r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5492
Expires: Wed, 01 Feb 2023 23:55:03 GMT
Date: Wed, 01 Feb 2023 22:23:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7019
Expires: Thu, 02 Feb 2023 00:20:30 GMT
Date: Wed, 01 Feb 2023 22:23:31 GMT
Connection: keep-alive
www.fbcsystemcompatible.com/
205.178.189.131301 Moved Permanently 122 B URL HTTP/1.1 www.fbcsystemcompatible.com/
IP 205.178.189.131:0
ASN #19871 NETWORK-SOLUTIONS-HOSTING
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ad99ee4c058082bdfd9851ff8e7fe7ce
72c3de525678889daa03b82be7f7c40af32d83ac
3571530d39be003be1246b20cc451ca7ea0e090947faf60f1d7ef3c600077fae
GET / HTTP/1.1
Host: www.fbcsystemcompatible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 01 Feb 2023 22:23:31 GMT
Content-length: 122
Content-type: text/html
Location: http://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Connection: close
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 21:36:02 GMT
content-type: application/json
age: 2849
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9208
Expires: Thu, 02 Feb 2023 00:56:59 GMT
Date: Wed, 01 Feb 2023 22:23:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gL8RAm9Dsn12Vvoxl6j4I6DZz4J3rtziKx6tliy1MJBfXhnOMYBx+C3EcZgTIZJ99Km4nvRNZGnKv/padB4DXw==
x-amz-request-id: CZPHVDBCJ2VBWHDB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 21:51:43 GMT
age: 1908
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:31 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 21:41:42 GMT
age: 2510
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.lubrizol.com/CPVC/FBC-System-Compatible-Program
52.237.158.122301 Moved Permanently 195 B URL HTTP/1.1 www.lubrizol.com/CPVC/FBC-System-Compatible-Program
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e0d1a4a70b7864dd9ba22ff15341cfa0
32346cf022d83679b2f437eb9b02092168bafa8c
a76004959bdd8402fe10509e667dd20ad3e7390f6e8097cc44ef935c908e0e36
GET /CPVC/FBC-System-Compatible-Program HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-Azure-Application-Gateway/v2
Date: Wed, 01 Feb 2023 22:23:32 GMT
Content-Type: text/html
Content-Length: 195
Connection: keep-alive
Location: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5266
Expires: Wed, 01 Feb 2023 23:51:18 GMT
Date: Wed, 01 Feb 2023 22:23:32 GMT
Connection: keep-alive
push.services.mozilla.com/
35.163.49.154101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.49.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3EAsXaP2ABgGNyZCRBgVdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VqlA3MU/gPJn3AqiaSD/up88jT0=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4840596bf3d8c7470ca1197a0e636264
241f277a6be3f1364803d78964219cb6c1c0e6a5
ec67557c5150234429c29f6dfbcfa78043387a7c029a56ae687dc83e4648607e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=117105
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:32 GMT
Etag: "63da0cd5-1d7"
Expires: Fri, 03 Feb 2023 06:55:17 GMT
Last-Modified: Wed, 01 Feb 2023 06:55:17 GMT
Server: nginx
Content-Length: 471
www.lubrizol.com/CPVC/FBC-System-Compatible-Program
52.237.158.122200 OK 12 kB URL HTTP/1.1 www.lubrizol.com/CPVC/FBC-System-Compatible-Program
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1473), with CRLF, LF line terminators
Hash dc48616101c0242264daa94a1b77addb
1259abd5aafb44732636cfdc0aac9853ac8aec19
86ad4b8ba74b0d69999f67c382bc7e5241fe685da1446814af2b90678e929456
GET /CPVC/FBC-System-Compatible-Program HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 11812
Connection: keep-alive
Cache-Control: no-cache, no-store
Content-Encoding: gzip
Expires: -1
Pragma: no-cache
Set-Cookie: shell#lang=en; path=/; secure; SameSite=None
ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; path=/; secure; HttpOnly; SameSite=None
SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; expires=Sat, 29-Jan-2033 22:23:32 GMT; path=/; secure; HttpOnly; SameSite=None
sxa_site=lubrizol; path=/; secure; HttpOnly; SameSite=None
ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bfa5b6aa996442e23a0bc88d731fec2
7fb66a39781a0333502ca7d0fdfb2bae5b5f83c5
272e17f4eccec18edbce753e4287be7769433ce2d79c6f8c708fdec681227805
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3836
Cache-Control: max-age=139634
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Etag: "63da55db-1d7"
Expires: Fri, 03 Feb 2023 13:10:47 GMT
Last-Modified: Wed, 01 Feb 2023 12:06:51 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.lubrizol.com/Presentation/scripts/src/jquery.min.js
52.237.158.122200 OK 38 kB URL HTTP/1.1 www.lubrizol.com/Presentation/scripts/src/jquery.min.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (32019)
Hash 7a4709a3be25fbc05e785d956a1fccd7
0fc2fc6c27640e5df3a09645380e6003f6284a3e
e586f6c94d68cd6736f007be7007158cb2f1b3bdfb2f11015a6975110487f4ae
GET /Presentation/scripts/src/jquery.min.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 38386
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 68392e0c8f1f84a170c6f57b1a218bbf
8c251ff921092ffb005668047e20979dfea71a17
1e6c9765fe503b607bd88b8dc784e8fba6de14ab32782e29adc96464f9fd1cce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6206
Cache-Control: max-age=126534
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Etag: "63da196d-1d7"
Expires: Fri, 03 Feb 2023 09:32:27 GMT
Last-Modified: Wed, 01 Feb 2023 07:49:01 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=25e47bdf1c
104.18.22.52200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=25e47bdf1c
IP 104.18.22.52:0
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=25e47bdf1c HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Origin: https://www.lubrizol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 2678189
accept-ranges: bytes
server: cloudflare
cf-ray: 792e179b69d8b4fa-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=25e47bdf1c
104.18.22.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=25e47bdf1c
IP 104.18.22.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=25e47bdf1c HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Origin: https://www.lubrizol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 2678189
accept-ranges: bytes
server: cloudflare
cf-ray: 792e179b69ddb4fa-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=25e47bdf1c
104.18.22.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=25e47bdf1c
IP 104.18.22.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=25e47bdf1c HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Origin: https://www.lubrizol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1682162
accept-ranges: bytes
server: cloudflare
cf-ray: 792e179b69dbb4fa-OSL
X-Firefox-Spdy: h2
www.lubrizol.com/Presentation/scripts/mp_linkcode.js
52.237.158.122200 OK 927 B URL HTTP/1.1 www.lubrizol.com/Presentation/scripts/mp_linkcode.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6dd78a34b4a5cacf753edb94b06ca552
