Report - www.fbcsystemcompatible.com/

Report Overview

Submitted URL
www.fbcsystemcompatible.com/
IP
205.178.189.131
ASN
#19871 NETWORK-SOLUTIONS-HOSTING
Submitted
2023-02-01 22:23:42
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ka-p.fontawesome.com	4489	2019-12-16T21:35:53Z	2023-03-13T06:43:02Z	1.4 kB	62 kB	104.18.22.52
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.4 kB	50 kB	216.58.207.227
sync.search.spotxchange.com	523	2012-05-22T10:29:33Z	2023-03-13T05:50:14Z	938 B	1.2 kB	185.94.180.125
cm.g.doubleclick.net	202	2012-05-22T11:58:28Z	2023-03-13T08:33:33Z	1.0 kB	2.0 kB	142.250.74.98
aa.agkn.com	431	2017-01-30T06:01:07Z	2023-03-13T05:50:14Z	427 B	515 B	3.67.120.212
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-13T08:38:38Z	342 B	1.0 kB	172.64.155.188
partners.tremorhub.com	1008	2014-06-09T20:53:23Z	2023-03-13T08:12:05Z	428 B	201 B	54.211.235.181
live.rezync.com	2569	2017-10-10T15:34:40Z	2023-03-13T05:40:45Z	1.3 kB	4.3 kB	54.230.111.58
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	2.0 kB	4.9 kB	93.184.220.29
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.1 kB	3.0 kB	54.230.245.118
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-13T08:39:16Z	602 B	1.0 kB	142.250.74.130
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	373 B	21 kB	142.250.74.46
region1.analytics.google.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:11:52Z	945 B	447 B	216.239.32.36
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.2 kB	35 kB	34.120.237.76
dc.ads.linkedin.com	7569	2015-07-10T22:20:25Z	2023-03-13T07:16:10Z	413 B	1.4 kB	13.107.42.14
www.linkedin.com	608	2015-06-18T18:10:03Z	2023-03-13T05:12:57Z	613 B	2.6 kB	13.107.42.14
x.dlx.addthis.com	1161	2017-06-16T10:28:58Z	2023-03-13T08:12:05Z	424 B	308 B	23.38.201.22
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	892 B	99 kB	142.250.74.168
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-13T05:12:55Z	382 B	5.1 kB	23.36.76.210
dsum-sec.casalemedia.com	549	2014-06-26T23:28:31Z	2023-03-13T05:50:14Z	900 B	1.0 kB	185.80.36.245
ps.eyeota.net	940	2012-06-19T00:16:22Z	2023-03-13T08:53:30Z	416 B	342 B	3.122.214.165
x.bidswitch.net	286	2012-10-04T01:30:53Z	2023-03-13T05:28:06Z	882 B	928 B	52.28.17.51
e1.emxdgt.com	1193	2017-07-26T23:59:10Z	2023-03-13T06:53:18Z	408 B	124 B	18.158.8.202
www.lubrizol.com	unknown	2012-11-01T13:18:14Z	2023-02-28T15:37:20Z	13 kB	239 kB	52.237.158.122
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	419 B	16 kB	142.250.74.106
sync-tm.everesttech.net	552	2017-04-27T07:10:12Z	2023-03-13T05:36:44Z	1.0 kB	1.2 kB	151.101.130.49
idsync.rlcdn.com	305	2012-05-22T18:37:38Z	2023-03-13T05:36:42Z	1.8 kB	2.2 kB	35.244.174.68
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
www.googleadservices.com	107	2012-06-26T16:53:06Z	2023-03-13T08:26:04Z	479 B	828 B	216.58.211.2
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	620 B	641 B	142.250.74.163
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-13T07:16:10Z	1.0 kB	2.3 kB	13.107.42.14
p.rfihub.com	702	2012-05-22T07:45:02Z	2023-03-13T05:36:44Z	966 B	1.7 kB	193.0.160.129
beacon.krxd.net	408	2012-05-22T06:25:40Z	2023-03-13T05:28:07Z	443 B	450 B	52.48.206.130
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.33.119.27
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.163.49.154
people.api.boomtrain.com	7069	2017-12-19T23:03:10Z	2023-03-13T08:31:34Z	602 B	467 B	44.194.69.37
us-u.openx.net	357	2013-08-30T21:43:55Z	2023-03-13T05:36:44Z	424 B	406 B	35.244.159.8
dpm.demdex.net	204	2012-05-22T07:45:05Z	2023-03-13T05:18:25Z	868 B	1.3 kB	3.248.49.44
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	5.8 kB	12 kB	142.250.74.163
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	486 B	447 B	64.233.162.155
ib.adnxs.com	241	2012-05-20T21:01:49Z	2023-03-13T05:28:06Z	848 B	2.0 kB	37.252.171.21
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-13T05:12:19Z	680 B	4.6 kB	192.124.249.24
bpi.rtactivate.com	1929	2019-08-07T08:18:05Z	2023-03-13T08:12:05Z	421 B	180 B	52.86.27.6
cdn.linkedin.oribi.io	unknown	2022-10-19T16:36:39Z	2023-03-13T05:12:57Z	427 B	427 B	54.230.111.78
www.fbcsystemcompatible.com	unknown	2015-07-29T11:02:23Z	2023-01-25T16:32:13Z	359 B	358 B	205.178.189.131
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
lubrizol.mpeasylink.com	unknown	2017-02-02T09:54:26Z	2023-02-23T05:13:07Z	1.9 kB	15 kB	44.196.216.203
cdn.boomtrain.com	6549	2013-11-26T17:58:09Z	2023-03-13T08:31:14Z	391 B	30 kB	54.230.111.55
c1.rfihub.net	6410	2012-05-22T11:58:31Z	2023-03-13T08:12:04Z	362 B	6.7 kB	54.230.111.29
20841940p.rfihub.com	unknown	2023-02-01T23:23:35Z	2023-02-01T23:23:35Z	621 B	3.3 kB	193.0.160.128
a.rfihub.com	3337	2012-11-22T18:23:48Z	2019-03-27T18:38:07Z	413 B	815 B	193.0.160.129
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.7 kB	4.8 kB	172.64.155.188
contextual.media.net	513	2012-05-21T09:20:31Z	2023-03-13T05:53:10Z	432 B	978 B	23.38.200.22
js.adsrvr.org	1664	2012-11-26T21:54:54Z	2023-03-13T06:57:06Z	368 B	2.4 kB	54.230.241.118
status.geotrust.com	3662	2017-12-01T09:55:31Z	2023-03-13T05:14:41Z	1.0 kB	2.3 kB	93.184.220.29
kit.fontawesome.com	1868	2019-12-16T20:51:31Z	2023-03-13T05:10:17Z	400 B	650 B	104.18.22.52
play.google.com	34	2013-05-31T01:24:35Z	2023-03-13T08:27:10Z	430 B	668 B	142.250.74.78

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-01	medium	mpeasylink.com	Sinkholed
2023-02-01	medium	mpeasylink.com	Sinkholed
2023-02-01	medium	mpeasylink.com	Sinkholed
2023-02-01	medium	mpeasylink.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (38)

	URL	Size	First Seen	Last Seen
	googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?random=1675290237916&cv=11&fst=1675290237916&bg=ffffff&guid=ON&async=1&gtm=2wg1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&tiba=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&rfmt=3&fmt=4	1.9 kB	2023-03-13	2023-03-13
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?random=1675290237916&cv=11&fst=1675290237916&bg=ffffff&guid=ON&async=1&gtm=2wg1u0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&tiba=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash 5f167523da493b70a65ef926a34170e6 5eb57385812cabd4c329aa23db6b296210785e46 76b24e9cef5d5cc2ba58707275ec1c452af8e382ff1308a5596ef32f5bff0489 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	kit.fontawesome.com/25e47bdf1c.js	11 kB	2023-03-07	2023-03-14
Pretty URL kit.fontawesome.com/25e47bdf1c.js IP 104.18.22.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-03-14 08:27:34 Times Seen1 Hash b14b77627d2155d59aa96ce266f93fca 2e8ffdceeb51ad93fc278aed2eaa7ab5587b36e5 cc2f121da64efcecb39b556fdeaaf4c3e11552495cc4ea8bcc8c0bd58d7de612 Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	20 B	2023-03-07	2024-04-26
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2024-04-26 06:13:56 Times Seen1280 Hash 3179f2255b046d5f2e9a71e365287bef 462e90dd5487b4c692a7c609b7b78f1b93496343 844a36c2c43704c5ae846d0f52093463bc6e84d547d04528eefb6313129e570f Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	575 B	2023-03-12	2023-03-13
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:23:23 Last Seen2023-03-13 14:29:20 Times Seen1 Hash e5b47f0df7eaaf7922b21dd3d1730802 34e0b9f2a5ea96b25f0d612c25ffd96efdc66565 dd8a8d406427b8db3a3fb2e2b6b943b4a34ad5bc9605556598a2a8bf13c3c23e Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	252 B	2023-03-07	2023-12-24
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-12-24 22:48:01 Times Seen3 Hash b32ef0d528ba7abd2176c351968aa3b9 27cf647f259067ac7facfefab17d6349090298f0 52feaeac08bd787e42cef5a13792334e5cd421d5843a6b0e387670885cbcedec Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	648 B	2023-03-13	2023-03-13
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash 27808da7517f7237ff972e2234f97a72 0d02e198405d7730d777c59c415d2e5909aa8fcd b476843007d2d5934a3cd9979cc512b63c643bf606a808dde3d717eae3bce99e Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	488 B	2023-03-13	2023-12-24
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-12-24 22:48:01 Times Seen3 Hash 20d3bb1960db3636ec74cd4acbde4b2f 0fa3a62bc08915a8f93afde1d2d9839aabb73be5 e7dc08a5c4c3aa1d2388405075bfcea63967ea79b9094c00c04d05805d0103f7 Loading...

