Report - oceannews.com/bdo.com.ph/Onlinebanking/sso/login.php/

Report Overview

URL

oceannews.com/bdo.com.ph/Onlinebanking/sso/login.php/
IP

172.66.40.115

ASN

#13335 CLOUDFLARENET
Submitted

2023-06-09T08:19:14Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

2
Threat Detection Systems

0

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
oceannews.com (58)	unknown	2014-08-13 08:40:36	2023-04-12 03:47:51	39134	3227121	172.66.40.115
fonts.googleapis.com (5)	8877	2013-06-10 22:14:26	2023-06-08 19:03:07	2690	132250	142.250.74.106
s3.amazonaws.com (2)	unknown	2020-05-13 22:53:44	2023-06-02 01:23:27	858	6212	54.231.135.192
sc.lfeeder.com (1)	17815	2020-09-08 08:51:01	2023-06-08 17:49:45	423	32777	54.230.111.121
p.typekit.net (1)	620	2012-05-23 16:28:57	2023-06-08 18:12:44	497	422	23.36.76.184
fonts.gstatic.com (10)	unknown	2014-09-09 02:40:21	2023-06-08 19:27:31	5364	246613	216.58.207.227
tr-rc.lfeeder.com (2)	unknown	2022-10-20 11:48:08	2023-06-08 15:32:28	2458	792	54.230.111.69
www.googletagmanager.com (2)	75	2013-05-22 04:07:37	2023-06-08 19:16:18	875	262982	142.250.74.168
www.buzzsprout.com (1)	29911	2017-01-30 08:39:41	2023-06-08 19:43:36	491	1139	104.19.160.48
use.typekit.net (2)	494	2012-07-05 03:42:39	2023-06-08 18:12:44	844	2621	23.36.76.122
ocsp.pki.goog (12)	175	2018-07-01 08:43:07	2023-06-08 18:12:03	3996	8388	142.250.74.131
ipapi.co (1)	195030	2017-01-31 10:07:01	2023-06-08 23:06:06	464	81910	104.26.9.44
ocsp.r2m01.amazontrust.com (1)	unknown	2022-10-12 22:43:53	2023-06-08 20:14:55	340	942	54.230.80.227
www.oceannews.com (2)	unknown	2014-08-14 02:12:09	2023-06-03 08:21:46	1158	152868	172.66.40.115

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-09T08:18:57Z	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)
2023-06-09T08:18:57Z	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (100)

	URL	IP	Response	Size
	oceannews.com/bdo.com.ph/Onlinebanking/sso/login.php/	172.66.40.115		0
Search urlquery URL oceannews.com/bdo.com.ph/Onlinebanking/sso/login.php/ DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash d41d8cd98f00b204e9800998ecf8427e External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH da39a3ee5e6b4b0d3255bfef95601890afd80709 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com URL oceannews.com/bdo.com.ph/Onlinebanking/sso/login.php/ IP 172.66.40.115:0 ASN #13335 CLOUDFLARENET Magic Size 0 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /bdo.com.ph/Onlinebanking/sso/login.php/ HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently date: Fri, 09 Jun 2023 08:18:55 GMT content-type: text/html; charset=utf-8 content-length: 0 location: https://oceannews.com/home set-cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6; path=/; secure; HttpOnly cache-control: no-cache, no-store, must-revalidate,no-transform x-frame-options: SAMEORIGIN x-content-type-options: nosniff x-xss-protection: 1; mode=block referrer-policy: unsafe-url x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zkzgFZEAWdfn%2Bo1OPNv%2FOfnrUN9eMJ9wCvFTlhYOjCpXpLtQYZCZvc3b2t0DDXGjN6NqrTLsoMfY4RDj9UsIV9HYASFM9qIN0xEEUpJ38k7idm7zEYtd9kunwQ1sCQ4%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f2531f6eb52d-OSL X-Firefox-Spdy: h2

	oceannews.com/media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96	172.66.40.115	200 OK	21
Search urlquery URL oceannews.com/media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96 DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash e2060c4e5e5955c824723b13a212d3ec External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 18420ce484978f8ba3d7371febf1638828bb7a67 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96 IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic ASCII text Size 21 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 HTTP Headers GET /media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96 HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: application/javascript; charset=utf-8 content-length: 21 cache-control: public, max-age=28800 expires: Wed, 22 May 2024 14:47:54 GMT last-modified: Sun, 14 Aug 2022 15:21:56 GMT x-content-type-options: nosniff referrer-policy: unsafe-url vary: Accept-Encoding x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 258079 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MLQSUrOLHtL0%2FcIPim6PHGI2skJR%2BpbH7KSH0U2wApBsHDyFCHkVCg3d0bnKANY%2F0%2FOTTIIBE6VGt%2Ft4e6rI%2BPkstgJqVEUH1zq1ujqNcrSeFrVmt4ZCBGit3A0sH9k%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265da6db52d-OSL X-Firefox-Spdy: h2