32baecff6bbfd1c34ef1806a0a3315ad0ecd9cc9
605bce17fe2ac85a7e391f97e2439bdb1068f98270f1bcf3c853f0afc8f0d476
GET /Presentation/scripts/mp_linkcode.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 927
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/layouts/system/VisitorIdentification.js
52.237.158.122200 OK 1.1 kB URL HTTP/1.1 www.lubrizol.com/layouts/system/VisitorIdentification.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 18b9388cd5c81aab3e712ad61505a96c
3570333ccac8a5a9c5b3c78e37617a36004fcd8e
a48dd9756456afe82f04f32132d1929b86b7fdde12bbedb9e1fb764ce8ba3bce
GET /layouts/system/VisitorIdentification.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 1074
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0510f0de56d71:0"
Last-Modified: Tue, 01 Jun 2021 12:09:14 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive
www.lubrizol.com/Presentation/css/src/level2-jasny.css
52.237.158.122200 OK 1.4 kB URL HTTP/1.1 www.lubrizol.com/Presentation/css/src/level2-jasny.css
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash f45a568f3274328f77315a4ac87acb60
0025c81bb60befca4796316f8628f91308d66ff6
d1f2f0946289f621942eead8aaf5ce482c187cfffc1fbcaa85a07bcf9527f232
GET /Presentation/css/src/level2-jasny.css HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: text/css
Content-Length: 1378
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axFfTgcGtvqt1RcbyLpovD5Fr7J2Wx9pNwb92m2rwTdj-sGp0bIq-Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:10 GMT
age: 1463
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQlfIcpWrJw9N6I7WNmV5feaR9QNy3FUSCOJQeyAnYS0oEH12dtzqg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 1438
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap
142.250.74.106200 OK 15 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap
IP 142.250.74.106:0
Hash 9cf62f572692218952dc96a37036fc97
3afde059642d90744ef7ea0952f6f910a6cfceca
8b9a50164dac049f506a70f6952a7451c4bbbe8fe0407015fef5a436f35b31cc
GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 22:23:33 GMT
date: Wed, 01 Feb 2023 22:23:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 1437
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lubrizol.mpeasylink.com/mpel/mpel.js
44.196.216.203200 OK 11 kB URL HTTP/2 lubrizol.mpeasylink.com/mpel/mpel.js
IP 44.196.216.203:0
Hash baee2ca9d95e6de7cd445f21817584b3
03ee4e4136758ee45b43687eb07be399e2c24070
49e51e934ef6ed3738751f6b6e729ed13369e7b1d401c24de1db8effaf979105
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel.js HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"5097-1609775222000"
last-modified: Mon, 04 Jan 2021 15:47:02 GMT
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 22:23:33 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0ca0ccee69fbee57aac373f94120bb4
5d6309502ffd0c33f6199d46f0d14d0a22e3c752
bed9d4689ff57fa636ee08dab3eef3cdf6c4e0a7103e5185151afe8ddfb755f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 1438
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.lubrizol.com/Presentation/scripts/src/modernizr.js
52.237.158.122200 OK 20 kB URL HTTP/1.1 www.lubrizol.com/Presentation/scripts/src/modernizr.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document, ASCII text
Hash 24525b52cfdaa55f8888cdb68cfb8a76
09096c419dcab6e6c889256a559a08ac168e0477
9d58439b83720600f36efef3bd7f2960c175bea083cf50195c55452ffc533d4b
GET /Presentation/scripts/src/modernizr.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 19591
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/scripts/Components/CaseStudies.js
52.237.158.122200 OK 769 B URL HTTP/1.1 www.lubrizol.com/Presentation/scripts/Components/CaseStudies.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f235d23ce179455c46c5ac059bea49ac
698bef533f1ea69f378d851c5cadb576310b074a
ad768823365fef2bae581cfe4fa851efaaec12999ecd0dcd78e8b0a0e91f41e8
GET /Presentation/scripts/Components/CaseStudies.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 769
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/JS/Shared/HeaderSocialShare.js
52.237.158.122200 OK 429 B URL HTTP/1.1 www.lubrizol.com/Presentation/JS/Shared/HeaderSocialShare.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ffc5b6239f89993f1635f39b9224e54d
b0aba45eae46154c7f1a4ab20b67b899d3fd3536
468e7908f36db6d6636bbd97ea4e99730a6e936a1c6ab31d19083c7446d2bce6
GET /Presentation/JS/Shared/HeaderSocialShare.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 429
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/CSS/Components/cookieconsent.css
52.237.158.122200 OK 590 B URL HTTP/1.1 www.lubrizol.com/Presentation/CSS/Components/cookieconsent.css
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 007a0356125720bf8b5ee692d3172bac
46518bed02a214a6b01a5f7f951ae895ba7aa15e
f0377989cc582da226b68d24c903c1a802eb8ea3253c9945ed970d16487d0803
GET /Presentation/CSS/Components/cookieconsent.css HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: text/css
Content-Length: 590
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "01c6db6b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:04 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/JS/lib/jquery.cookie.js
52.237.158.122200 OK 1.6 kB URL HTTP/1.1 www.lubrizol.com/Presentation/JS/lib/jquery.cookie.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 29edfe49a5fa1c2d23e640e31d7a5735
ef16bfbfc7e306e2b8536e5d71c2d143b71a32d4
4228a66bbbfc2165118b75aad8047d1db89084be85d90fd3b22332c9fbb8bf5a
GET /Presentation/JS/lib/jquery.cookie.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 1635
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/JS/Components/cookieconsent.js
52.237.158.122200 OK 390 B URL HTTP/1.1 www.lubrizol.com/Presentation/JS/Components/cookieconsent.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 4c966f278a0fbc2656c1949238c223e4
e5c20643be1e619bc1ec3bc9e0314633623020c0
13cdb9e9ff2cdeb999b86e1bb38f37da224e7a4456d8be4be7a8a2b968cf2de4
GET /Presentation/JS/Components/cookieconsent.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 390
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/scripts/src/bundle/Lubrizolbundle.min.js
52.237.158.122200 OK 32 kB URL HTTP/1.1 www.lubrizol.com/Presentation/scripts/src/bundle/Lubrizolbundle.min.js
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (35344)
Hash 6ea5e5c8a94bf0376e3a3baf2741bb44
d2437075c36fac8d945b27fd21a06b61d7f3c275
5286d53ff966be49481cd9ec2b0bf0fc01e2deacc4919e0f1ea011808356b80f
GET /Presentation/scripts/src/bundle/Lubrizolbundle.min.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 32372
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
52.237.158.122200 OK 40 kB URL HTTP/1.1 www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (61891)
Hash c100b2d82f4ff0968523809ca1adbbd3
4f5dce87acf436952948099e1cf46b5147fc16b4
c8025d360ada383ed6988d5e30b810b0ebf27fac2de994404482366adae9f497