	www.googletagmanager.com/gtag/js?id=G-BZWJGZ4Z3L&l=dataLayer&cx=c	218 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-BZWJGZ4Z3L&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash 6e589667832188ac00bc5c3d5796b219 56a9ca851abb5e4f30ae5aed9c4cfa9d7cb7eef2 c246db49d4433ea6f538bb6b8ef03de4e31a73e3d7cc715dcbc36d6fe117c930 Loading...

	cdn.boomtrain.com/p13n/lubrizol-corporation/p13n.min.js	94 kB	2023-03-13	2023-03-14
Pretty URL cdn.boomtrain.com/p13n/lubrizol-corporation/p13n.min.js IP 54.230.111.55 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-14 08:27:34 Times Seen1 Hash 104fba48f1451cdb3b14b6d6f75efaa3 856538b3663db634e092ad6e334157c905a1e00c 59ef57a0e581cfe759df95b8436ee1d438030b388934d10e7a36784cb44fc787 Loading...

	c1.rfihub.net/js/tc.min.js	20 kB	2023-03-07	2023-09-15
Pretty URL c1.rfihub.net/js/tc.min.js IP 54.230.111.29 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2023-09-15 03:24:05 Times Seen185 Hash 83c2974d08241a92c3b2dcb8f441271f 424d72cd7dfe7371c647addd7145ab3444a6b121 7ef97b12890fc6fee67f869c6e1f74b6719de7d66ac0d649c8d7386a80b4c30f Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-12	2024-03-30
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:01:01 Last Seen2024-03-30 11:38:49 Times Seen5925 Hash b846c9d158853dd4aa95d3d7407ed8bb 2cf0eb02a22e8bd80d19a50a84593420d777d5db f56ccb2db87aacedd9415232e40f80bff9939703df2f9c3f9ec8a092e545349f Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	938 B	2023-03-07	2024-04-18
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2024-04-18 14:41:56 Times Seen8 Hash 4284c3ac2e898383f7a8e67709529f03 28b4d9f703a0ede50493cf9253c7ba2d20d09741 cf812579c34fc30f9f7e13b0e4189d32238e62400e4e3eb034a998f314cc86b5 Loading...

	js.adsrvr.org/up_loader.1.1.0.js	4.6 kB	2023-03-07	2023-11-04
Pretty URL js.adsrvr.org/up_loader.1.1.0.js IP 54.230.241.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:29 Last Seen2023-11-04 15:38:59 Times Seen1096 Hash 98d98b3499058b76d58073cf8ede2f10 2ec5bc839a187c2a4d93499567e8fff091a6bcc4 ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9 Loading...

	lubrizol.mpeasylink.com/mpel/mpel_ssd.js	3.3 kB	2023-03-07	2024-03-06
Pretty URL lubrizol.mpeasylink.com/mpel/mpel_ssd.js IP 44.196.216.203 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-06 23:01:59 Times Seen33 Hash 7ee2626b78c3e88ca65baaa82ba28cdd 3397029609f9d6c504d68db1a1fdaa6ec89cdecf 35752e00506ca517d6fe57feb855381469753b54651e53d1f0594d90feefa41c Loading...

	www.lubrizol.com/Presentation/scripts/src/modernizr.js	51 kB	2023-03-07	2024-04-23
Pretty URL www.lubrizol.com/Presentation/scripts/src/modernizr.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:20 Last Seen2024-04-23 14:06:06 Times Seen864 Hash c1ff1650bba6e39089834e708129d723 7d1cea058027485e9ccf1a92e38823acb05c0659 7dfc3ef73c1284c7aff3c5cdac3812d212c8b899037d7860c8ba20a1defb9a7f Loading...

	www.lubrizol.com/Presentation/scripts/mp_linkcode.js	2.1 kB	2023-03-07	2023-12-24
Pretty URL www.lubrizol.com/Presentation/scripts/mp_linkcode.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-12-24 22:48:01 Times Seen3 Hash ab4864d70a2ad8b7a738ab181fabd2f2 efa94ed75af9ddb92d8bef67b9f56c1de12db168 c087d9c721efba64efb4729c9800dee53af3b7e5c952a861bb1b665b8f272d8c Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	1.5 kB	2023-03-13	2023-03-13
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash 0b1c59f76106a4c84f7b30d5fe544bd0 3816e81f417859967bc4e4b7efb2fd5b4b8e3ddc 3ef22181964ad382d1d95fcc0f3b779416419e36b4f7ba0a40d0f4b8a17ee2b4 Loading...

	www.lubrizol.com/Presentation/scripts/Components/CaseStudies.js	1.9 kB	2023-03-07	2023-12-24
Pretty URL www.lubrizol.com/Presentation/scripts/Components/CaseStudies.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-12-24 22:48:01 Times Seen3 Hash ec8e106f469ea3cf721ddfb44c8b87f7 ca0557870e98a75abe4fb85c59226101d897793e afab5eab3545920f1d7dadd054d65a8f2c8b08e710077f61e836e944f4b80cdc Loading...

	www.lubrizol.com/Presentation/JS/Shared/HeaderSocialShare.js	669 B	2023-03-07	2023-12-24
Pretty URL www.lubrizol.com/Presentation/JS/Shared/HeaderSocialShare.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-12-24 22:48:01 Times Seen3 Hash dc1fef14ddee850466fbc081315ff1a3 8b287516de4a1adcf328d01b2b8a0e8566f2dc18 6a8a9d2e249bb9107d2eea9d923a4029708ef74be28844343bd4e1259d870230 Loading...

	www.lubrizol.com/Presentation/JS/lib/jquery.cookie.js	3.1 kB	2023-03-07	2024-04-26
Pretty URL www.lubrizol.com/Presentation/JS/lib/jquery.cookie.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-26 06:23:25 Times Seen9161 Hash d5528dde0006c78be04817327c2f9b6f 31e1bcc4cf805a2c2fee21f48ded1e598f64a2a8 b84161c9fbf7520cd14e7019f92120bd87a928a074156e91a992eba9fc9436e8 Loading...

	live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster}	1.8 kB	2023-03-13	2023-03-13
Pretty URL live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster} IP 54.230.111.58 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash 0c7336debadf1295dfc6c3880fe24e76 9e5c5e9a88fa93686920062e55450298dc182bfd e3cfaaf7e962ca5f784100937a3607b6a52e98ed013dd06c6f7fb1e586e91967 Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	523 B	2023-03-13	2023-03-13
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash 9f6716067b7824e0fb5ee2dc6c128279 b70253e8a77cc680f32a2291e51dde868df48daa 3e8e39bd6f56d92c88adb06fa46538c5d8b019a074b2c42e0457bde8b53dfaf5 Loading...

	20841940p.rfihub.com/ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346	2.5 kB	2023-03-13	2023-03-13
Pretty URL 20841940p.rfihub.com/ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346 IP 193.0.160.128 ASN #54312 ROCKETFUEL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash b75793486a7a20ee1018bfd0d7bd91b7 27444ea5c218e0f0cc802e2e432129776d3dfe87 4b605f3414de1b8e5017b59e4de7d847251a1639fdb3d4132ab7e8a774211cdf Loading...

	www.lubrizol.com/Presentation/scripts/src/jquery.min.js	86 kB	2023-03-07	2024-04-23
Pretty URL www.lubrizol.com/Presentation/scripts/src/jquery.min.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:19 Last Seen2024-04-23 12:59:30 Times Seen862 Hash 6cbb321051a268424103cd4aea8ffa66 7cb05e3d551cd61439337b2cb22f49b1955f9711 82f420005cd31fab6b4ab016a07d623e8f5773de90c526777de5ba91e9be3b4d Loading...

	www.lubrizol.com/Presentation/scripts/src/bundle/Lubrizolbundle.min.js	88 kB	2023-03-07	2023-12-24
Pretty URL www.lubrizol.com/Presentation/scripts/src/bundle/Lubrizolbundle.min.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-12-24 22:48:02 Times Seen5 Hash f18f40b8f6388c9ef260e48d6b90b45a 91ee249bc95d5593003c13b95429830e7a581992 bed39d947444d0fc66039e7c45c19614818df932151a0af7d8cc91efd5b18521 Loading...