	oceannews.com/images/logo/ont_logo-footer.png	172.66.40.115	200 OK	1602
Search urlquery URL oceannews.com/images/logo/ont_logo-footer.png DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash f95fa0d9aff88412dea85f627903228b External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH cca2d5607d881bb67fa44005c7b791108bf988ae FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/images/logo/ont_logo-footer.png IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic RIFF (little-endian) data, Web/P image\012- data Size 1602 Hash f95fa0d9aff88412dea85f627903228b cca2d5607d881bb67fa44005c7b791108bf988ae ee528850929383a2bd09792920dfa0435e63ad697c5f2dc35d4e53941983bbe2 HTTP Headers GET /images/logo/ont_logo-footer.png HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: image/webp content-length: 1602 cache-control: public, max-age=28800 cf-bgj: imgq:100,h2pri cf-polished: origFmt=png, origSize=4471 content-disposition: inline; filename="ont_logo-footer.webp" content-security-policy: default-src 'self'; script-src 'none'; expires: Wed, 29 May 2024 19:54:29 GMT last-modified: Mon, 18 Jan 2021 19:56:49 GMT referrer-policy: unsafe-url vary: Accept x-content-type-options: nosniff x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 258079 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yLNuoc6iS23LOnLgAxupX%2FyrskWvjYsxpYU4S09o36xtfVsub7xI3NiuKV6DqdPJXiy4zZ71ozcDRseuuyPj2IEvUyskGiRNQwjf8urxn4FFe08BUz5UmZsiCGV7sbI%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265ea9bb52d-OSL X-Firefox-Spdy: h2

	oceannews.com/media/com_jbusinessdirectory/pictures/no_image.jpg	172.66.40.115	200 OK	3573
Search urlquery URL oceannews.com/media/com_jbusinessdirectory/pictures/no_image.jpg DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash c4c1bb917db0509420a91b286ac49422 External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 1aabeb99b26178b71bb57a982eec55982aa07c8a FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/media/com_jbusinessdirectory/pictures/no_image.jpg IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic JPEG image data, JFIF standard 1.01, resolution (DPI), density 71x71, segment length 16, progressive, precision 8, 450x336, components 3\012- data Size 3573 Hash c4c1bb917db0509420a91b286ac49422 1aabeb99b26178b71bb57a982eec55982aa07c8a 348458e3f21008e3f14f9c1baf44795311b3a29cb2be936f7797c832692a76d1 HTTP Headers GET /media/com_jbusinessdirectory/pictures/no_image.jpg HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: image/jpeg content-length: 3573 cache-control: public, max-age=28800 cf-bgj: imgq:100,h2pri cf-polished: origSize=4202 content-security-policy: default-src 'self'; script-src 'none'; expires: Fri, 07 Jun 2024 16:03:49 GMT last-modified: Fri, 06 May 2022 15:55:59 GMT referrer-policy: unsafe-url vary: Accept-Encoding x-content-type-options: nosniff x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 86 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MOsCc1Y4XcG5NcCnpqwM27fOQPP7ZnrDK3YWVOW2w%2BLeJZYg%2BixIUrAGtGiBlDC0F9vvUU8MJnwbxqSsmRPoCrlpjpf8GuRE5N8m4etQ9vWxylz18rDTCIFKubPlmwA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265ea9ab52d-OSL X-Firefox-Spdy: h2

	use.typekit.net/dwy8aqa.css	23.36.76.122	200 OK	801
Search urlquery URL use.typekit.net/dwy8aqa.css DOMAIN typekit.net FQDN use.typekit.net IP 23.36.76.122 Hash fc82eec33a0201a76a69aba87f1a2535 External sources Mnemonic PDNS FQDN use.typekit.net DOMAIN typekit.net IP 23.36.76.122 VirusTotal HASH 03a009c3ee3a047dea80adc7526b72642ba73632 FQDN use.typekit.net DOMAIN typekit.net IP 23.36.76.122 crt.sh FQDN use.typekit.net DOMAIN typekit.net Fingerprint 5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B URL GET HTTP/2 use.typekit.net/dwy8aqa.css IP 23.36.76.122:443 ASN #20940 Akamai International B.V. Requested by https://oceannews.com/home Certificate IssuerDigiCert Inc Subjectuse.typekit.net Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT Magic Unicode text, UTF-8 text, with very long lines (516) Size 801 Hash fc82eec33a0201a76a69aba87f1a2535 03a009c3ee3a047dea80adc7526b72642ba73632 c1be341e0b5cee2d84d5800c48ee675e9523ce82adfc5c1f6972a23359d861cd HTTP Headers `GET /dwy8aqa.css HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://oceannews.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx content-type: text/css;charset=utf-8 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; cache-control: private, max-age=600, stale-while-revalidate=604800 timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin content-encoding: gzip content-length: 801 date: Fri, 09 Jun 2023 08:18:57 GMT server-timing: ak_p; desc="1686298737636_388254838_11567377_1107_449_1_19_21";dur=1 X-Firefox-Spdy: h2`