GET /Presentation/css/src/bundle/Lubrizol.min.css HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: text/css
Content-Length: 40213
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "01be822b210d91:0"
Last-Modified: Thu, 15 Dec 2022 18:22:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:26:49 GMT
expires: Sun, 28 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
age: 388605
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 119668
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 260494
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/ns.html?id=GTM-PZXR5K2
142.250.74.168200 OK 278 B URL HTTP/2 www.googletagmanager.com/ns.html?id=GTM-PZXR5K2
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7f5edbde65a04f2925d24c874f9fbd6c
edf4f3547477f98f171c0bc2466a778d0d9b52fb
232193d9e95d7ae1ac116012f221cf6c74d0af3d6d1c14bc65bf98494d0dc83f
GET /ns.html?id=GTM-PZXR5K2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 278
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-PZXR5K2
142.250.74.168200 OK 97 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-PZXR5K2
IP 142.250.74.168:0
File type ASCII text, with very long lines (56120)
Hash bc1a9ae01923c15b33fdacbc80ae7eaa
f4f3480f601146cdf928d4dc590cf369101a4c62
eeb217a6576b3e3ef06a4fe02d0427f5d45239ad76890ea35aa92afaef7e4164
GET /gtm.js?id=GTM-PZXR5K2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 22:23:34 GMT
expires: Wed, 01 Feb 2023 22:23:34 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 Feb 2023 21:36:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97167
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.lubrizol.com/-/media/Lubrizol/Logo/yt_icon_mono_dark.png
52.237.158.122200 OK 1.3 kB URL HTTP/1.1 www.lubrizol.com/-/media/Lubrizol/Logo/yt_icon_mono_dark.png
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 19 x 13, 8-bit colormap, non-interlaced\012- data
Hash 0b6f09efff3e1078a18f90382334ff64
97342156a08a841b05eabdf6c0e78beb14844094
dda50ddeecd4bca487ae3284288ca49628982bbf7498431b5cbda715dbdea840
GET /-/media/Lubrizol/Logo/yt_icon_mono_dark.png HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: image/png
Content-Length: 1262
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=595424
ETag: a27fe6cf31674a768bddd7d03d6300af
Last-Modified: Mon, 04 Jan 2021 20:39:36 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
Content-Disposition: inline; filename="yt_icon_mono_dark.png"
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.lubrizol.com/Presentation/fonts/glyphicons-halflings-regular.woff2
52.237.158.122200 OK 18 kB URL HTTP/1.1 www.lubrizol.com/Presentation/fonts/glyphicons-halflings-regular.woff2
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
GET /Presentation/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: application/font-woff2
Content-Length: 18028
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/-/media/Images/App-Stores/Download_on_the_App_Store_Badge_US-UK_135x40.svg
52.237.158.122200 OK 12 kB URL HTTP/1.1 www.lubrizol.com/-/media/Images/App-Stores/Download_on_the_App_Store_Badge_US-UK_135x40.svg
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d0558d91063038236b60e3ef71fdc1fd
5eb1a238a24f928783bfdf3e8b093e1b38aebe88
25178aeef6eb6b83b96f5f2d004eda3bffbb37122de64afbaef7107b384a4132
GET /-/media/Images/App-Stores/Download_on_the_App_Store_Badge_US-UK_135x40.svg HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: image/svg+xml
Content-Length: 12353
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=588758
ETag: aecad1d83cf04449aff1e27b6b40a700
Last-Modified: Thu, 08 Sep 2016 14:56:38 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
Content-Disposition: inline; filename="Download_on_the_App_Store_Badge_US-UK_135x40.svg"
www.lubrizol.com/-/media/Lubrizol/Logo/Lubrizol-Logo-White.png?h=30&iar=0&w=100&hash=2BA9195F91C8390C1BC3E1288171AFB7
52.237.158.122200 OK 1.6 kB URL HTTP/1.1 www.lubrizol.com/-/media/Lubrizol/Logo/Lubrizol-Logo-White.png?h=30&iar=0&w=100&hash=2BA9195F91C8390C1BC3E1288171AFB7
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 100 x 30, 8-bit colormap, non-interlaced\012- data
Hash 6902d10e3590e9dfdfa41073d0dd70d1
852b33d6ce5c51229e44fc222b073acfb8e4291b
1a14bd364127c88997ebc8af65c373bd091ebf0fe4907a1018289ced77f42a8d
GET /-/media/Lubrizol/Logo/Lubrizol-Logo-White.png?h=30&iar=0&w=100&hash=2BA9195F91C8390C1BC3E1288171AFB7 HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: image/png
Content-Length: 1626
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=604800
ETag: 9831cc43022c4f639665f23b5518187b
Last-Modified: Tue, 24 Sep 2019 20:02:40 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
Content-Disposition: inline; filename="Lubrizol Logo White.png"
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 5e01d6c641ea60dd765ab60412bdca59
58739badba2f4d3dd08520cef55eee687cd7dd16
9c6067fe0021e67a46df754c73bb5b41f693e70ff00fa9f0e4dca55ad3e50d9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=
216.58.211.2302 Found 42 B URL HTTP/2 www.googleadservices.com/pagead/conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=
IP 216.58.211.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data= HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dc.ads.linkedin.com/collect/?pid=3090252&fmt=gif
13.107.42.14302 Found 0 B URL HTTP/2 dc.ads.linkedin.com/collect/?pid=3090252&fmt=gif
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=3090252&fmt=gif HTTP/1.1
Host: dc.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D3090252%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQILRfQYO_3h7QAAAYYPFACuCyITvdZK-5JBU6BpoR5V0hh7UFR_m6mgtLReOGhuCGD6hVgGfCcqDQ; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:34 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKY9RXscuXlkQAAAYYPFACuaOhoYnEolN7zDQDCb0Vm1imeFdb2oVt7MR_SMmfZ4WXbCgdFQrou5Le99eJu-Q; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:34 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&d78f9e1f-4bf6-4c79-8ae0-0d81335c926f"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 22:23:34 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675290214:t=1675376614:v=2:sig=AQEdyLCPUNr8HVKsZTA8W83Rf046tgsy"; Expires=Thu, 02 Feb 2023 22:23:34 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzquYijS3ZiOiwlgPaDg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BE19E7018AD245579F1C2F1FFEB0B17A Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:34Z
date: Wed, 01 Feb 2023 22:23:34 GMT
content-length: 0
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
54.230.241.118200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 54.230.241.118:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash bb21b4ac5c8f198136244beb5c8e0804
0eab22f7b9ca0610c0e416296b93087de5e37a63
37d542a03db1e2e120cb42dc3d6cbd94e15005cdfd605cbe070eb27e986f6095