	www.lubrizol.com/layouts/system/VisitorIdentification.js	2.7 kB	2023-03-07	2024-04-18
Pretty URL www.lubrizol.com/layouts/system/VisitorIdentification.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2024-04-18 15:49:42 Times Seen109 Hash cdea2c28ee2872f4186542c27a4d5053 4ef4e42a069644d76c7e73c3c6e44fedaf944d4d 0a81a39c2ff7be93588f4f668c568b89dcb66efce2a728612f6395ca575b1a83 Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	388 B	2023-03-07	2023-03-14
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-03-14 08:27:34 Times Seen1 Hash 77e42320d2d92e19b222bda8fdfdb29b c7f65944f46a67d87fee4208baf82b526a91b3bd e3b3d210c958c15a461fe421209b39150ecfec4d0ff8e1c2c2d6dd67eaa85b5d Loading...

	lubrizol.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US	735 B	2023-03-07	2023-03-14
Pretty URL lubrizol.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US IP 44.196.216.203 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-03-14 08:27:35 Times Seen1 Hash f6918dfdea7ffb15cfea6896d6178688 65c4535a619301b6bd9e1ad280c2f1473cc8e7a4 55573eb6dd5853e4c80d549e706bb9196a0a0cfffa75bc63ff493e6243066a88 Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	2.1 kB	2023-03-07	2023-03-13
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-03-13 14:29:20 Times Seen1 Hash b1c8d15e42da93dc4bd19ddff8803865 104c6a620678fb62dc6fd154d3c8491dc97c2b89 767904007a01526ef1255ea62752a88d7ed69c9624e4731581e02fc566befdbd Loading...

	www.googletagmanager.com/gtm.js?id=GTM-PZXR5K2	319 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-PZXR5K2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:29:20 Last Seen2023-03-13 14:29:20 Times Seen1 Hash ab625bc25959c0a32871d6b9f1fff9f5 019de276d63267d4fce273801dfb972b35c697dd 67b687b03d699cf0742eb3d10d10d1a920f436ddaa5cbf8bfdb9baec368db0f5 Loading...

	lubrizol.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program	2.6 kB	2023-03-07	2023-04-01
Pretty URL lubrizol.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program IP 44.196.216.203 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2023-04-01 11:06:19 Times Seen7 Hash a527a4ce7aec5a966c600888e112023f 6c65343bcccc6e6729bd03695df61f68aa2877ca 386e2718626b6362637e81728a69109e336d372134ec6ace9c32188727eaf2d0 Loading...

	www.lubrizol.com/Presentation/JS/Components/cookieconsent.js	600 B	2023-03-07	2023-03-14
Pretty URL www.lubrizol.com/Presentation/JS/Components/cookieconsent.js IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-03-14 08:27:34 Times Seen1 Hash 3186cd89413a5cccdf0a5cff86137c41 4d581b721cbb23cabb03b9bc630f1e622cc53bd6 89e8ad4463244b2ac4edddb8f995c1f105e13158583126556925c5609c1daeba Loading...

	lubrizol.mpeasylink.com/mpel/mpel.js	5.1 kB	2023-03-07	2024-03-06
Pretty URL lubrizol.mpeasylink.com/mpel/mpel.js IP 44.196.216.203 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:35 Last Seen2024-03-06 23:02:00 Times Seen141 Hash ce4faaea12c23431eb8d9bef106b99eb c1776c786c9f72fb883834c603eaeb264d305ee4 55a6d80c0bca0a85151758dd9a8723da41c66470e347c41ddfd5f6fa7012e20f Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	765 B	2023-03-07	2023-12-24
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-12-24 22:48:01 Times Seen3 Hash c0fff3053879be54ded09085ad9afd44 9561b78201f83b5778199dc6f0fe1c45ff5eb98a a8dcfdcce4a70bb8b7d8659a0f99427ece268f2182913f0a0d5d4c5e92be27cd Loading...

	www.lubrizol.com/CPVC/FBC-System-Compatible-Program	172 B	2023-03-07	2023-03-14
Pretty URL www.lubrizol.com/CPVC/FBC-System-Compatible-Program IP 52.237.158.122 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:18 Last Seen2023-03-14 08:27:34 Times Seen1 Hash ce53c211c06598270023790b0e3ce2a2 db0c784a4242f6f9412a1f30c34e21ad9647ae5c 127cee52b1b15dbac1dd6ff97f3819de48471039af0cd9a3eb599d6eaf5b4510 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d066c179a444118cb57f3c2c7bbc579f	12 B	2023-03-07	2023-05-04
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-05-04 15:22:18 Times Seen104 Hash d066c179a444118cb57f3c2c7bbc579f 2360e18b98d230ad8f2ffeb37fa09a2e9cd66262 bddcf25867435760b58937910118ebed74be4f123e0aefd1248383144032afa3 Loading...

	#2 Eval - a1e812d5f05d7cece0f88cbbd441cb0c	10 B	2023-03-07	2023-05-04
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2023-05-04 15:22:18 Times Seen104 Hash a1e812d5f05d7cece0f88cbbd441cb0c b3c0ae9c7de7985f174bfe604b81b6068d8acfbf 338eebe354feee40bdfe97326853bdc041f0478b9a764f2cde16abcd93dc9a86 Loading...

HTTP Transactions (140)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5492
Expires: Wed, 01 Feb 2023 23:55:03 GMT
Date: Wed, 01 Feb 2023 22:23:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7019
Expires: Thu, 02 Feb 2023 00:20:30 GMT
Date: Wed, 01 Feb 2023 22:23:31 GMT
Connection: keep-alive

www.fbcsystemcompatible.com/

205.178.189.131

301 Moved Permanently

122 B

URL HTTP/1.1
www.fbcsystemcompatible.com/
IP
205.178.189.131:0
ASN
#19871 NETWORK-SOLUTIONS-HOSTING

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
122 B (122 bytes)
Hash
ad99ee4c058082bdfd9851ff8e7fe7ce
72c3de525678889daa03b82be7f7c40af32d83ac
3571530d39be003be1246b20cc451ca7ea0e090947faf60f1d7ef3c600077fae

HTTP Headers

GET / HTTP/1.1
Host: www.fbcsystemcompatible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: Sun-ONE-Web-Server/6.1
Date: Wed, 01 Feb 2023 22:23:31 GMT
Content-length: 122
Content-type: text/html
Location: http://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Connection: close

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 21:36:02 GMT
content-type: application/json
age: 2849
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9208
Expires: Thu, 02 Feb 2023 00:56:59 GMT
Date: Wed, 01 Feb 2023 22:23:31 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: gL8RAm9Dsn12Vvoxl6j4I6DZz4J3rtziKx6tliy1MJBfXhnOMYBx+C3EcZgTIZJ99Km4nvRNZGnKv/padB4DXw==
x-amz-request-id: CZPHVDBCJ2VBWHDB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 21:51:43 GMT
age: 1908
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:31 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 21:41:42 GMT
age: 2510
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.lubrizol.com/CPVC/FBC-System-Compatible-Program

52.237.158.122

301 Moved Permanently

195 B

URL HTTP/1.1
www.lubrizol.com/CPVC/FBC-System-Compatible-Program
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
195 B (195 bytes)
Hash
e0d1a4a70b7864dd9ba22ff15341cfa0
32346cf022d83679b2f437eb9b02092168bafa8c
a76004959bdd8402fe10509e667dd20ad3e7390f6e8097cc44ef935c908e0e36

HTTP Headers

GET /CPVC/FBC-System-Compatible-Program HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: Microsoft-Azure-Application-Gateway/v2
Date: Wed, 01 Feb 2023 22:23:32 GMT
Content-Type: text/html
Content-Length: 195
Connection: keep-alive
Location: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5266
Expires: Wed, 01 Feb 2023 23:51:18 GMT
Date: Wed, 01 Feb 2023 22:23:32 GMT
Connection: keep-alive

push.services.mozilla.com/

35.163.49.154

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.49.154:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3EAsXaP2ABgGNyZCRBgVdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VqlA3MU/gPJn3AqiaSD/up88jT0=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4840596bf3d8c7470ca1197a0e636264
241f277a6be3f1364803d78964219cb6c1c0e6a5
ec67557c5150234429c29f6dfbcfa78043387a7c029a56ae687dc83e4648607e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=117105
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:32 GMT
Etag: "63da0cd5-1d7"
Expires: Fri, 03 Feb 2023 06:55:17 GMT
Last-Modified: Wed, 01 Feb 2023 06:55:17 GMT
Server: nginx
Content-Length: 471

www.lubrizol.com/CPVC/FBC-System-Compatible-Program

52.237.158.122

200 OK

12 kB

URL HTTP/1.1
www.lubrizol.com/CPVC/FBC-System-Compatible-Program
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1473), with CRLF, LF line terminators
Size
12 kB (11812 bytes)
Hash
dc48616101c0242264daa94a1b77addb
1259abd5aafb44732636cfdc0aac9853ac8aec19
86ad4b8ba74b0d69999f67c382bc7e5241fe685da1446814af2b90678e929456

HTTP Headers

GET /CPVC/FBC-System-Compatible-Program HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 11812
Connection: keep-alive
Cache-Control: no-cache, no-store
Content-Encoding: gzip
Expires: -1
Pragma: no-cache
Set-Cookie: shell#lang=en; path=/; secure; SameSite=None
ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; path=/; secure; HttpOnly; SameSite=None
SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; expires=Sat, 29-Jan-2033 22:23:32 GMT; path=/; secure; HttpOnly; SameSite=None
sxa_site=lubrizol; path=/; secure; HttpOnly; SameSite=None
ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0bfa5b6aa996442e23a0bc88d731fec2
7fb66a39781a0333502ca7d0fdfb2bae5b5f83c5
272e17f4eccec18edbce753e4287be7769433ce2d79c6f8c708fdec681227805

