javascript
last-modified: Tue, 11 Oct 2022 04:44:29 GMT
etag: W/"6344f4ad-4d256"
expires: Mon, 06 Nov 2023 21:12:10 GMT
cache-control: max-age=31104000
access-control-allow-origin: *
cf-cache-status: HIT
age: 16914746
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bcyj11JPib%2B8Vcpe5%2FnOyQlhWadbvAO7XK8ynoCvv8utom7PN8JrD7FtAbdkwqEKOlx74PnHT1KmeJG50FZYCUtrRgog5sRSma2xPxp7GXkcwYJyUiy4W5SXFN5dNgeZ9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f58dcbb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
104.22.58.251200 OK 8.6 kB URL User Request GET HTTP/2 IP 104.22.58.251:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint05:D4:D2:12:6B:F3:99:B5:DE:A7:FB:DC:94:CD:12:15:1A:20:14:2B
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8970), with no line terminators
Hash cd0c0ec094cf4a2354270740de82c630
ad5565b80ace0c763fb83cf710a4c52553fd9f66
2b8ee6166e05d2c91024bd3dcd1571b083d066e4e4dff24e7f43e535425c34e4
GET /ClQ3j9U HTTP/1.1
Host: ouo.press
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
set-cookie: ouoio_session=eyJpdiI6IlJrU3VYcjBaU000alhNelVPeDRkXC9Ud1wvQWhweE5RelFwb1ZnS2hYU1p6az0iLCJ2YWx1ZSI6IkUwa0JDVXBEZ0U3TWo0V1EyNkdTXC81aVA2WENLSGE5OGk5NUNTaUFqN1NDWVZjUE1vTFd2WDlUaVFIV1krbHBCb2t3bmRETEU0VjNlcmNESGJOdXYyUT09IiwibWFjIjoiZmQ3YTI4ZTg3YjNjZGNiZTk2ZTY3YTJjMDg5NWZhNmE2YTRkMGY0YjNjYjVhYjM2OTgwYmUzNGU2NTM5ZjFkMSJ9; path=/; httponly
language=eyJpdiI6ImFRN09sRndYQjd4VitGMXE5VkdRYUdyVDRGdGNMQmVDUm9vZ3VzUDVPSHM9IiwidmFsdWUiOiJkMUl3SUJOOVV1MDlzMEJlVVZHMFwvZmtcL3gxM2lwb1ZpY25yNmZUY09aa1U9IiwibWFjIjoiM2ZjYzI3MzA5YTcwZDA0YjNlNTc0YTNlY2Q1Zjc4MjAxNTQ3Y2UwZjQ2MmY5YWNiNjA5YjkxZTk5OGVkNmE3ZCJ9; expires=Wed, 24-May-2028 15:44:35 GMT; Max-Age=157680000; path=/; httponly
c57a82b2888a8532f726cf0e3960cb70a833eb4b=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%3D; expires=Fri, 26-May-2023 17:44:35 GMT; Max-Age=7200; path=/; httponly
__cf_bm=t.HeZbKoGQU9dliOeER3YTGZPfHdjA7MmkpfRXYjpPc-1685115875-0-AeUQPyI07VUHtbtgPzC8aFW1lbar4zGx5JcCykfBeyWTCuyuekCg4eQGR5NeI0FHOMHEGmWvyfGBTcgmI6e2P0c=; path=/; expires=Fri, 26-May-23 16:14:35 GMT; domain=.ouo.press; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7cd723ed9a40b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
hhklc.com/c.js
172.67.223.102200 OK 4.3 kB IP 172.67.223.102:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerLet's Encrypt
Subjecthhklc.com
FingerprintE5:B7:C4:0F:16:10:14:D7:7E:90:AC:12:6D:ED:E9:28:B6:8B:E5:1E
ValidityFri, 12 May 2023 00:24:44 GMT - Thu, 10 Aug 2023 00:24:43 GMT
File type ASCII text, with very long lines (4323), with no line terminators
Hash 7d835f53efd9273c6536ad002c203c50
2c7cf5f05b54ab5d302dd71795cd6fc1c39e2798
188e2d0fa269131e463b68745f6f0c2bbcee091ed90d0affc873623fadcc4de7
GET /c.js HTTP/1.1
Host: hhklc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 15:44:35 GMT
content-type: application/javascript
last-modified: Fri, 12 May 2023 06:05:59 GMT
etag: W/"645dd747-10e1"
server-asp-net: Asp Net
expires: Fri, 26 May 2023 16:19:57 GMT
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 578
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXHUxCYE4xg8QieX5bqFEY8fgFx4yFpZR6zjxD8mVQtZMU%2BzDkawOt7FML6SHEnlnQp14MdQczFD9tkV3z9sduHgpvxVPABUfuYswK9M2L2oZ4cbUQ%2BTJEauX6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f09c80b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ecdn.analysis.fi/static/js/fab.js
54.230.111.15200 OK 4.2 kB URL GET HTTP/2 ecdn.analysis.fi/static/js/fab.js
IP 54.230.111.15:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerAmazon
Subjectanalysis.fi
Fingerprint50:F9:73:07:92:06:CC:67:AC:82:76:BD:D4:40:32:55:75:21:0B:3D
ValidityTue, 28 Feb 2023 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (4361), with no line terminators
Hash 852f97026b6eeb25ed26129ca66abd68