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 08:26:12 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q6N9IqdYhjdUbDn9p0dqLMLV1YytAsPPtIlN2U2dpHcq6LT6zCu4Hw==
Age: 50243
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.lubrizol.com/Presentation/fonts/icomoon.ttf?zck2tn
52.237.158.122200 OK 34 kB URL HTTP/1.1 www.lubrizol.com/Presentation/fonts/icomoon.ttf?zck2tn
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash b20ecb64c77a7b7b416fc4d6e686f4b7
15e9e28a0bbf5afc1dd33e1aa18ef5ec6b1bceca
1c3a6e785e2427d3deffbf4eab34e3bbd6e3ebd9b4379eb6a21cc2e3d8236d4b
GET /Presentation/fonts/icomoon.ttf?zck2tn HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: application/octet-stream
Content-Length: 33820
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd=
142.250.74.130302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd=
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 22:38:34 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lubrizol.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US
44.196.216.203200 OK 735 B URL HTTP/2 lubrizol.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US
IP 44.196.216.203:0
File type ASCII text, with very long lines (735), with no line terminators
Hash f6918dfdea7ffb15cfea6896d6178688
65c4535a619301b6bd9e1ad280c2f1473cc8e7a4
55573eb6dd5853e4c80d549e706bb9196a0a0cfffa75bc63ff493e6243066a88
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined®ion=undefined&osl=en-US HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:34 GMT
content-type: text/javascript;charset=UTF-8
content-length: 735
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa OUR IND COM NAV INT STA"
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lubrizol.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
44.196.216.203200 OK 1.3 kB URL HTTP/2 lubrizol.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
IP 44.196.216.203:0
Hash 060ba3d5522889a612de058955a822c5
d250259771a78a53a29b5dc7aafd512077b39c2a
5b822d9656a79434e02c031d32fdc49e137e7177a2d491052a878717c99c1bd9
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:34 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2759-1609775222000"
last-modified: Mon, 04 Jan 2021 15:47:02 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster}
54.230.111.58200 OK 1.8 kB URL HTTP/2 live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster}
IP 54.230.111.58:0
File type HTML document, ASCII text, with very long lines (1133)
Hash 0c7336debadf1295dfc6c3880fe24e76
9e5c5e9a88fa93686920062e55450298dc182bfd
e3cfaaf7e962ca5f784100937a3607b6a52e98ed013dd06c6f7fb1e586e91967
GET /sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster} HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 1814
date: Wed, 01 Feb 2023 22:23:34 GMT
set-cookie: zync-uuid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e:1675290214.720998; Domain=rezync.com; Expires=Mon, 31 Jul 2023 14:23:34 GMT; Path=/; SameSite=None; Secure
sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In0.Y9rmZg.wty86E-QYPQUgRTeFvx7nhZ6hWo; Expires=Mon, 31 Jul 2023 22:23:34 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CdqMeggabQ7BCUbYa26QPev7D7p2nHQvwkT1xJ9DVlc308v0w0LWMA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478&ipr=y&prhg=0
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478&ipr=y&prhg=0
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.boomtrain.com/p13n/lubrizol-corporation/p13n.min.js
54.230.111.55200 OK 30 kB URL HTTP/1.1 cdn.boomtrain.com/p13n/lubrizol-corporation/p13n.min.js
IP 54.230.111.55:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 08120910df423789dfbc189b81e51d4b
53dd02ab400db31dac956ff4d02faa4371d8d012
4dbff47335ab36ba02408d13331478e592bb1a6dc6145a17f559ea522c189e01
GET /p13n/lubrizol-corporation/p13n.min.js HTTP/1.1
Host: cdn.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:53:33 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: my8NKObSZev..DIWQ0JDGOx1I2VqnJAe
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=3600
ETag: W/"104fba48f1451cdb3b14b6d6f75efaa3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oAsUmQh19bVHKzeQWFHedg7gAQBivTKSoiFPiGd6GrjMu3wAiQ3rRw==
Age: 1740
c1.rfihub.net/js/tc.min.js
54.230.111.29200 OK 6.2 kB URL HTTP/2 c1.rfihub.net/js/tc.min.js
IP 54.230.111.29:0
File type C source, ASCII text, with very long lines (19497)
Hash ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f
GET /js/tc.min.js HTTP/1.1
Host: c1.rfihub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6162
date: Wed, 01 Feb 2023 21:26:17 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
cache-control: public, max-age=3600
expires: Wed, 01 Feb 2023 22:26:17 GMT
last-modified: Wed, 01 Feb 2023 21:26:07 GMT
content-encoding: gzip
server: Jetty(9.3.29.v20201019)
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8XthaOO6D22q05lqa6DDOG-Jwjccl_aTUEsre4A3hJ3-1740qR-Cgw==
age: 3438
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.210200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=13043
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 21:45:20 GMT
expires: Wed, 01 Feb 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 2295
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/intl/en_us/badges/images/generic/en_badge_web_generic.png
142.250.74.78302 Found 284 B URL HTTP/2 play.google.com/intl/en_us/badges/images/generic/en_badge_web_generic.png
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9eb20e53f15c05dec7817750a07830e1
28c80c8b3546ead8bf99e0523cd85da02452d1c4
0de5342646b1fbde8390c9adfef31f1b443e2ccdeb921d90e037e04e61fb1214
GET /intl/en_us/badges/images/generic/en_badge_web_generic.png HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://play.google.com/intl/en_us/badges/static/images/badges/en_badge_web_generic.png
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 01 Feb 2023 22:23:35 GMT
server: sffe
content-length: 284
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-BZWJGZ4Z3L>m=2oe1u0&_p=1271725107&_gaz=1&cid=1973120461.1675290238&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675290238&sct=1&seg=0&dl=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&dt=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_section=CPVC&ep.page_subSection1=&ep.page_subSection2=&ep.page_group=General%20Content&ep.search_tool=&epn.search_results_count=0&ep.environment=prod&ep.platform=web&up.crm_user_id=&up.login=False
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-BZWJGZ4Z3L>m=2oe1u0&_p=1271725107&_gaz=1&cid=1973120461.1675290238&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675290238&sct=1&seg=0&dl=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&dt=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_section=CPVC&ep.page_subSection1=&ep.page_subSection2=&ep.page_group=General%20Content&ep.search_tool=&epn.search_results_count=0&ep.environment=prod&ep.platform=web&up.crm_user_id=&up.login=False