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3836
Cache-Control: max-age=139634
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Etag: "63da55db-1d7"
Expires: Fri, 03 Feb 2023 13:10:47 GMT
Last-Modified: Wed, 01 Feb 2023 12:06:51 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.lubrizol.com/Presentation/scripts/src/jquery.min.js

52.237.158.122

200 OK

38 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/scripts/src/jquery.min.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (32019)
Size
38 kB (38386 bytes)
Hash
7a4709a3be25fbc05e785d956a1fccd7
0fc2fc6c27640e5df3a09645380e6003f6284a3e
e586f6c94d68cd6736f007be7007158cb2f1b3bdfb2f11015a6975110487f4ae

HTTP Headers

GET /Presentation/scripts/src/jquery.min.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 38386
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
68392e0c8f1f84a170c6f57b1a218bbf
8c251ff921092ffb005668047e20979dfea71a17
1e6c9765fe503b607bd88b8dc784e8fba6de14ab32782e29adc96464f9fd1cce

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6206
Cache-Control: max-age=126534
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:33 GMT
Etag: "63da196d-1d7"
Expires: Fri, 03 Feb 2023 09:32:27 GMT
Last-Modified: Wed, 01 Feb 2023 07:49:01 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=25e47bdf1c

104.18.22.52

200 OK

54 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=25e47bdf1c
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65397)
Size
54 kB (54194 bytes)
Hash
dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8

HTTP Headers

GET /releases/v5.15.4/css/pro.min.css?token=25e47bdf1c HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Origin: https://www.lubrizol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 2678189
accept-ranges: bytes
server: cloudflare
cf-ray: 792e179b69d8b4fa-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=25e47bdf1c

104.18.22.52

200 OK

2.6 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=25e47bdf1c
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (27832)
Size
2.6 kB (2603 bytes)
Hash
eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70

HTTP Headers

GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=25e47bdf1c HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Origin: https://www.lubrizol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 2678189
accept-ranges: bytes
server: cloudflare
cf-ray: 792e179b69ddb4fa-OSL
X-Firefox-Spdy: h2

ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=25e47bdf1c

104.18.22.52

200 OK

4.2 kB

URL HTTP/2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=25e47bdf1c
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (26366)
Size
4.2 kB (4194 bytes)
Hash
7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc

HTTP Headers

GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=25e47bdf1c HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Origin: https://www.lubrizol.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1682162
accept-ranges: bytes
server: cloudflare
cf-ray: 792e179b69dbb4fa-OSL
X-Firefox-Spdy: h2

www.lubrizol.com/Presentation/scripts/mp_linkcode.js

52.237.158.122

200 OK

927 B

URL HTTP/1.1
www.lubrizol.com/Presentation/scripts/mp_linkcode.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
927 B (927 bytes)
Hash
6dd78a34b4a5cacf753edb94b06ca552
32baecff6bbfd1c34ef1806a0a3315ad0ecd9cc9
605bce17fe2ac85a7e391f97e2439bdb1068f98270f1bcf3c853f0afc8f0d476

HTTP Headers

GET /Presentation/scripts/mp_linkcode.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 927
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/layouts/system/VisitorIdentification.js

52.237.158.122

200 OK

1.1 kB

URL HTTP/1.1
www.lubrizol.com/layouts/system/VisitorIdentification.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.1 kB (1074 bytes)
Hash
18b9388cd5c81aab3e712ad61505a96c
3570333ccac8a5a9c5b3c78e37617a36004fcd8e
a48dd9756456afe82f04f32132d1929b86b7fdde12bbedb9e1fb764ce8ba3bce

HTTP Headers

GET /layouts/system/VisitorIdentification.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 1074
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0510f0de56d71:0"
Last-Modified: Tue, 01 Jun 2021 12:09:14 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8400
Expires: Thu, 02 Feb 2023 00:43:33 GMT
Date: Wed, 01 Feb 2023 22:23:33 GMT
Connection: keep-alive

www.lubrizol.com/Presentation/css/src/level2-jasny.css

52.237.158.122

200 OK

1.4 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/css/src/level2-jasny.css
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1378 bytes)
Hash
f45a568f3274328f77315a4ac87acb60
0025c81bb60befca4796316f8628f91308d66ff6
d1f2f0946289f621942eead8aaf5ce482c187cfffc1fbcaa85a07bcf9527f232

HTTP Headers

GET /Presentation/css/src/level2-jasny.css HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: text/css
Content-Length: 1378
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4814 bytes)
Hash
86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axFfTgcGtvqt1RcbyLpovD5Fr7J2Wx9pNwb92m2rwTdj-sGp0bIq-Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:10 GMT
age: 1463
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5011 bytes)
Hash
3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQlfIcpWrJw9N6I7WNmV5feaR9QNy3FUSCOJQeyAnYS0oEH12dtzqg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 1438
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap

142.250.74.106

200 OK

15 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (15253 bytes)
Hash
9cf62f572692218952dc96a37036fc97
3afde059642d90744ef7ea0952f6f910a6cfceca
8b9a50164dac049f506a70f6952a7451c4bbbe8fe0407015fef5a436f35b31cc

HTTP Headers

GET /css2?family=Roboto:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 01 Feb 2023 22:23:33 GMT
date: Wed, 01 Feb 2023 22:23:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8944 bytes)
Hash
b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 1437
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

lubrizol.mpeasylink.com/mpel/mpel.js

44.196.216.203

200 OK

11 kB

URL HTTP/2
lubrizol.mpeasylink.com/mpel/mpel.js
IP
44.196.216.203:0
ASN
#14618 AMAZON-AES

File type
data
Size
11 kB (11338 bytes)
Hash
baee2ca9d95e6de7cd445f21817584b3
03ee4e4136758ee45b43687eb07be399e2c24070
49e51e934ef6ed3738751f6b6e729ed13369e7b1d401c24de1db8effaf979105

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel.js HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"5097-1609775222000"
last-modified: Mon, 04 Jan 2021 15:47:02 GMT
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 22:23:33 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11552 bytes)
Hash
b0ca0ccee69fbee57aac373f94120bb4
5d6309502ffd0c33f6199d46f0d14d0a22e3c752
bed9d4689ff57fa636ee08dab3eef3cdf6c4e0a7103e5185151afe8ddfb755f2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 1438
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.lubrizol.com/Presentation/scripts/src/modernizr.js

52.237.158.122

200 OK

20 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/scripts/src/modernizr.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document, ASCII text
Size
20 kB (19591 bytes)
Hash
24525b52cfdaa55f8888cdb68cfb8a76
09096c419dcab6e6c889256a559a08ac168e0477
9d58439b83720600f36efef3bd7f2960c175bea083cf50195c55452ffc533d4b

HTTP Headers

GET /Presentation/scripts/src/modernizr.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 19591
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/scripts/Components/CaseStudies.js

52.237.158.122

200 OK

769 B

URL HTTP/1.1
www.lubrizol.com/Presentation/scripts/Components/CaseStudies.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
769 B (769 bytes)
Hash
f235d23ce179455c46c5ac059bea49ac
698bef533f1ea69f378d851c5cadb576310b074a
ad768823365fef2bae581cfe4fa851efaaec12999ecd0dcd78e8b0a0e91f41e8

HTTP Headers

GET /Presentation/scripts/Components/CaseStudies.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 769
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/JS/Shared/HeaderSocialShare.js

52.237.158.122

200 OK

429 B

URL HTTP/1.1
www.lubrizol.com/Presentation/JS/Shared/HeaderSocialShare.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
429 B (429 bytes)
Hash
ffc5b6239f89993f1635f39b9224e54d
b0aba45eae46154c7f1a4ab20b67b899d3fd3536
468e7908f36db6d6636bbd97ea4e99730a6e936a1c6ab31d19083c7446d2bce6

HTTP Headers

GET /Presentation/JS/Shared/HeaderSocialShare.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 429
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/CSS/Components/cookieconsent.css

52.237.158.122

200 OK

590 B

URL HTTP/1.1
www.lubrizol.com/Presentation/CSS/Components/cookieconsent.css
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
590 B (590 bytes)
Hash
007a0356125720bf8b5ee692d3172bac
46518bed02a214a6b01a5f7f951ae895ba7aa15e
f0377989cc582da226b68d24c903c1a802eb8ea3253c9945ed970d16487d0803

HTTP Headers

GET /Presentation/CSS/Components/cookieconsent.css HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: text/css
Content-Length: 590
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "01c6db6b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:04 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/JS/lib/jquery.cookie.js

52.237.158.122

200 OK

1.6 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/JS/lib/jquery.cookie.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
1.6 kB (1635 bytes)
Hash
29edfe49a5fa1c2d23e640e31d7a5735
ef16bfbfc7e306e2b8536e5d71c2d143b71a32d4
4228a66bbbfc2165118b75aad8047d1db89084be85d90fd3b22332c9fbb8bf5a