39fc712442198cb847855ce05b60dc0479957b7e
fcf1141cd57fb0e3cebf307e4d75e6d4ef19b2ca90d9bc055a99d5cc77f4e95f
GET /static/js/fab.js HTTP/1.1
Host: ecdn.analysis.fi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 1696
server: Apache/2.4.54 (Debian)
last-modified: Fri, 26 May 2023 12:42:34 GMT
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
date: Fri, 26 May 2023 14:45:39 GMT
cache-control: max-age=3600, public
etag: "1090-5fc9812314280-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PPgcmLDaER1v4INncQWCMAy74qTAp91pOGTkq9DkCZdDFa4rRwvBYQ==
age: 3539
X-Firefox-Spdy: h2
cdn.adtrue.com/rtb/passback.js
172.67.190.192200 OK 753 B URL GET HTTP/3 cdn.adtrue.com/rtb/passback.js
IP 172.67.190.192:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectadtrue.com
Fingerprint8E:BC:39:3D:FF:42:E7:9C:FC:50:C9:C8:24:B3:98:BF:05:FD:7C:AC
ValidityTue, 09 May 2023 00:35:44 GMT - Mon, 07 Aug 2023 00:35:43 GMT
File type ASCII text, with very long lines (782), with no line terminators
Hash 76ff3115ef5212f04d42603fb82eade7
fb0c4a81463a2a3f23fd33d1740c9509f93dcada
1c99063f9196a63c8ce922860e0d97cb7c8fa17dd48be09573af453d93e4081c
GET /rtb/passback.js HTTP/1.1
Host: cdn.adtrue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 15:44:37 GMT
content-type: application/javascript
last-modified: Wed, 28 Oct 2020 03:26:52 GMT
etag: W/"5f98e4fc-2f1"
expires: Sun, 24 Sep 2023 03:44:38 GMT
cache-control: max-age=31104000
access-control-allow-origin: *
cf-cache-status: HIT
age: 20692799
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OouRn%2FrjobvbrF%2BMWCwvmOpeTlJIPLBNQZiq%2BPu5d3fLdejC9cGOx4JUYV4LTs7wL2nAvtXVVRtVv%2FGIOs2EUASRsH%2FGx4v6sXBCihCGkvrTp2ppptGrSw1dsgY0Z76doQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd723f88a13b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
exchange.adtrue.com/tag/passback?adtrue_pzoneid=12953&divid=1822721886&ref=undefined
172.67.190.192200 OK 296 B URL GET HTTP/3 exchange.adtrue.com/tag/passback?adtrue_pzoneid=12953&divid=1822721886&ref=undefined
IP 172.67.190.192:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectadtrue.com
Fingerprint8E:BC:39:3D:FF:42:E7:9C:FC:50:C9:C8:24:B3:98:BF:05:FD:7C:AC
ValidityTue, 09 May 2023 00:35:44 GMT - Mon, 07 Aug 2023 00:35:43 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (330), with no line terminators
Hash 94eed077d28139f9416d80f5e72482ea
7371b126d4a85d2a9239d70b7a17c9bcbb4508a8
54cb7555e50cbf38d88c924f07936ae3480da47dae43bba8788ee55e401bf392
GET /tag/passback?adtrue_pzoneid=12953&divid=1822721886&ref=undefined HTTP/1.1
Host: exchange.adtrue.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 15:44:37 GMT
content-type: application/javascript
set-cookie: _TRUE_AD_USER_COOKIE_ID=3f9d04cd-944c-42be-8751-f1a6fc12470d; Max-Age=7776000; Expires=Thu, 24 Aug 2023 15:44:37 GMT; Path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jguOgFNGD1bgxwGoh9G4qw3TJo9Qt3x5BhL1N2AE1HA8RFn9mrCJJ8ZjHuwl0huh4aeTytTRdIqBMvSJ9dhG6mLTzhTSZmuUSiq5%2BRh%2FRyPb2SuJANeYGxRqzZx9uWjGTitM9YfW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd723f89a29b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Questrial
142.250.74.106200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Questrial
IP 142.250.74.106:443
Requested by https://ouo.press/ClQ3j9U
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1152), with no line terminators
Hash 8dbc346fbf2db00cda57954ef1db0af1
91398c061bb88e8e3034dcc3c3d015c437e8d3b1
a5d52dd146629b00b13d51aa66de0b7711ef30ebcc0a9814fa10ae537ec8037e
GET /css?family=Questrial HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ouo.press/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 15:44:36 GMT
date: Fri, 26 May 2023 15:44:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2