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BZWJGZ4Z3L>m=2oe1u0&_p=1271725107&_gaz=1&cid=1973120461.1675290238&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675290238&sct=1&seg=0&dl=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&dt=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_section=CPVC&ep.page_subSection1=&ep.page_subSection2=&ep.page_group=General%20Content&ep.search_tool=&epn.search_results_count=0&ep.environment=prod&ep.platform=web&up.crm_user_id=&up.login=False HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.lubrizol.com
date: Wed, 01 Feb 2023 22:23:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-BZWJGZ4Z3L&cid=1973120461.1675290238>m=2oe1u0&aip=1
64.233.162.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-BZWJGZ4Z3L&cid=1973120461.1675290238>m=2oe1u0&aip=1
IP 64.233.162.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BZWJGZ4Z3L&cid=1973120461.1675290238>m=2oe1u0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.lubrizol.com
date: Wed, 01 Feb 2023 22:23:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/apple-icon.png
52.237.158.122200 OK 6.5 kB URL HTTP/1.1 www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/apple-icon.png
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b38db7894776811ae3a209dfbffc928b
c84ca0fa0537d0830212d6e63ce688ec05967804
83d418d2c5b94019a996b672774ffc32383f7836b47fc8e747a187aaf43a1fd6
GET /Presentation/CSS/Lubrizol/Icons/FavIcons/apple-icon.png HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol; _ga_BZWJGZ4Z3L=GS1.1.1675290238.1.0.1675290238.60.0.0; _ga=GA1.1.1973120461.1675290238; btIdentify=2e5a0488-9a80-4215-b00b-536ad056f9dc; _bti=%7B%22bsin%22%3A%22%22%7D; _bts=e280c698-3e7f-4386-fad9-7e0b233aed6f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: image/png
Content-Length: 6502
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/favicon-16x16.png
52.237.158.122200 OK 1.2 kB URL HTTP/1.1 www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/favicon-16x16.png
IP 52.237.158.122:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 6d4e6b1c775d8e23f09659095de84c43
68ae5c436b1e37068e1e995d98ae298badd7f18c
2b255e3b9efc0be947b3a067e3b37301464900288216b340c9bcddcb5e6d4266
GET /Presentation/CSS/Lubrizol/Icons/FavIcons/favicon-16x16.png HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol; _ga_BZWJGZ4Z3L=GS1.1.1675290238.1.0.1675290238.60.0.0; _ga=GA1.1.1973120461.1675290238; btIdentify=2e5a0488-9a80-4215-b00b-536ad056f9dc; _bti=%7B%22bsin%22%3A%22%22%7D; _bts=e280c698-3e7f-4386-fad9-7e0b233aed6f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: image/png
Content-Length: 1240
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 6725a32b97787d7eaee2f95845003253
8b5d0b009ee154a7d9761cf2358b45667180cadc
b65f6771520ea260eb6ec7c1dc117c5002d8929df7b57d7ee14b5b4a309f3a10
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 22:23:35 GMT
Last-Modified: Wed, 01 Feb 2023 20:49:43 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3hMhkcfiCHYKeZ7_houSicUJd14fTo4bOC28ds6PY-5GnAYTyjDUcA==
Age: 5632
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJgZiYVFWbJYQAAAYYPFARGEY1WkIk-B0KKwuqeFKgAa3NOAJ6hfKq1pRFvctLxxNlfR2kjrCqkBg; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLHFP2XJPTOZgAAAYYPFARGkaofxP92F_RnqUy4CvTNAZNSc8o9kFbtTZzT9go2aktsy2DozLx8S5yRpNSoEQ; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&8da54f7d-2ec2-4fd6-8c11-d3a68cd2813f"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 22:23:35 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675290215:t=1675376615:v=2:sig=AQHmaEnaHqIurCEiVe52BEGyhPZF5tcq"; Expires=Thu, 02 Feb 2023 22:23:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzquYwnp+VJ8ZR9R15qg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 43894247626847FFAB188D0610021FA1 Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:35Z
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash b4c7f61557aabbbc5a9905ee5ef984f2
eb474300858289d87afc27ee73e9de6e2f4ec13d
a329312a49a60656374192aafea83e8cf7849883af61e50a2dc3f0fe9718ac34
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:15:48 GMT
Expires: Wed, 08 Feb 2023 02:15:47 GMT
Etag: "eb474300858289d87afc27ee73e9de6e2f4ec13d"
Cache-Control: max-age=531731,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17a609f0b521-OSL
people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In19&site_id=lubrizol-corporation
44.194.69.37200 OK 154 B URL HTTP/1.1 people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In19&site_id=lubrizol-corporation
IP 44.194.69.37:0
File type JSON data\012- , ASCII text
Hash 25befbd75e6f21975831a50970dadc16
051e3eee1e658b9c2b65aa1428b37795308b7d08
dc62534666ca690bfc1677087b166f7caf6690f51a032bcb75debdf2de9846da
GET /identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In19&site_id=lubrizol-corporation HTTP/1.1
Host: people.api.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Authorization,x-app-id
Access-Control-Allow-Methods: GET,PUT,POST,DELETE
Access-Control-Allow-Origin: *
Content-Type: application/json
Date: Wed, 01 Feb 2023 22:23:35 GMT
Server: nginx
Content-Length: 154
Connection: keep-alive
20841940p.rfihub.com/ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346
193.0.160.128200 OK 2.5 kB URL HTTP/1.1 20841940p.rfihub.com/ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346
IP 193.0.160.128:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2534), with no line terminators
Hash 99e400a5979521146ebcd9d11f3a2755
60c1cd8377aaa665459123d4de5f33f1e9da0914
36767fd3265f257c558f57ae2ed178eb6f428ea4e3d26868c55b736239e41e36
GET /ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346 HTTP/1.1
Host: 20841940p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0NjY2sjQ1MjE0MDIwNrcwMRfiM9T1jfc3KMp0Ny1K9HEGAEUS-vIlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_5vFyGtoZm5qZGlgZGhqamm4C41_Co3_Co3_C40_iQmVPwuNvwiNvwqNvwmNvwtdPQsq_xYafxMrmn5uNPt50fjCqPxHaHwA_6WSRCABAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:35 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjY2sjQ1MjE0MDIwNrcwMRfiM9T1jfc3KMp0Ny1K9HEGAEUS-vIlAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:35 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: text/html;charset=utf-8
Content-Length: 2534
Server: Jetty(9.3.29.v20201019)
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&c4b08794-7fd4-4c5e-8393-36818ded2974"; Domain=.linkedin.com; Expires=Thu, 01-Feb-2024 22:23:35 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202302012223355a4bd596-93ba-4cbd-8ec3-844b25c9b297AQFb7NvjpKlMj5cykO_IJfKB23DQKo-G"; Domain=.www.linkedin.com; Expires=Thu, 01-Feb-2024 22:23:35 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUyOTAyMTU7MjswMjFo82PI0jTwruN1xvVXIcUi46aFTH+7wZocpl7l6f6qeg==; Domain=.linkedin.com; Expires=Mon, 31 Jul 2023 22:23:35 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675290215:t=1675376615:v=2:sig=AQHmaEnaHqIurCEiVe52BEGyhPZF5tcq"; Expires=Thu, 02 Feb 2023 22:23:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzquYyYLjHNmNQWdlfwA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CA7DE658F22A4CB5A790A0EF09297F11 Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:35Z