	oceannews.com/media/com_rstbox/css/engagebox.css?63222df9748a90992ab36a309a130b96	172.66.40.115	200 OK	3193
Search urlquery URL oceannews.com/media/com_rstbox/css/engagebox.css?63222df9748a90992ab36a309a130b96 DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash 741598d9d1b875858ef2e21a6073f301 External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH b2b2ea12b62b4df44fa8d817f3c7fd98eef3a62e FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/media/com_rstbox/css/engagebox.css?63222df9748a90992ab36a309a130b96 IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic Unicode text, UTF-8 text, with very long lines (11690) Size 3193 Hash 741598d9d1b875858ef2e21a6073f301 b2b2ea12b62b4df44fa8d817f3c7fd98eef3a62e 61fcc012f298aa80b894842d3ff8b02c97812d9fcc8a3c453307572bba3f99ad HTTP Headers GET /media/com_rstbox/css/engagebox.css?63222df9748a90992ab36a309a130b96 HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: text/css; charset=utf-8 cache-control: public, max-age=28800 expires: Wed, 22 May 2024 14:48:17 GMT last-modified: Tue, 23 May 2023 14:46:23 GMT vary: Accept-Encoding x-content-type-options: nosniff referrer-policy: unsafe-url x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 258079 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ainG%2B5L%2FRlrU6FfDaz0oivgp2JWVEs%2FZDTZ3HS3wGuqU1ltvec3JeFgu5lxcBPC18A7HGaoy3c1c3lQ0PnS93GPuny8orWxxWOytuxLIhbimLBHU8TLEc20A%2FlGKYhU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265ba3cb52d-OSL content-encoding: br X-Firefox-Spdy: h2

	oceannews.com/components/com_sppagebuilder/assets/css/font-awesome-5.min.css	172.66.40.115	200 OK	80320
Search urlquery URL oceannews.com/components/com_sppagebuilder/assets/css/font-awesome-5.min.css DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash b9c89a03009a0a20130b5780e1f8c3a8 External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 8e220af1ce81e9150dc83bd9373f1bb12ac31f0c FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/components/com_sppagebuilder/assets/css/font-awesome-5.min.css IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic ASCII text, with very long lines (58041) Size 80320 Hash b9c89a03009a0a20130b5780e1f8c3a8 8e220af1ce81e9150dc83bd9373f1bb12ac31f0c f21711de37df6d092dcdc4058c8f14796ff7f4e42979853c1c36839906d20594 HTTP Headers GET /components/com_sppagebuilder/assets/css/font-awesome-5.min.css HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: text/css; charset=utf-8 cache-control: public, max-age=28800 expires: Wed, 22 May 2024 14:47:54 GMT last-modified: Tue, 23 May 2023 14:45:21 GMT vary: Accept-Encoding x-content-type-options: nosniff referrer-policy: unsafe-url content-security-policy: default-src 'self'; script-src 'none'; x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 50016 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHGXMiVMdR%2FvYG%2BRgDHNgBlwU0dvZpL2mbT9QRKGiqAYPoxv7NrEyheYGrhRlBCi%2FM1g13gA4d1gJJONmqvcmyKnBaemH2tPMetvY3bZmHVakXJSgwLxBl5qbhkwdWw%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265ba37b52d-OSL content-encoding: br X-Firefox-Spdy: h2

	oceannews.com/components/com_jbusinessdirectory/assets/css/line-awesome.css	172.66.40.115	200 OK	6166
Search urlquery URL oceannews.com/components/com_jbusinessdirectory/assets/css/line-awesome.css DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash 250bc7237c04d9b8f821a6ce95e1e4b6 External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH b7ba414da187cf889c1c22cf58ae2e7084e23192 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/components/com_jbusinessdirectory/assets/css/line-awesome.css IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic ASCII text Size 6166 Hash 250bc7237c04d9b8f821a6ce95e1e4b6 b7ba414da187cf889c1c22cf58ae2e7084e23192 f54810722a99b469151e25ec31547459d0a24d4a7458c0f06b1eb4d1051cd60b HTTP Headers GET /components/com_jbusinessdirectory/assets/css/line-awesome.css HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: text/css; charset=utf-8 cache-control: public, max-age=28800 expires: Thu, 06 Jun 2024 16:42:55 GMT last-modified: Wed, 16 Nov 2022 19:47:39 GMT vary: Accept-Encoding x-content-type-options: nosniff referrer-policy: unsafe-url content-security-policy: default-src 'self'; script-src 'none'; x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 86 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EdNS6Y3l3qVPB1KAxYRIEEJv9CPLYqyDGlUUMDM4mO7i5r1wIzEHZcnOt%2FEK800A7TDPH5pbEtL9JqdA4nzP8VOZm%2FBIQLU9IlaPSelgWFHlDUx16W6f1H16Kfvgjm0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265ba33b52d-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash fc8e1ec54c50413f6e09e63a85414e7c External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 929ef6a2a5150200fe2bacfc03245b53be30e46f FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash fc8e1ec54c50413f6e09e63a85414e7c 929ef6a2a5150200fe2bacfc03245b53be30e46f 9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	oceannews.com/templates/newsberg/fonts/fa-brands-400.woff2	172.66.40.115	200 OK	78472
Search urlquery URL oceannews.com/templates/newsberg/fonts/fa-brands-400.woff2 DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash 0c9f225e8f69c622f681cf1ed973cc3d External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 9e355abda14ee62a7987b2ba7e2e887d33337e25 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/templates/newsberg/fonts/fa-brands-400.woff2 IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic Web Open Font Format (Version 2), TrueType, length 78472, version 331.-31327\012- data Size 78472 Hash 0c9f225e8f69c622f681cf1ed973cc3d 9e355abda14ee62a7987b2ba7e2e887d33337e25 529d0a7b3944929222155bca3272ba1a87acc2faa09b2ed26a713872b7ff8794 HTTP Headers GET /templates/newsberg/fonts/fa-brands-400.woff2 HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://oceannews.com/templates/newsberg/css/font-awesome.min.css DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:58 GMT content-type: font/woff2 content-length: 78472 cache-control: public, max-age=28800 expires: Thu, 06 Jun 2024 14:28:39 GMT last-modified: Thu, 03 Feb 2022 13:13:49 GMT x-content-type-options: nosniff referrer-policy: unsafe-url vary: Accept-Encoding content-security-policy: default-src 'self'; script-src 'none'; x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 86 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZLyuHbOQbBIQa1XPMlVsVawA5bmcHCb9cv73KiONudy5uuhXOR8ERf0%2FcHDIfgmdq0dMpt9ky7YpPEG9hXb0h4NgpYLghFq1YiD7eVM77D4T5CPVDrv7KKM0IleTqH0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f2695f1db52d-OSL X-Firefox-Spdy: h2