HTTP Headers

GET /Presentation/JS/lib/jquery.cookie.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 1635
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/JS/Components/cookieconsent.js

52.237.158.122

200 OK

390 B

URL HTTP/1.1
www.lubrizol.com/Presentation/JS/Components/cookieconsent.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
390 B (390 bytes)
Hash
4c966f278a0fbc2656c1949238c223e4
e5c20643be1e619bc1ec3bc9e0314633623020c0
13cdb9e9ff2cdeb999b86e1bb38f37da224e7a4456d8be4be7a8a2b968cf2de4

HTTP Headers

GET /Presentation/JS/Components/cookieconsent.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 390
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/scripts/src/bundle/Lubrizolbundle.min.js

52.237.158.122

200 OK

32 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/scripts/src/bundle/Lubrizolbundle.min.js
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (35344)
Size
32 kB (32372 bytes)
Hash
6ea5e5c8a94bf0376e3a3baf2741bb44
d2437075c36fac8d945b27fd21a06b61d7f3c275
5286d53ff966be49481cd9ec2b0bf0fc01e2deacc4919e0f1ea011808356b80f

HTTP Headers

GET /Presentation/scripts/src/bundle/Lubrizolbundle.min.js HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:33 GMT
Content-Type: application/x-javascript
Content-Length: 32372
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "076cfb8b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:08 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css

52.237.158.122

200 OK

40 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with very long lines (61891)
Size
40 kB (40213 bytes)
Hash
c100b2d82f4ff0968523809ca1adbbd3
4f5dce87acf436952948099e1cf46b5147fc16b4
c8025d360ada383ed6988d5e30b810b0ebf27fac2de994404482366adae9f497

HTTP Headers

GET /Presentation/css/src/bundle/Lubrizol.min.css HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: text/css
Content-Length: 40213
Connection: keep-alive
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "01be822b210d91:0"
Last-Modified: Thu, 15 Dec 2022 18:22:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Vary: Accept-Encoding
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:26:49 GMT
expires: Sun, 28 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
age: 388605
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 119668
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 260494
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/ns.html?id=GTM-PZXR5K2

142.250.74.168

200 OK

278 B

URL HTTP/2
www.googletagmanager.com/ns.html?id=GTM-PZXR5K2
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
278 B (278 bytes)
Hash
7f5edbde65a04f2925d24c874f9fbd6c
edf4f3547477f98f171c0bc2466a778d0d9b52fb
232193d9e95d7ae1ac116012f221cf6c74d0af3d6d1c14bc65bf98494d0dc83f

HTTP Headers

GET /ns.html?id=GTM-PZXR5K2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 278
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-PZXR5K2

142.250.74.168

200 OK

97 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-PZXR5K2
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (56120)
Size
97 kB (97167 bytes)
Hash
bc1a9ae01923c15b33fdacbc80ae7eaa
f4f3480f601146cdf928d4dc590cf369101a4c62
eeb217a6576b3e3ef06a4fe02d0427f5d45239ad76890ea35aa92afaef7e4164

HTTP Headers

GET /gtm.js?id=GTM-PZXR5K2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 01 Feb 2023 22:23:34 GMT
expires: Wed, 01 Feb 2023 22:23:34 GMT
cache-control: private, max-age=900
last-modified: Wed, 01 Feb 2023 21:36:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 97167
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.lubrizol.com/-/media/Lubrizol/Logo/yt_icon_mono_dark.png

52.237.158.122

200 OK

1.3 kB

URL HTTP/1.1
www.lubrizol.com/-/media/Lubrizol/Logo/yt_icon_mono_dark.png
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 19 x 13, 8-bit colormap, non-interlaced\012- data
Size
1.3 kB (1262 bytes)
Hash
0b6f09efff3e1078a18f90382334ff64
97342156a08a841b05eabdf6c0e78beb14844094
dda50ddeecd4bca487ae3284288ca49628982bbf7498431b5cbda715dbdea840

HTTP Headers

GET /-/media/Lubrizol/Logo/yt_icon_mono_dark.png HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: image/png
Content-Length: 1262
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=595424
ETag: a27fe6cf31674a768bddd7d03d6300af
Last-Modified: Mon, 04 Jan 2021 20:39:36 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
Content-Disposition: inline; filename="yt_icon_mono_dark.png"

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.lubrizol.com/Presentation/fonts/glyphicons-halflings-regular.woff2

52.237.158.122

200 OK

18 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/fonts/glyphicons-halflings-regular.woff2
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /Presentation/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: application/font-woff2
Content-Length: 18028
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/-/media/Images/App-Stores/Download_on_the_App_Store_Badge_US-UK_135x40.svg

52.237.158.122

200 OK

12 kB

URL HTTP/1.1
www.lubrizol.com/-/media/Images/App-Stores/Download_on_the_App_Store_Badge_US-UK_135x40.svg
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
12 kB (12353 bytes)
Hash
d0558d91063038236b60e3ef71fdc1fd
5eb1a238a24f928783bfdf3e8b093e1b38aebe88
25178aeef6eb6b83b96f5f2d004eda3bffbb37122de64afbaef7107b384a4132

HTTP Headers

GET /-/media/Images/App-Stores/Download_on_the_App_Store_Badge_US-UK_135x40.svg HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: image/svg+xml
Content-Length: 12353
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=588758
ETag: aecad1d83cf04449aff1e27b6b40a700
Last-Modified: Thu, 08 Sep 2016 14:56:38 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
Content-Disposition: inline; filename="Download_on_the_App_Store_Badge_US-UK_135x40.svg"

www.lubrizol.com/-/media/Lubrizol/Logo/Lubrizol-Logo-White.png?h=30&iar=0&w=100&hash=2BA9195F91C8390C1BC3E1288171AFB7

52.237.158.122

200 OK

1.6 kB

URL HTTP/1.1
www.lubrizol.com/-/media/Lubrizol/Logo/Lubrizol-Logo-White.png?h=30&iar=0&w=100&hash=2BA9195F91C8390C1BC3E1288171AFB7
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 100 x 30, 8-bit colormap, non-interlaced\012- data
Size
1.6 kB (1626 bytes)
Hash
6902d10e3590e9dfdfa41073d0dd70d1
852b33d6ce5c51229e44fc222b073acfb8e4291b
1a14bd364127c88997ebc8af65c373bd091ebf0fe4907a1018289ced77f42a8d

HTTP Headers

GET /-/media/Lubrizol/Logo/Lubrizol-Logo-White.png?h=30&iar=0&w=100&hash=2BA9195F91C8390C1BC3E1288171AFB7 HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: image/png
Content-Length: 1626
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: public, max-age=604800
ETag: 9831cc43022c4f639665f23b5518187b
Last-Modified: Tue, 24 Sep 2019 20:02:40 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f
Content-Disposition: inline; filename="Lubrizol Logo White.png"

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5e01d6c641ea60dd765ab60412bdca59
58739badba2f4d3dd08520cef55eee687cd7dd16
9c6067fe0021e67a46df754c73bb5b41f693e70ff00fa9f0e4dca55ad3e50d9e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=

216.58.211.2

302 Found

42 B

URL HTTP/2
www.googleadservices.com/pagead/conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=
IP
216.58.211.2:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data= HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
location: https://googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd=
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dc.ads.linkedin.com/collect/?pid=3090252&fmt=gif

13.107.42.14

302 Found

0 B

URL HTTP/2
dc.ads.linkedin.com/collect/?pid=3090252&fmt=gif
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect/?pid=3090252&fmt=gif HTTP/1.1
Host: dc.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.googletagmanager.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D3090252%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQILRfQYO_3h7QAAAYYPFACuCyITvdZK-5JBU6BpoR5V0hh7UFR_m6mgtLReOGhuCGD6hVgGfCcqDQ; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:34 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKY9RXscuXlkQAAAYYPFACuaOhoYnEolN7zDQDCb0Vm1imeFdb2oVt7MR_SMmfZ4WXbCgdFQrou5Le99eJu-Q; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:34 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&d78f9e1f-4bf6-4c79-8ae0-0d81335c926f"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 22:23:34 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675290214:t=1675376614:v=2:sig=AQEdyLCPUNr8HVKsZTA8W83Rf046tgsy"; Expires=Thu, 02 Feb 2023 22:23:34 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzquYijS3ZiOiwlgPaDg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BE19E7018AD245579F1C2F1FFEB0B17A Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:34Z
date: Wed, 01 Feb 2023 22:23:34 GMT
content-length: 0
X-Firefox-Spdy: h2

js.adsrvr.org/up_loader.1.1.0.js

54.230.241.118

200 OK

1.9 kB

URL HTTP/1.1
js.adsrvr.org/up_loader.1.1.0.js
IP
54.230.241.118:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4593), with no line terminators
Size
1.9 kB (1918 bytes)
Hash
bb21b4ac5c8f198136244beb5c8e0804
0eab22f7b9ca0610c0e416296b93087de5e37a63
37d542a03db1e2e120cb42dc3d6cbd94e15005cdfd605cbe070eb27e986f6095

HTTP Headers

GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 08:26:12 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q6N9IqdYhjdUbDn9p0dqLMLV1YytAsPPtIlN2U2dpHcq6LT6zCu4Hw==
Age: 50243