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 0
X-Firefox-Spdy: h2
live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5133329524102037847&referrer=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
54.230.111.58302 Found 657 B URL HTTP/2 live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5133329524102037847&referrer=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
IP 54.230.111.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (571)
Hash 21ad5da1cd2df0f1cf195bcb6605f05c
c4e5985a855bb450465c7717b5db16e79f28aec8
cc09465ac7419c972d804832984c31b5d6207f597c5fb4d2b3eb1a7111a8c836
GET /pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5133329524102037847&referrer=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Cookie: zync-uuid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e:1675290214.720998; sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In0.Y9rmZg.wty86E-QYPQUgRTeFvx7nhZ6hWo
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 657
location: https://p.rfihub.com/cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998
date: Wed, 01 Feb 2023 22:23:35 GMT
set-cookie: zync-uuid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e:1675290214.720998; Domain=rezync.com; Expires=Mon, 31 Jul 2023 14:23:35 GMT; Path=/; SameSite=None; Secure
sd-session-id=.eJwNyksOgyAQANC7zFoamBm-lzEC04S00kZ0U-Pd6_Il74T5K9u6dOk7pH07ZILybrcGpBNG-63yggTWEBFGi2w0avKBPVwTDBmjffrc6n2clhJKcaqKQcUGWYXFssqZquNn9pUkGectRo2GHx51jAGuP5NCJbs.Y9rmZw.Rbn7MdDABtL2-WY5xU3RB70xArg; Expires=Mon, 31 Jul 2023 22:23:35 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3PsGdA98GDwIxi6gYjkCsgDijjZ_UGbGHgBR3QJM_aXP6thIs8GPhw==
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&debf1396-070f-4201-8d96-6d4a1741ce6f"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 22:23:35 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675290215:t=1675376615:v=2:sig=AQEay9Ny0oLvT4vs2biayyuG7_yAwGh8"; Expires=Thu, 02 Feb 2023 22:23:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzquY2JfHIl94Al42kpw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 71FFBE11C48C43B581442389551AD88A Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:35Z
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash bb05d9d7d42cc1938b9bcf9989fb9cdf
04b891afee71ba94ea17886928e9d4306c866cfc
7965c67978ff70fb9320f8aa569605cd79b82a62e811b68b474a9ae7f18ae405
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=91225
Date: Wed, 01 Feb 2023 22:23:35 GMT
Etag: "63d9996e-1d7"
Expires: Thu, 02 Feb 2023 23:44:00 GMT
Last-Modified: Tue, 31 Jan 2023 22:42:54 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: amsqWOqMrmRgHVyY6DBmetK71hWn_b6RkQ3zfaauk6uCTJ--TxxPBg==
Age: 3666
contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5133329524102037847
23.38.200.22200 OK 237 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5133329524102037847
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990
GET /cksync.php?cs=3&type=rkt&ovsid=5133329524102037847 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3182918153580274000V10; Expires=Thu, 01 Feb 2024 22:23:35 GMT; domain=.media.net; Path=/;
data-rk=5133329524102037847~~3;Expires=Wed, 31 Jan 2024 22:23:35 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 01 Feb 2023 22:23:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 22:23:35 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=
142.250.74.98302 Found 369 B URL HTTP/2 cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9b0abae714eddf7101311d76a4b68044
be99b553f4e3a267f033186387d0e9808625f306
6dd06ee44924742cd7ac9a97c1a4a4f8aac8de73636a36f195bd05c9acb06211
GET /pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc=
date: Wed, 01 Feb 2023 22:23:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 22:38:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc=
142.250.74.98302 Found 269 B URL HTTP/2 cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2ac1f21e70e438c7e2193d02ee7e9be0
f9a11bb626bad146751fc166f96b91f6aeae7eab
de4a04a623ca095cd229a54edeb3120d9dc94d227198b75cb9a0a69677ed7c85
GET /pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
date: Wed, 01 Feb 2023 22:23:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 511
Cache-Control: max-age=146379
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 15:03:15 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/setuid?entity=18&code=5133329524102037847
37.252.171.21307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=18&code=5133329524102037847
IP 37.252.171.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=18&code=5133329524102037847 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847
AN-X-Request-Uuid: f7bb0fdf-d1f7-4986-8888-4fafb6a6a8dd
Set-Cookie: uuid2=7009409384598425123; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:23:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
us-u.openx.net/w/1.0/sd?id=537073062&val=5133329524102037847&r=
35.244.159.8200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537073062&val=5133329524102037847&r=
IP 35.244.159.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537073062&val=5133329524102037847&r= HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847
37.252.171.21200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847
IP 37.252.171.21:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: d2b756f6-01ab-43e0-a0a4-095deb9d6bb9
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2E>1p7UHQ!]tbPl1MNu::wpAk`W>$ka#=sjF$WXcw]AHlvv!:n8Q/=tDT@-!_6-zQEVk`!)3Xc!!!!!; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:23:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
p.rfihub.com/cm?pub=24472&in=1
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=24472&in=1
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 22:23:36 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MTCwMLE0Mja1sLA0MjMzNhLiM9StzHfxNcy1zPDOjowCAK2fyAclAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
eud=H4sIAAAAAAAA_7vFwmtoZm5qZGlgZGhmYGoCAFI3IYoQAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MTCwMLE0Mja1sLA0MjMzNhLiM9StzHfxNcy1zPDOjowCAK2fyAclAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5140084923588926632&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c6435a4ec4c651df16d5e98943d0c4e2
9535c715a4b6317c5260435a161c87381da2a46a
03866a525337b2bbc977e80454446391374dc6b0528024b2925d1e215a09656a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5266
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Last-Modified: Wed, 01 Feb 2023 20:55:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1