	oceannews.com/templates/newsberg/fonts/fa-solid-900.woff2	172.66.40.115	200 OK	80252
Search urlquery URL oceannews.com/templates/newsberg/fonts/fa-solid-900.woff2 DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash 9ae050d1876ac1763eb6afe4264e6d5a External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 72344eab2e7431eec313caa21f266cbfda7caf60 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/templates/newsberg/fonts/fa-solid-900.woff2 IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic Web Open Font Format (Version 2), TrueType, length 80252, version 331.-31327\012- data Size 80252 Hash 9ae050d1876ac1763eb6afe4264e6d5a 72344eab2e7431eec313caa21f266cbfda7caf60 6c916669cf923b4f1b2db5c5107c83b6ca205e7ad0dcd840b251e63f0c8d28a2 HTTP Headers GET /templates/newsberg/fonts/fa-solid-900.woff2 HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Referer: https://oceannews.com/templates/newsberg/css/font-awesome.min.css DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:58 GMT content-type: font/woff2 content-length: 80252 cache-control: public, max-age=28800 expires: Thu, 06 Jun 2024 14:28:39 GMT last-modified: Thu, 03 Feb 2022 13:13:49 GMT x-content-type-options: nosniff referrer-policy: unsafe-url vary: Accept-Encoding content-security-policy: default-src 'self'; script-src 'none'; x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 86 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6K3TVhUcldJfDQin8HmxjcAhRwPMHhoBG%2Bwz7YAlW%2BxvbitkyhcivwiWpNRqYluoVfxWWxCGwdTmgCJpSOqSv0svrHWw7l7fG3otzGjGeM3eqjRkQFeqYFQOEfgO5YU%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f2698f4bb52d-OSL X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash df893f12f5cf31daedf4910ffcc872c8 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH bbd271b0e76cd11d6a00327914b74882c95655fb FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash df893f12f5cf31daedf4910ffcc872c8 bbd271b0e76cd11d6a00327914b74882c95655fb 134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash df893f12f5cf31daedf4910ffcc872c8 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH bbd271b0e76cd11d6a00327914b74882c95655fb FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash df893f12f5cf31daedf4910ffcc872c8 bbd271b0e76cd11d6a00327914b74882c95655fb 134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash df893f12f5cf31daedf4910ffcc872c8 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH bbd271b0e76cd11d6a00327914b74882c95655fb FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash df893f12f5cf31daedf4910ffcc872c8 bbd271b0e76cd11d6a00327914b74882c95655fb 134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash df893f12f5cf31daedf4910ffcc872c8 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH bbd271b0e76cd11d6a00327914b74882c95655fb FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash df893f12f5cf31daedf4910ffcc872c8 bbd271b0e76cd11d6a00327914b74882c95655fb 134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash df893f12f5cf31daedf4910ffcc872c8 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH bbd271b0e76cd11d6a00327914b74882c95655fb FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash df893f12f5cf31daedf4910ffcc872c8 bbd271b0e76cd11d6a00327914b74882c95655fb 134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	oceannews.com/templates/newsberg/images/favicon.ico	172.66.40.115	200 OK	15086
Search urlquery URL oceannews.com/templates/newsberg/images/favicon.ico DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash 94d34039f2341fe330266491858f5fb8 External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 25b6ad70207953edfff79001ee0fd5cff3fb80c1 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/templates/newsberg/images/favicon.ico IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 15086 Hash 94d34039f2341fe330266491858f5fb8 25b6ad70207953edfff79001ee0fd5cff3fb80c1 a27bc87033638265ef2ccd91946deb935f5c3f9db282dc3cec2c69254ee6ca26 HTTP Headers GET /templates/newsberg/images/favicon.ico HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:58 GMT content-type: image/x-icon content-length: 15086 cache-control: no-cache, no-store, must-revalidate,no-transform expires: Fri, 16 Jun 2023 08:18:45 GMT last-modified: Mon, 07 Feb 2022 14:36:06 GMT x-content-type-options: nosniff referrer-policy: unsafe-url content-security-policy: default-src 'self'; script-src 'none'; x-turbo-charged-by: LiteSpeed cf-cache-status: BYPASS accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aDiHQA4HHh1hpB%2BhSdvl%2FPBuk8%2BU1pvfWLYF10uA3s10TEKNNuQ17iXWwUdg6%2BlIfozFyKp59oMDCbzygUiVAgcgl3LxO5kGRgVWlLzQG9y35bEl9teGmP73gEuQhQc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d47f26a0ffcb52d-OSL X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash df893f12f5cf31daedf4910ffcc872c8 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH bbd271b0e76cd11d6a00327914b74882c95655fb FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash df893f12f5cf31daedf4910ffcc872c8 bbd271b0e76cd11d6a00327914b74882c95655fb 134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ipapi.co/json/	104.26.9.44		81193
Search urlquery URL ipapi.co/json/ DOMAIN ipapi.co FQDN ipapi.co IP 104.26.9.44 Hash a4c2e628e1223e8a9fc70b54bfe155d0 External sources Mnemonic PDNS FQDN ipapi.co DOMAIN ipapi.co IP 104.26.9.44 VirusTotal HASH bce25d91d8de9c0325b42a51bac86a86fb7edade FQDN ipapi.co DOMAIN ipapi.co IP 104.26.9.44 crt.sh FQDN ipapi.co DOMAIN ipapi.co URL ipapi.co/json/ IP 104.26.9.44:0 ASN #13335 CLOUDFLARENET Magic JSON data\012- , ASCII text Size 81193 Hash a4c2e628e1223e8a9fc70b54bfe155d0 bce25d91d8de9c0325b42a51bac86a86fb7edade c1e6412292e37c1094340bcf020a349bf39e7ae8f8b088a1fe4a37d5d7a9d259 HTTP Headers `GET /json/ HTTP/1.1 Host: ipapi.co User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://oceannews.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:58 GMT content-type: application/json allow: POST, GET, HEAD, OPTIONS, OPTIONS x-frame-options: DENY vary: Host, origin access-control-allow-origin: https://oceannews.com x-content-type-options: nosniff referrer-policy: same-origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rC4FHvLlk8kRisUEb5I8zHyVSJCMYuHC6WU9M1xc8oxGOCXl0iH9XgGReLv%2Bso%2FFPypHoE0jakaUChNN%2Fby2JN%2Ftk7YeF6ub%2FSujssxcZY5grCWwa4zmugsm"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f26adb74b4eb-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash cfa2f4faaa3c178ca36297b0c4264e37 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 7a77047e893a983873f15a67f94b2be4b114be43 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash cfa2f4faaa3c178ca36297b0c4264e37 7a77047e893a983873f15a67f94b2be4b114be43 faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash cfa2f4faaa3c178ca36297b0c4264e37 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 7a77047e893a983873f15a67f94b2be4b114be43 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash cfa2f4faaa3c178ca36297b0c4264e37 7a77047e893a983873f15a67f94b2be4b114be43 faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash cfa2f4faaa3c178ca36297b0c4264e37 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 7a77047e893a983873f15a67f94b2be4b114be43 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash cfa2f4faaa3c178ca36297b0c4264e37 7a77047e893a983873f15a67f94b2be4b114be43 faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash cfa2f4faaa3c178ca36297b0c4264e37 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 7a77047e893a983873f15a67f94b2be4b114be43 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash cfa2f4faaa3c178ca36297b0c4264e37 7a77047e893a983873f15a67f94b2be4b114be43 faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2	216.58.207.227	200 OK	31052
Search urlquery URL fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash 5c4f357d4926fc197d43abc63b7fca8c External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH 686af7000d038d7479ed36b48a8ebb0ea9b98aea FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/3 fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 31052, version 1.0\012- data Size 31052 Hash 5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3 HTTP Headers GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 31052 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 04:04:56 GMT expires: Fri, 07 Jun 2024 04:04:56 GMT cache-control: public, max-age=31536000 age: 101642 last-modified: Thu, 27 Apr 2023 00:27:41 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2	216.58.207.227	200 OK	20040
Search urlquery URL fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash a61c670a24d6794a95a9712f0d12b656 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH c9b3114b27790109ec51508f51f1a033ccfe0812 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 20040, version 1.0\012- data Size 20040 Hash a61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6 HTTP Headers `GET /s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 08:04:35 GMT expires: Fri, 07 Jun 2024 08:04:35 GMT cache-control: public, max-age=31536000 age: 87263 last-modified: Tue, 02 May 2023 14:54:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2	216.58.207.227	200 OK	20040
Search urlquery URL fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash a61c670a24d6794a95a9712f0d12b656 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH c9b3114b27790109ec51508f51f1a033ccfe0812 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 20040, version 1.0\012- data Size 20040 Hash a61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6 HTTP Headers GET /s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 08:04:35 GMT expires: Fri, 07 Jun 2024 08:04:35 GMT cache-control: public, max-age=31536000 age: 87263 last-modified: Tue, 02 May 2023 14:54:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2	216.58.207.227	200 OK	20040
Search urlquery URL fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash a61c670a24d6794a95a9712f0d12b656 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH c9b3114b27790109ec51508f51f1a033ccfe0812 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 20040, version 1.0\012- data Size 20040 Hash a61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6 HTTP Headers `GET /s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 08:04:35 GMT expires: Fri, 07 Jun 2024 08:04:35 GMT cache-control: public, max-age=31536000 age: 87263 last-modified: Tue, 02 May 2023 14:54:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2	216.58.207.227	200 OK	20040
Search urlquery URL fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash a61c670a24d6794a95a9712f0d12b656 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH c9b3114b27790109ec51508f51f1a033ccfe0812 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 20040, version 1.0\012- data Size 20040 Hash a61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6 HTTP Headers `GET /s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 08:04:35 GMT expires: Fri, 07 Jun 2024 08:04:35 GMT cache-control: public, max-age=31536000 age: 87263 last-modified: Tue, 02 May 2023 14:54:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Arimo:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=latin-ext&display=swap	142.250.74.106	200 OK	36863
Search urlquery URL fonts.googleapis.com/css?family=Arimo:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=latin-ext&display=swap DOMAIN fonts.googleapis.com FQDN fonts.googleapis.com IP 142.250.74.106 Hash 18a677cdfdf0542d46aacfdbafdd0d6b External sources Mnemonic PDNS FQDN fonts.googleapis.com DOMAIN fonts.googleapis.com IP 142.250.74.106 VirusTotal HASH e37cdc668b9e35142c83dcd20bffa13603cee5ef FQDN fonts.googleapis.com DOMAIN fonts.googleapis.com IP 142.250.74.106 crt.sh FQDN fonts.googleapis.com DOMAIN fonts.googleapis.com Fingerprint 3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 URL GET HTTP/3 fonts.googleapis.com/css?family=Arimo:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=latin-ext&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic gzip compressed data, max compression\012- data Size 36863 Hash 18a677cdfdf0542d46aacfdbafdd0d6b e37cdc668b9e35142c83dcd20bffa13603cee5ef 40855a20d1b0eb02ccdde70f66b0a4cccbc92480abd38d6235efa2ed49f64681 HTTP Headers GET /css?family=Arimo:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=latin-ext&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://oceannews.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 09 Jun 2023 08:18:58 GMT date: Fri, 09 Jun 2023 08:18:58 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2	216.58.207.227	200 OK	20040
Search urlquery URL fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 DOMAIN gstatic.com FQDN fonts.gstatic.com IP 216.58.207.227 Hash a61c670a24d6794a95a9712f0d12b656 External sources Mnemonic PDNS FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 VirusTotal HASH c9b3114b27790109ec51508f51f1a033ccfe0812 FQDN fonts.gstatic.com DOMAIN gstatic.com IP 216.58.207.227 crt.sh FQDN fonts.gstatic.com DOMAIN gstatic.com Fingerprint C8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 URL GET HTTP/2 fonts.gstatic.com/s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://oceannews.com/home Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT Magic Web Open Font Format (Version 2), TrueType, length 20040, version 1.0\012- data Size 20040 Hash a61c670a24d6794a95a9712f0d12b656 c9b3114b27790109ec51508f51f1a033ccfe0812 a4f5230d39a7a21971fe62ccde2443345638d2beaa369b752820390a687b91b6 HTTP Headers `GET /s/arimo/v28/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://oceannews.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 20040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Jun 2023 08:04:35 GMT expires: Fri, 07 Jun 2024 08:04:35 GMT cache-control: public, max-age=31536000 age: 87263 last-modified: Tue, 02 May 2023 14:54:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	oceannews.com/templates/newsberg/css/bootstrap.min.css	172.66.40.115	200 OK	45128
Search urlquery URL oceannews.com/templates/newsberg/css/bootstrap.min.css DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash 013e3690bdc1d155b671ccf686cb4f33 External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH a6d680205ad83eb642630574d3ab02148e560931 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/templates/newsberg/css/bootstrap.min.css IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic Unicode text, UTF-8 text, with very long lines (65306) Size 45128 Hash 013e3690bdc1d155b671ccf686cb4f33 a6d680205ad83eb642630574d3ab02148e560931 503027f9521db9a07fad539432046367bdf1537853953be5bb8a3bdce13675a4 HTTP Headers GET /templates/newsberg/css/bootstrap.min.css HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:18:57 GMT content-type: text/css; charset=utf-8 cache-control: public, max-age=28800 expires: Wed, 22 May 2024 14:47:54 GMT last-modified: Thu, 03 Feb 2022 13:13:49 GMT vary: Accept-Encoding x-content-type-options: nosniff referrer-policy: unsafe-url content-security-policy: default-src 'self'; script-src 'none'; x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 50016 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XSjK3QPEabggX1X7tAW0HrKUrpGV32FjhjgG3R90QVAMyc8TYHd1V4eIfwrGkIheUwN%2F6vXD7GikAH8Ecwj0Fj3MB7Q%2BSl8NmeEV8wyd4%2F24GuzQX72mKnKnObaRNDg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f265ba40b52d-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471
Search urlquery URL ocsp.pki.goog/gts1c3 DOMAIN pki.goog FQDN ocsp.pki.goog IP 142.250.74.131 Hash cfa2f4faaa3c178ca36297b0c4264e37 External sources Mnemonic PDNS FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 VirusTotal HASH 7a77047e893a983873f15a67f94b2be4b114be43 FQDN ocsp.pki.goog DOMAIN pki.goog IP 142.250.74.131 crt.sh FQDN ocsp.pki.goog DOMAIN pki.goog URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE Magic data Size 471 Hash cfa2f4faaa3c178ca36297b0c4264e37 7a77047e893a983873f15a67f94b2be4b114be43 faebb1831224e4843915d60cdc5f707ea6de1fd82d1e3b9620bc5c9b611729b6 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 09 Jun 2023 08:18:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.r2m01.amazontrust.com/	54.230.80.227		471
Search urlquery URL ocsp.r2m01.amazontrust.com/ DOMAIN amazontrust.com FQDN ocsp.r2m01.amazontrust.com IP 54.230.80.227 Hash dd8eedd0768f65bdecd4714c776b952d External sources Mnemonic PDNS FQDN ocsp.r2m01.amazontrust.com DOMAIN amazontrust.com IP 54.230.80.227 VirusTotal HASH ce6befe466fd0633753cc51bde4b2c3355834d91 FQDN ocsp.r2m01.amazontrust.com DOMAIN amazontrust.com IP 54.230.80.227 crt.sh FQDN ocsp.r2m01.amazontrust.com DOMAIN amazontrust.com URL ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 Magic data Size 471 Hash dd8eedd0768f65bdecd4714c776b952d ce6befe466fd0633753cc51bde4b2c3355834d91 384b4a81ce30d997630675c074504600fdd0d4bc91a83b41ed3af5cc2431e15d HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 09 Jun 2023 08:18:59 GMT Last-Modified: Fri, 09 Jun 2023 07:39:26 GMT Server: ECAcc (nya/7968) X-Cache: Miss from cloudfront Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: InBuOram406UvbNlnFFF1scSPlAnCA67MLtf4h3ef54YvRHJMAgDOg== Age: 2373`