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.lubrizol.com/Presentation/fonts/icomoon.ttf?zck2tn

52.237.158.122

200 OK

34 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/fonts/icomoon.ttf?zck2tn
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size
34 kB (33820 bytes)
Hash
b20ecb64c77a7b7b416fc4d6e686f4b7
15e9e28a0bbf5afc1dd33e1aa18ef5ec6b1bceca
1c3a6e785e2427d3deffbf4eab34e3bbd6e3ebd9b4379eb6a21cc2e3d8236d4b

HTTP Headers

GET /Presentation/fonts/icomoon.ttf?zck2tn HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/Presentation/css/src/bundle/Lubrizol.min.css
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:34 GMT
Content-Type: application/octet-stream
Content-Length: 33820
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=72b4d712bf018f5b1f639be02af7b00f98921c868b4f613f562269964cb3e7d5;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd=

142.250.74.130

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd=
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1739312794&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 22:38:34 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lubrizol.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US

44.196.216.203

200 OK

735 B

URL HTTP/2
lubrizol.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US
IP
44.196.216.203:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (735), with no line terminators
Size
735 B (735 bytes)
Hash
f6918dfdea7ffb15cfea6896d6178688
65c4535a619301b6bd9e1ad280c2f1473cc8e7a4
55573eb6dd5853e4c80d549e706bb9196a0a0cfffa75bc63ff493e6243066a88

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel?href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:34 GMT
content-type: text/javascript;charset=UTF-8
content-length: 735
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa OUR IND COM NAV INT STA"
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lubrizol.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program

44.196.216.203

200 OK

1.3 kB

URL HTTP/2
lubrizol.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
IP
44.196.216.203:0
ASN
#14618 AMAZON-AES

File type
data
Size
1.3 kB (1262 bytes)
Hash
060ba3d5522889a612de058955a822c5
d250259771a78a53a29b5dc7aafd512077b39c2a
5b822d9656a79434e02c031d32fdc49e137e7177a2d491052a878717c99c1bd9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:34 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2759-1609775222000"
last-modified: Mon, 04 Jan 2021 15:47:02 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster}

54.230.111.58

200 OK

1.8 kB

URL HTTP/2
live.rezync.com/sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster}
IP
54.230.111.58:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (1133)
Size
1.8 kB (1814 bytes)
Hash
0c7336debadf1295dfc6c3880fe24e76
9e5c5e9a88fa93686920062e55450298dc182bfd
e3cfaaf7e962ca5f784100937a3607b6a52e98ed013dd06c6f7fb1e586e91967

HTTP Headers

GET /sync?c=16b6410431b6374e780104abb0443ca8&p=a6e0dc81ec03e40f7b2c7c7c294c9312&k=lubrizol-corporation-pixel-6032&zmpID=lubrizol-corporation&cache_buster={cache_buster} HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 1814
date: Wed, 01 Feb 2023 22:23:34 GMT
set-cookie: zync-uuid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e:1675290214.720998; Domain=rezync.com; Expires=Mon, 31 Jul 2023 14:23:34 GMT; Path=/; SameSite=None; Secure
sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In0.Y9rmZg.wty86E-QYPQUgRTeFvx7nhZ6hWo; Expires=Mon, 31 Jul 2023 22:23:34 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CdqMeggabQ7BCUbYa26QPev7D7p2nHQvwkT1xJ9DVlc308v0w0LWMA==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478&ipr=y&prhg=0

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478&ipr=y&prhg=0
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/825865063/?url=https%3A%2F%2Fwww.lubrizol.com%2F&guid=ON&script=0&data=&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&random=1739312794&sscte=1&crd=&is_vtc=1&ocp_id=ZubaY4qwIeXo6gT63p24DA&random=1030291478&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.googletagmanager.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 01 Feb 2023 22:23:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.boomtrain.com/p13n/lubrizol-corporation/p13n.min.js

54.230.111.55

200 OK

30 kB

URL HTTP/1.1
cdn.boomtrain.com/p13n/lubrizol-corporation/p13n.min.js
IP
54.230.111.55:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29694 bytes)
Hash
08120910df423789dfbc189b81e51d4b
53dd02ab400db31dac956ff4d02faa4371d8d012
4dbff47335ab36ba02408d13331478e592bb1a6dc6145a17f559ea522c189e01

HTTP Headers

GET /p13n/lubrizol-corporation/p13n.min.js HTTP/1.1
Host: cdn.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 06:53:33 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: my8NKObSZev..DIWQ0JDGOx1I2VqnJAe
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 01 Feb 2023 22:23:34 GMT
Cache-Control: public, max-age=3600
ETag: W/"104fba48f1451cdb3b14b6d6f75efaa3"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oAsUmQh19bVHKzeQWFHedg7gAQBivTKSoiFPiGd6GrjMu3wAiQ3rRw==
Age: 1740

c1.rfihub.net/js/tc.min.js

54.230.111.29

200 OK

6.2 kB

URL HTTP/2
c1.rfihub.net/js/tc.min.js
IP
54.230.111.29:0
ASN
#16509 AMAZON-02

File type
C source, ASCII text, with very long lines (19497)
Size
6.2 kB (6162 bytes)
Hash
ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f

HTTP Headers

GET /js/tc.min.js HTTP/1.1
Host: c1.rfihub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6162
date: Wed, 01 Feb 2023 21:26:17 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
cache-control: public, max-age=3600
expires: Wed, 01 Feb 2023 22:26:17 GMT
last-modified: Wed, 01 Feb 2023 21:26:07 GMT
content-encoding: gzip
server: Jetty(9.3.29.v20201019)
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8XthaOO6D22q05lqa6DDOG-Jwjccl_aTUEsre4A3hJ3-1740qR-Cgw==
age: 3438
X-Firefox-Spdy: h2

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.210

200 OK

4.8 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (13351)
Size
4.8 kB (4777 bytes)
Hash
74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=13043
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.46

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 01 Feb 2023 21:45:20 GMT
expires: Wed, 01 Feb 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 2295
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

play.google.com/intl/en_us/badges/images/generic/en_badge_web_generic.png

142.250.74.78

302 Found

284 B

URL HTTP/2
play.google.com/intl/en_us/badges/images/generic/en_badge_web_generic.png
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
284 B (284 bytes)
Hash
9eb20e53f15c05dec7817750a07830e1
28c80c8b3546ead8bf99e0523cd85da02452d1c4
0de5342646b1fbde8390c9adfef31f1b443e2ccdeb921d90e037e04e61fb1214

HTTP Headers

GET /intl/en_us/badges/images/generic/en_badge_web_generic.png HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://play.google.com/intl/en_us/badges/static/images/badges/en_badge_web_generic.png
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 01 Feb 2023 22:23:35 GMT
server: sffe
content-length: 284
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BZWJGZ4Z3L&gtm=2oe1u0&_p=1271725107&_gaz=1&cid=1973120461.1675290238&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675290238&sct=1&seg=0&dl=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&dt=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_section=CPVC&ep.page_subSection1=&ep.page_subSection2=&ep.page_group=General%20Content&ep.search_tool=&epn.search_results_count=0&ep.environment=prod&ep.platform=web&up.crm_user_id=&up.login=False

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-BZWJGZ4Z3L&gtm=2oe1u0&_p=1271725107&_gaz=1&cid=1973120461.1675290238&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675290238&sct=1&seg=0&dl=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&dt=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_section=CPVC&ep.page_subSection1=&ep.page_subSection2=&ep.page_group=General%20Content&ep.search_tool=&epn.search_results_count=0&ep.environment=prod&ep.platform=web&up.crm_user_id=&up.login=False
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BZWJGZ4Z3L&gtm=2oe1u0&_p=1271725107&_gaz=1&cid=1973120461.1675290238&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675290238&sct=1&seg=0&dl=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&dt=The%20FBC%E2%84%A2%20System%20Compatible%20Program%20-%20Lubrizol&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_section=CPVC&ep.page_subSection1=&ep.page_subSection2=&ep.page_group=General%20Content&ep.search_tool=&epn.search_results_count=0&ep.environment=prod&ep.platform=web&up.crm_user_id=&up.login=False HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.lubrizol.com
date: Wed, 01 Feb 2023 22:23:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stats.g.doubleclick.net/g/collect?v=2&tid=G-BZWJGZ4Z3L&cid=1973120461.1675290238&gtm=2oe1u0&aip=1

64.233.162.155

204 No Content

0 B

URL HTTP/2
stats.g.doubleclick.net/g/collect?v=2&tid=G-BZWJGZ4Z3L&cid=1973120461.1675290238&gtm=2oe1u0&aip=1
IP
64.233.162.155:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BZWJGZ4Z3L&cid=1973120461.1675290238&gtm=2oe1u0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.lubrizol.com
date: Wed, 01 Feb 2023 22:23:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/apple-icon.png

52.237.158.122

200 OK

6.5 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/apple-icon.png
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6502 bytes)
Hash
b38db7894776811ae3a209dfbffc928b
c84ca0fa0537d0830212d6e63ce688ec05967804
83d418d2c5b94019a996b672774ffc32383f7836b47fc8e747a187aaf43a1fd6