185.94.180.125302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7180&uid=5133329524102037847&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=11c420c3-a27f-11ed-b6e8-1644f9a80206; expires=Wed, 01-Mar-2023 22:23:36 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206
X-fe: 96
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 65e3f22ba34500036d6a96bcabc31f04
7f27642bf87c575e7d7e73fcacfbb5f24a50834a
b552da9be1755a70ea7e66a8b3c1393939bcb78d44025ecedf1a18e6e1321327
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3584
Cache-Control: max-age=117781
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da017d-1d7"
Expires: Fri, 03 Feb 2023 07:06:37 GMT
Last-Modified: Wed, 01 Feb 2023 06:06:53 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 992c9711646ae62a48a565c212d90af5
6e322349567e49840ea24424a0fd8efd52ec2c32
40496189e83c4b999cdab8b22aaa0beba6c9c99055dc638123670c86e05752e5
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 03:24:13 GMT
Expires: Thu, 02 Feb 2023 03:24:13 GMT
ETag: "6e322349567e49840ea24424a0fd8efd52ec2c32"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5133329524102037847
23.38.201.22200 OK 43 B URL HTTP/2 x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5133329524102037847
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /e/rocketfuel_sync?na_exid=5133329524102037847 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Wed, 01 Feb 2023 22:23:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 22:23:36 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 25d45c2fcda1e80380e31da3a268fa45
ef655fa6ca1fffb41ab1ffbb7af4dae90fa919f8
7b6dac7b0a5563f5a5d7dbc1bdd7407500fe87232bab21a5ba087faa50be873e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6193
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Last-Modified: Wed, 01 Feb 2023 20:40:23 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 727
bpi.rtactivate.com/tag/?id=11017&user_id=5133329524102037847
52.86.27.6200 OK 43 B URL HTTP/2 bpi.rtactivate.com/tag/?id=11017&user_id=5133329524102037847
IP 52.86.27.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tag/?id=11017&user_id=5133329524102037847 HTTP/1.1
Host: bpi.rtactivate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=
185.80.36.245302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward= HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 22:23:36 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y9rmaOGEtMMKOCw2BVWF9AAA; Path=/; Domain=casalemedia.com; Expires=Thu, 01 Feb 2024 22:23:36 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=5070; Path=/; Domain=casalemedia.com; Expires=Tue, 02 May 2023 22:23:36 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=5070; Path=/; Domain=casalemedia.com; Expires=Tue, 02 May 2023 22:23:36 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
dpm.demdex.net/ibs:dpid=1121&dpuuid=5133329524102037847&redir=
3.248.49.44302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=1121&dpuuid=5133329524102037847&redir=
IP 3.248.49.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=1121&dpuuid=5133329524102037847&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0ed41892e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=62533241999386403632424169369190072209; Max-Age=15552000; Expires=Mon, 31 Jul 2023 22:23:36 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: amBjvpfpQKI=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b06cec089acd318019e1e0ca74cce574
4af9a1240f73eea11ad968ccd73f702a75e68147
7e6819de8b1bfcb09cea8470e011c63b8016a251c85ac20151c225db675006cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4612
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Last-Modified: Wed, 01 Feb 2023 21:06:44 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206
185.94.180.125200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206
IP 185.94.180.125:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=11ce07cc-a27f-11ed-9a85-1a377c5d0206; expires=Wed, 01-Mar-2023 22:23:36 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 65
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5133329524102037847
3.67.120.212200 OK 43 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5133329524102037847
IP 3.67.120.212:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /adscores/g.pixel?sid=9212192898&rf=5133329524102037847 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998
193.0.160.129302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998
IP 193.0.160.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 22:23:36 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0NjExNTUxMrA0NjMxM7IwtRTiM9RNKy52ssx0c3QPDvcHAODwgp8lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_z3IsRXAIAgFwAlSOQd5gPjFbCNKBkqZadPlynsKwLl8LdBOUTJRI5_NKKJu2B1917wEvelgFTu78hj-luM_CPwDhMD0akkAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
euds=H4sIAAAAAAAA_wXByRGAMAgAwI_t4AAhHHYjRwqxcne_SxWnvEqhhxiEWMDfLZC5WuWk9ZqH1DYHMsltjBH-A1uZhjQ5AAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjExNTUxMrA0NjMxM7IwtRTiM9RNKy52ssx0c3QPDvcHAODwgp8lAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
Location: https://idsync.rlcdn.com/501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 511
Cache-Control: max-age=146379
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 15:03:15 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
151.101.130.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP 151.101.130.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y9rmaAAD5F9UOgAh; Path=/; Domain=.everesttech.net; Expires=Thu, 01-Feb-2024 22:23:36 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:23:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675290216.092859,VS0,VE93
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5133329524102037847
52.48.206.130204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5133329524102037847
IP 52.48.206.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner_id=rfuel&partner_user_id=5133329524102037847 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:23:36 GMT
set-cookie: _kuid_=PWrTWHlg; Expires=Mon, 31-Jul-23 22:23:36 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n008-dub-prod.krxd.net
x-request-time: D=25 t=1675290216
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 235d9e63fde94bc91cc1d143aebccba9
21ee12ac07c972573307a2ae7fc7d2d6249631c7
3c1d5bbfebf0233cb343476de60fd1efea8396da48c1769d0d1c887e84989d6a
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:01:04 GMT
Expires: Wed, 08 Feb 2023 09:01:03 GMT
Etag: "21ee12ac07c972573307a2ae7fc7d2d6249631c7"
Cache-Control: max-age=602078,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 788
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e17ab3fccb50f-OSL
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