	s3.amazonaws.com/downloads.mailchimp.com/js/goal.min.js	54.231.135.192	200 OK	2699
Search urlquery URL s3.amazonaws.com/downloads.mailchimp.com/js/goal.min.js DOMAIN s3.amazonaws.com FQDN s3.amazonaws.com IP 54.231.135.192 Hash db78cc3fefd4dc191250a00cf7b530a3 External sources Mnemonic PDNS FQDN s3.amazonaws.com DOMAIN s3.amazonaws.com IP 54.231.135.192 VirusTotal HASH 056bc0b8803cc6a3d4a69dc9d0c2f9bda45e5a63 FQDN s3.amazonaws.com DOMAIN s3.amazonaws.com IP 54.231.135.192 crt.sh FQDN s3.amazonaws.com DOMAIN s3.amazonaws.com Fingerprint 94:B9:7C:21:8C:A0:94:8C:1A:34:F7:CB:48:59:A4:A2:B4:E5:81:03 URL GET HTTP/1.1 s3.amazonaws.com/downloads.mailchimp.com/js/goal.min.js IP 54.231.135.192:443 ASN #16509 AMAZON-02 Requested by https://oceannews.com/home Certificate IssuerAmazon Subjects3.amazonaws.com Fingerprint94:B9:7C:21:8C:A0:94:8C:1A:34:F7:CB:48:59:A4:A2:B4:E5:81:03 ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 20 Dec 2023 23:59:59 GMT Magic ASCII text, with very long lines (2699), with no line terminators Size 2699 Hash db78cc3fefd4dc191250a00cf7b530a3 056bc0b8803cc6a3d4a69dc9d0c2f9bda45e5a63 95988cd724c335017a45083d6113304f8ff09502a3aa961b804f8ae03f4c3ada HTTP Headers `GET /downloads.mailchimp.com/js/goal.min.js HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://oceannews.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK x-amz-id-2: 2WaeUQZCMKqFahR7vmIqBJxRCt5cXB71P4Kd6ulVlxrrZY9Z3pf4NcV5/Va0+14o1J3WCmvXOYY= x-amz-request-id: 5YJ07FRHQB3044M6 Date: Fri, 09 Jun 2023 08:19:00 GMT Last-Modified: Mon, 20 Aug 2018 17:42:37 GMT ETag: "db78cc3fefd4dc191250a00cf7b530a3" Cache-Control: public,max-age=2592000 Accept-Ranges: bytes Content-Type: application/javascript Server: AmazonS3 Content-Length: 2699`