HTTP Headers

GET /Presentation/CSS/Lubrizol/Icons/FavIcons/apple-icon.png HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol; _ga_BZWJGZ4Z3L=GS1.1.1675290238.1.0.1675290238.60.0.0; _ga=GA1.1.1973120461.1675290238; btIdentify=2e5a0488-9a80-4215-b00b-536ad056f9dc; _bti=%7B%22bsin%22%3A%22%22%7D; _bts=e280c698-3e7f-4386-fad9-7e0b233aed6f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: image/png
Content-Length: 6502
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=2b4ef85523c8628779b336b1ae7771fb0c5e289014ef47912d911dceb47ba032;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/favicon-16x16.png

52.237.158.122

200 OK

1.2 kB

URL HTTP/1.1
www.lubrizol.com/Presentation/CSS/Lubrizol/Icons/FavIcons/favicon-16x16.png
IP
52.237.158.122:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
1.2 kB (1240 bytes)
Hash
6d4e6b1c775d8e23f09659095de84c43
68ae5c436b1e37068e1e995d98ae298badd7f18c
2b255e3b9efc0be947b3a067e3b37301464900288216b340c9bcddcb5e6d4266

HTTP Headers

GET /Presentation/CSS/Lubrizol/Icons/FavIcons/favicon-16x16.png HTTP/1.1
Host: www.lubrizol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/CPVC/FBC-System-Compatible-Program
Cookie: shell#lang=en; ASP.NET_SessionId=ijcjughws3wehz4stdovxrbg; SC_ANALYTICS_GLOBAL_COOKIE=7a0b8028113b4fdda39d82873a821beb|False; sxa_site=lubrizol; _ga_BZWJGZ4Z3L=GS1.1.1675290238.1.0.1675290238.60.0.0; _ga=GA1.1.1973120461.1675290238; btIdentify=2e5a0488-9a80-4215-b00b-536ad056f9dc; _bti=%7B%22bsin%22%3A%22%22%7D; _bts=e280c698-3e7f-4386-fad9-7e0b233aed6f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: image/png
Content-Length: 1240
Connection: keep-alive
Accept-Ranges: bytes
ETag: "0499eb7b110d91:0"
Last-Modified: Thu, 15 Dec 2022 18:19:06 GMT
Set-Cookie: ARRAffinity=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
ARRAffinitySameSite=74b7fce940421b49f9f634d3ab44a809803a3e6d50fd4a2fdcee53d07a7be865;Path=/;HttpOnly;SameSite=None;Secure;Domain=mc-34c08c55-e711-4d2f-8089-9069-cd.azurewebsites.net
Request-Context: appId=cid-v1:ddc7ec92-3cf3-4b61-ad2b-2b13e6d2971f

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6725a32b97787d7eaee2f95845003253
8b5d0b009ee154a7d9761cf2358b45667180cadc
b65f6771520ea260eb6ec7c1dc117c5002d8929df7b57d7ee14b5b4a309f3a10

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 22:23:35 GMT
Last-Modified: Wed, 01 Feb 2023 20:49:43 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3hMhkcfiCHYKeZ7_houSicUJd14fTo4bOC28ds6PY-5GnAYTyjDUcA==
Age: 5632

px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJgZiYVFWbJYQAAAYYPFARGEY1WkIk-B0KKwuqeFKgAa3NOAJ6hfKq1pRFvctLxxNlfR2kjrCqkBg; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLHFP2XJPTOZgAAAYYPFARGkaofxP92F_RnqUy4CvTNAZNSc8o9kFbtTZzT9go2aktsy2DozLx8S5yRpNSoEQ; Max-Age=2592000; Expires=Fri, 03 Mar 2023 22:23:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&8da54f7d-2ec2-4fd6-8c11-d3a68cd2813f"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 22:23:35 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675290215:t=1675376615:v=2:sig=AQHmaEnaHqIurCEiVe52BEGyhPZF5tcq"; Expires=Thu, 02 Feb 2023 22:23:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzquYwnp+VJ8ZR9R15qg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 43894247626847FFAB188D0610021FA1 Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:35Z
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
b4c7f61557aabbbc5a9905ee5ef984f2
eb474300858289d87afc27ee73e9de6e2f4ec13d
a329312a49a60656374192aafea83e8cf7849883af61e50a2dc3f0fe9718ac34

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:15:48 GMT
Expires: Wed, 08 Feb 2023 02:15:47 GMT
Etag: "eb474300858289d87afc27ee73e9de6e2f4ec13d"
Cache-Control: max-age=531731,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17a609f0b521-OSL

people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In19&site_id=lubrizol-corporation

44.194.69.37

200 OK

154 B

URL HTTP/1.1
people.api.boomtrain.com/identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In19&site_id=lubrizol-corporation
IP
44.194.69.37:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
154 B (154 bytes)
Hash
25befbd75e6f21975831a50970dadc16
051e3eee1e658b9c2b65aa1428b37795308b7d08
dc62534666ca690bfc1677087b166f7caf6690f51a032bcb75debdf2de9846da

HTTP Headers

GET /identify/resolve?data=eyJjb29raWUiOnsiYnNpbiI6IiJ9LCJxdWVyeXN0cmluZyI6e30sImV4dGVybmFsX2lkcyI6eyJ6eW5jIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In19&site_id=lubrizol-corporation HTTP/1.1
Host: people.api.boomtrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Authorization,x-app-id
Access-Control-Allow-Methods: GET,PUT,POST,DELETE
Access-Control-Allow-Origin: *
Content-Type: application/json
Date: Wed, 01 Feb 2023 22:23:35 GMT
Server: nginx
Content-Length: 154
Connection: keep-alive

20841940p.rfihub.com/ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346

193.0.160.128

200 OK

2.5 kB

URL HTTP/1.1
20841940p.rfihub.com/ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346
IP
193.0.160.128:0
ASN
#54312 ROCKETFUEL

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2534), with no line terminators
Size
2.5 kB (2534 bytes)
Hash
99e400a5979521146ebcd9d11f3a2755
60c1cd8377aaa665459123d4de5f33f1e9da0914
36767fd3265f257c558f57ae2ed178eb6f428ea4e3d26868c55b736239e41e36

HTTP Headers

GET /ca.html?ver=9&rb=46957&ca=20841940&_o=46957&_t=20841940&pe=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&pf=&ra=698708828262346 HTTP/1.1
Host: 20841940p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:35 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0NjY2sjQ1MjE0MDIwNrcwMRfiM9T1jfc3KMp0Ny1K9HEGAEUS-vIlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_5vFyGtoZm5qZGlgZGhqamm4C41_Co3_Co3_C40_iQmVPwuNvwiNvwqNvwmNvwtdPQsq_xYafxMrmn5uNPt50fjCqPxHaHwA_6WSRCABAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:35 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjY2sjQ1MjE0MDIwNrcwMRfiM9T1jfc3KMp0Ny1K9HEGAEUS-vIlAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:35 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: text/html;charset=utf-8
Content-Length: 2534
Server: Jetty(9.3.29.v20201019)

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3090252%26time%3D1675290238567%26url%3Dhttps%253A%252F%252Fwww.lubrizol.com%252FCPVC%252FFBC-System-Compatible-Program%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&c4b08794-7fd4-4c5e-8393-36818ded2974"; Domain=.linkedin.com; Expires=Thu, 01-Feb-2024 22:23:35 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202302012223355a4bd596-93ba-4cbd-8ec3-844b25c9b297AQFb7NvjpKlMj5cykO_IJfKB23DQKo-G"; Domain=.www.linkedin.com; Expires=Thu, 01-Feb-2024 22:23:35 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUyOTAyMTU7MjswMjFo82PI0jTwruN1xvVXIcUi46aFTH+7wZocpl7l6f6qeg==; Domain=.linkedin.com; Expires=Mon, 31 Jul 2023 22:23:35 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2480:u=1:x=1:i=1675290215:t=1675376615:v=2:sig=AQHmaEnaHqIurCEiVe52BEGyhPZF5tcq"; Expires=Thu, 02 Feb 2023 22:23:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzquYyYLjHNmNQWdlfwA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CA7DE658F22A4CB5A790A0EF09297F11 Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:35Z
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 0
X-Firefox-Spdy: h2

live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5133329524102037847&referrer=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program

54.230.111.58

302 Found

657 B

URL HTTP/2
live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5133329524102037847&referrer=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program
IP
54.230.111.58:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (571)
Size
657 B (657 bytes)
Hash
21ad5da1cd2df0f1cf195bcb6605f05c
c4e5985a855bb450465c7717b5db16e79f28aec8
cc09465ac7419c972d804832984c31b5d6207f597c5fb4d2b3eb1a7111a8c836