193.0.160.129200 OK 42 B URL HTTP/1.1 a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP 193.0.160.129:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0sDA1tTQ3MjM0Mzc1NzMzNhHiM9T1cAwp1zVNC_cNy0wHAKNQCiwlAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0sDA1tTQ3MjM0Mzc1NzMzNhHiM9T1cAwp1zVNC_cNy0wHAKNQCiwlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0Mzc1sjQwMjQztDAHAEpXelQTAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)
sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh
151.101.130.49200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh
IP 151.101.130.49:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:23:36 GMT
via: 1.1 varnish
age: 1204
x-served-by: cache-bma1681-BMA
x-cache: HIT
x-cache-hits: 1952
x-timer: S1675290216.203534,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
ps.eyeota.net/match?uid=5140084923588926632&bid=omt9pi0
3.122.214.165200 OK 0 B URL HTTP/1.1 ps.eyeota.net/match?uid=5140084923588926632&bid=omt9pi0
IP 3.122.214.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?uid=5140084923588926632&bid=omt9pi0 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: SERVERID=17770~DM; Domain=eyeota.net; Path=/; Expires=Wed, 01 Feb 2023 22:33:36 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Wed, 01 Feb 2023 22:23:36 GMT
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir=
3.248.49.44200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir=
IP 3.248.49.44:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0665c523e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 7BZHOtNOS8w=
Content-Length: 59
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 43030f3d6872c114931f12d793a3bb17
81918b93fe2b78d40334c184571e20ae2f9d68d8
c988d04156ff1363a4e3272dc0cfc9b2c8624d5743ce8c3ea722ba02a0041f85
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157346
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da9db3-1d7"
Expires: Fri, 03 Feb 2023 18:06:02 GMT
Last-Modified: Wed, 01 Feb 2023 17:13:23 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GEW-09ugfcLhJCgK33RKS9Gc7S1t3mkDToiqee3T3FkdSNXqkduM7g==
Age: 3159
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=487391,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17ab1988b505-OSL
x.bidswitch.net/sync?dsp_id=119&user_id=5133329524102037847&expires=30
52.28.17.51302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=119&user_id=5133329524102037847&expires=30
IP 52.28.17.51:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=119&user_id=5133329524102037847&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=5ed11681-358a-420e-9530-e9e8e248c37f; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675290216; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675290216; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675290216; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30
52.28.17.51200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30
IP 52.28.17.51:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=572958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17aa3f42b521-OSL
idsync.rlcdn.com/360947.gif?partner_uid=5133329524102037847
35.244.174.68200 OK 42 B URL HTTP/2 idsync.rlcdn.com/360947.gif?partner_uid=5133329524102037847
IP 35.244.174.68:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /360947.gif?partner_uid=5133329524102037847 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: rlas3=hU5PVSQsavLYTHcrB/kJXw81E/deq0bX6atydhlMgOE=; Path=/; Domain=rlcdn.com; Expires=Thu, 01 Feb 2024 22:23:36 GMT; Secure; SameSite=None
pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
idsync.rlcdn.com/501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998
35.244.174.68307 Temporary Redirect 0 B URL HTTP/2 idsync.rlcdn.com/501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store
location: https://idsync.rlcdn.com/1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
idsync.rlcdn.com/1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA
35.244.174.68307 Temporary Redirect 0 B URL HTTP/2 idsync.rlcdn.com/1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=epsilon&google_cm
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=COjM654GEgUI6AcQABIGCLrqARAA; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=572958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17ab9a9cb51d-OSL
idsync.rlcdn.com/362358.gif?google_error=3
35.244.174.68200 OK 42 B URL HTTP/2 idsync.rlcdn.com/362358.gif?google_error=3
IP 35.244.174.68:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /362358.gif?google_error=3 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=572958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17ae1d66b505-OSL
e1.emxdgt.com/put?d=d16&uid=5133329524102037847
18.158.8.202204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d16&uid=5133329524102037847
IP 18.158.8.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d16&uid=5133329524102037847 HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 005622e59568cb632684a1cd2880c97e
31333726c45ed676daec90ecde21654791c06a9d
02b0023deb129dda05ec64f305ddd4f0aba5a3d0e7bf91a099f6acc1de7b15a3
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Feb 2023 22:23:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:29:42 GMT
Expires: Thu, 02 Feb 2023 21:29:42 GMT
ETag: "31333726c45ed676daec90ecde21654791c06a9d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
lubrizol.mpeasylink.com/mpel/mpel_ssd.js
44.196.216.203200 OK 0 B URL HTTP/2 lubrizol.mpeasylink.com/mpel/mpel_ssd.js
IP 44.196.216.203:0
Analyzer Verdict Alert quad9 Sinkholed
GET /mpel/mpel_ssd.js HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:34 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"3276-1609775222000"
last-modified: Mon, 04 Jan 2021 15:47:02 GMT
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 22:23:34 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
kit.fontawesome.com/25e47bdf1c.js
104.18.22.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/25e47bdf1c.js
IP 104.18.22.52:0
GET /25e47bdf1c.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FxGUd5Q4st5mGRQ_LtBh
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 792e1799c80eb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/3090252/domain/lubrizol.com/token
54.230.111.78200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/3090252/domain/lubrizol.com/token
IP 54.230.111.78:0
GET /partner/3090252/domain/lubrizol.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Wed, 01 Feb 2023 21:46:59 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 435bWVqa4JtE9uebpJGPpRhOV8uQsofpHj8B1ZPwcdrj4rvhyiCWhQ==
age: 2196
X-Firefox-Spdy: h2
partners.tremorhub.com/sync?UIRF=5133329524102037847&r=V4EnqA_WsEAs
54.211.235.181200 OK 0 B URL HTTP/2 partners.tremorhub.com/sync?UIRF=5133329524102037847&r=V4EnqA_WsEAs
IP 54.211.235.181:0
GET /sync?UIRF=5133329524102037847&r=V4EnqA_WsEAs HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2