	tr-rc.lfeeder.com/?sid=bElvO73weo67ZMqj&data=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	54.230.111.69		43
Search urlquery URL tr-rc.lfeeder.com/?sid=bElvO73weo67ZMqj&data=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 DOMAIN lfeeder.com FQDN tr-rc.lfeeder.com IP 54.230.111.69 Hash 325472601571f31e1bf00674c368d335 External sources Mnemonic PDNS FQDN tr-rc.lfeeder.com DOMAIN lfeeder.com IP 54.230.111.69 VirusTotal HASH 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a FQDN tr-rc.lfeeder.com DOMAIN lfeeder.com IP 54.230.111.69 crt.sh FQDN tr-rc.lfeeder.com DOMAIN lfeeder.com URL tr-rc.lfeeder.com/?sid=bElvO73weo67ZMqj&data=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 IP 54.230.111.69:0 ASN #16509 AMAZON-02 Magic GIF image data, version 89a, 1 x 1\012- data Size 43 Hash 325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b HTTP Headers GET /?sid=bElvO73weo67ZMqj&data=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 HTTP/1.1 Host: tr-rc.lfeeder.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://oceannews.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: image/gif content-length: 43 server: CloudFront date: Fri, 09 Jun 2023 08:18:59 GMT x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 3SnNRC_TC7RsDEiS1RTc5GwGpoXHMtDk2HZjY1ZS8z8LbtqHyraoWA== X-Firefox-Spdy: h2`

	oceannews.com/media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96	172.66.40.115	200 OK	21
Search urlquery URL oceannews.com/media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96 DOMAIN oceannews.com FQDN oceannews.com IP 172.66.40.115 Hash e2060c4e5e5955c824723b13a212d3ec External sources Mnemonic PDNS FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 VirusTotal HASH 18420ce484978f8ba3d7371febf1638828bb7a67 FQDN oceannews.com DOMAIN oceannews.com IP 172.66.40.115 crt.sh FQDN oceannews.com DOMAIN oceannews.com Fingerprint FF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC URL GET HTTP/2 oceannews.com/media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96 IP 172.66.40.115:443 ASN #13335 CLOUDFLARENET Requested by https://oceannews.com/home Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintFF:78:24:B5:FD:D1:20:C6:E8:19:D1:6A:1A:BC:F7:79:47:2D:22:DC ValidityWed, 12 Apr 2023 00:00:00 GMT - Thu, 11 Apr 2024 23:59:59 GMT Magic ASCII text Size 21 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 HTTP Headers GET /media/jui/js/jquery-noconflict.js?63222df9748a90992ab36a309a130b96 HTTP/1.1 Host: oceannews.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://oceannews.com/home DNT: 1 Connection: keep-alive Cookie: 1c6d5150be99c3dc3fc4e4b15e40772c=d7bd244364fea59983dcf01299935de6; cookieconsent_status=allow; _ga_5ZXKNBQKPE=GS1.1.1686298738.1.0.1686298738.0.0.0; _ga=GA1.1.1204618462.1686298738; _lfa=LF1.1.e9745e660196d97b.1686298738517 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 09 Jun 2023 08:19:02 GMT content-type: application/javascript; charset=utf-8 content-length: 21 cache-control: public, max-age=28800 expires: Wed, 22 May 2024 14:47:54 GMT last-modified: Sun, 14 Aug 2022 15:21:56 GMT x-content-type-options: nosniff referrer-policy: unsafe-url vary: Accept-Encoding x-turbo-charged-by: LiteSpeed cf-cache-status: HIT age: 258084 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cyebDcW1IF%2BZE1TXNXtr40o3TQnHjuxZRRv27pkoqroKzOb1e%2FFbjeeA8D1opFT3Qrw0rWRBuUt7WxeS%2BUiKcTvOv68VYPQZZ6%2BSezbVMI20NAVpKSqNwWbf1HFL4uE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d47f2834d0db52d-OSL X-Firefox-Spdy: h2

	use.typekit.net/dwy8aqa.css	23.36.76.122	200 OK	801
Search urlquery URL use.typekit.net/dwy8aqa.css DOMAIN typekit.net FQDN use.typekit.net IP 23.36.76.122 Hash fc82eec33a0201a76a69aba87f1a2535 External sources Mnemonic PDNS FQDN use.typekit.net DOMAIN typekit.net IP 23.36.76.122 VirusTotal HASH 03a009c3ee3a047dea80adc7526b72642ba73632 FQDN use.typekit.net DOMAIN typekit.net IP 23.36.76.122 crt.sh FQDN use.typekit.net DOMAIN typekit.net Fingerprint 5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

#1 JS:Script (size: 11)

#2 JS:Script (size: 137624)

#3 JS:Script (size: 338)

#4 JS:Script (size: 95199)

#5 JS:Script (size: 8225)

#6 JS:Script (size: 27079)

#7 JS:Script (size: 482)

#8 JS:Script (size: 20219)

#9 JS:Script (size: 2699)

#10 JS:Script (size: 8735)

#11 JS:Script (size: 791350)

#12 JS:Script (size: 78419)

#13 JS:Script (size: 255)

#14 JS:Script (size: 74078)

#15 JS:Script (size: 32188)

#16 JS:Script (size: 61307)

#17 JS:Script (size: 97646)

#18 JS:Script (size: 21)

#19 JS:Script (size: 1012)

#20 JS:Script (size: 448)

#21 JS:Script (size: 12134)

#22 JS:Script (size: 130182)

#23 JS:Script (size: 898)

#24 JS:Script (size: 229038)

#25 JS:Script (size: 13558)

#26 JS:Script (size: 180939)

#27 JS:Script (size: 448)

#28 JS:Script (size: 264512)

#29 JS:Script (size: 397)

#30 JS:Script (size: 337)

#31 JS:Script (size: 15607)

#32 JS:Script (size: 147)

#33 JS:Script (size: 10056)

#34 JS:Script (size: 19006)

#35 JS:Script (size: 462)

#36 JS:Script (size: 4691)

#37 JS:Script (size: 44809)

#38 JS:Script (size: 786)

#1 JS:Write (size: 35)

#2 JS:Write (size: 35)

HTTP Transactions (100)

URL

IP

ASN

Magic

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

Magic

Size

Hash