HTTP Headers

GET /pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5133329524102037847&referrer=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Cookie: zync-uuid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e:1675290214.720998; sd-session-id=eyJfcGVybWFuZW50Ijp0cnVlLCJzZXNzaW9uX2lkIjoiNjBlYzhjYzYtZGUxMi00MTI0LThhNTQtYmIzZDY0ZmI3ZDNlOjE2NzUyOTAyMTQuNzIwOTk4In0.Y9rmZg.wty86E-QYPQUgRTeFvx7nhZ6hWo
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 657
location: https://p.rfihub.com/cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998
date: Wed, 01 Feb 2023 22:23:35 GMT
set-cookie: zync-uuid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e:1675290214.720998; Domain=rezync.com; Expires=Mon, 31 Jul 2023 14:23:35 GMT; Path=/; SameSite=None; Secure
sd-session-id=.eJwNyksOgyAQANC7zFoamBm-lzEC04S00kZ0U-Pd6_Il74T5K9u6dOk7pH07ZILybrcGpBNG-63yggTWEBFGi2w0avKBPVwTDBmjffrc6n2clhJKcaqKQcUGWYXFssqZquNn9pUkGectRo2GHx51jAGuP5NCJbs.Y9rmZw.Rbn7MdDABtL2-WY5xU3RB70xArg; Expires=Mon, 31 Jul 2023 22:23:35 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3PsGdA98GDwIxi6gYjkCsgDijjZ_UGbGHgBR3QJM_aXP6thIs8GPhw==
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=3090252&time=1675290238567&url=https%3A%2F%2Fwww.lubrizol.com%2FCPVC%2FFBC-System-Compatible-Program&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.lubrizol.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&debf1396-070f-4201-8d96-6d4a1741ce6f"; domain=.linkedin.com; Path=/; Secure; Expires=Thu, 01-Feb-2024 22:23:35 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2453:u=1:x=1:i=1675290215:t=1675376615:v=2:sig=AQEay9Ny0oLvT4vs2biayyuG7_yAwGh8"; Expires=Thu, 02 Feb 2023 22:23:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzquY2JfHIl94Al42kpw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 71FFBE11C48C43B581442389551AD88A Ref B: OSL30EDGE0519 Ref C: 2023-02-01T22:23:35Z
date: Wed, 01 Feb 2023 22:23:35 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
bb05d9d7d42cc1938b9bcf9989fb9cdf
04b891afee71ba94ea17886928e9d4306c866cfc
7965c67978ff70fb9320f8aa569605cd79b82a62e811b68b474a9ae7f18ae405

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=91225
Date: Wed, 01 Feb 2023 22:23:35 GMT
Etag: "63d9996e-1d7"
Expires: Thu, 02 Feb 2023 23:44:00 GMT
Last-Modified: Tue, 31 Jan 2023 22:42:54 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: amsqWOqMrmRgHVyY6DBmetK71hWn_b6RkQ3zfaauk6uCTJ--TxxPBg==
Age: 3666

contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5133329524102037847

23.38.200.22

200 OK

237 B

URL HTTP/2
contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5133329524102037847
IP
23.38.200.22:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 87a, 1 x 1\012- data
Size
237 B (237 bytes)
Hash
74378edf31ef26cd97c236ad08d05fa3
fdd52cdbf193d1dfd1031978667689f3414b49ed
11cb2c0e70f91c6a0326cf4a4f9fa1b177c14efba6b56bf7535624b9c7bce990

HTTP Headers

GET /cksync.php?cs=3&type=rkt&ovsid=5133329524102037847 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
content-length: 237
content-type: image/gif
set-cookie: visitor-id=3182918153580274000V10; Expires=Thu, 01 Feb 2024 22:23:35 GMT; domain=.media.net; Path=/;
data-rk=5133329524102037847~~3;Expires=Wed, 31 Jan 2024 22:23:35 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Wed, 01 Feb 2023 22:23:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 22:23:35 GMT
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=

142.250.74.98

302 Found

369 B

URL HTTP/2
cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
369 B (369 bytes)
Hash
9b0abae714eddf7101311d76a4b68044
be99b553f4e3a267f033186387d0e9808625f306
6dd06ee44924742cd7ac9a97c1a4a4f8aac8de73636a36f195bd05c9acb06211

HTTP Headers

GET /pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc=
date: Wed, 01 Feb 2023 22:23:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 22:38:35 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc=

142.250.74.98

302 Found

269 B

URL HTTP/2
cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc=
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
269 B (269 bytes)
Hash
2ac1f21e70e438c7e2193d02ee7e9be0
f9a11bb626bad146751fc166f96b91f6aeae7eab
de4a04a623ca095cd229a54edeb3120d9dc94d227198b75cb9a0a69677ed7c85

HTTP Headers

GET /pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEzMzMyOTUyNDEwMjAzNzg0Nw==&forward=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
date: Wed, 01 Feb 2023 22:23:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

status.geotrust.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 511
Cache-Control: max-age=146379
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 15:03:15 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

ib.adnxs.com/setuid?entity=18&code=5133329524102037847

37.252.171.21

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/setuid?entity=18&code=5133329524102037847
IP
37.252.171.21:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /setuid?entity=18&code=5133329524102037847 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847
AN-X-Request-Uuid: f7bb0fdf-d1f7-4986-8888-4fafb6a6a8dd
Set-Cookie: uuid2=7009409384598425123; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:23:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

us-u.openx.net/w/1.0/sd?id=537073062&val=5133329524102037847&r=

35.244.159.8

200 OK

43 B

URL HTTP/2
us-u.openx.net/w/1.0/sd?id=537073062&val=5133329524102037847&r=
IP
35.244.159.8:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /w/1.0/sd?id=537073062&val=5133329524102037847&r= HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847

37.252.171.21

200 OK

43 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847
IP
37.252.171.21:0
ASN
#29990 ASN-APPNEX

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef

HTTP Headers

GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5133329524102037847 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: d2b756f6-01ab-43e0-a0a4-095deb9d6bb9
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2E>1p7UHQ!]tbPl1MNu::wpAk`W>$ka#=sjF$WXcw]AHlvv!:n8Q/=tDT@-!_6-zQEVk`!)3Xc!!!!!; SameSite=None; Path=/; Max-Age=7776000; Expires=Tue, 02-May-2023 22:23:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

p.rfihub.com/cm?pub=24472&in=1

193.0.160.129

302 Found

0 B

URL HTTP/1.1
p.rfihub.com/cm?pub=24472&in=1
IP
193.0.160.129:0
ASN
#54312 ROCKETFUEL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 22:23:36 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MTCwMLE0Mja1sLA0MjMzNhLiM9StzHfxNcy1zPDOjowCAK2fyAclAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
eud=H4sIAAAAAAAA_7vFwmtoZm5qZGlgZGhmYGoCAFI3IYoQAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MTCwMLE0Mja1sLA0MjMzNhLiM9StzHfxNcy1zPDOjowCAK2fyAclAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5140084923588926632&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)

status.geotrust.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c6435a4ec4c651df16d5e98943d0c4e2
9535c715a4b6317c5260435a161c87381da2a46a
03866a525337b2bbc977e80454446391374dc6b0528024b2925d1e215a09656a

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5266
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Last-Modified: Wed, 01 Feb 2023 20:55:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1

185.94.180.125

302 Found

0 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1
IP
185.94.180.125:0
ASN
#35220 SpotXchange, INC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /partner?adv_id=7180&uid=5133329524102037847&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=11c420c3-a27f-11ed-b6e8-1644f9a80206; expires=Wed, 01-Mar-2023 22:23:36 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206
X-fe: 96
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
65e3f22ba34500036d6a96bcabc31f04
7f27642bf87c575e7d7e73fcacfbb5f24a50834a
b552da9be1755a70ea7e66a8b3c1393939bcb78d44025ecedf1a18e6e1321327

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3584
Cache-Control: max-age=117781
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da017d-1d7"
Expires: Fri, 03 Feb 2023 07:06:37 GMT
Last-Modified: Wed, 01 Feb 2023 06:06:53 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
992c9711646ae62a48a565c212d90af5
6e322349567e49840ea24424a0fd8efd52ec2c32
40496189e83c4b999cdab8b22aaa0beba6c9c99055dc638123670c86e05752e5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Feb 2023 22:23:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 03:24:13 GMT
Expires: Thu, 02 Feb 2023 03:24:13 GMT
ETag: "6e322349567e49840ea24424a0fd8efd52ec2c32"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5133329524102037847

23.38.201.22

200 OK

43 B

URL HTTP/2
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5133329524102037847
IP
23.38.201.22:0
ASN
#16625 AKAMAI-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /e/rocketfuel_sync?na_exid=5133329524102037847 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Wed, 01 Feb 2023 22:23:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 01 Feb 2023 22:23:36 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
25d45c2fcda1e80380e31da3a268fa45
ef655fa6ca1fffb41ab1ffbb7af4dae90fa919f8
7b6dac7b0a5563f5a5d7dbc1bdd7407500fe87232bab21a5ba087faa50be873e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6193
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Last-Modified: Wed, 01 Feb 2023 20:40:23 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 727

bpi.rtactivate.com/tag/?id=11017&user_id=5133329524102037847

52.86.27.6

200 OK

43 B

URL HTTP/2
bpi.rtactivate.com/tag/?id=11017&user_id=5133329524102037847
IP
52.86.27.6:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /tag/?id=11017&user_id=5133329524102037847 HTTP/1.1
Host: bpi.rtactivate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: awselb/2.0
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2

dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=

185.80.36.245

302 Found

0 B

URL HTTP/1.1
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=
IP
185.80.36.245:0
ASN
#27381 CASALE-MEDIA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward= HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 22:23:36 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y9rmaOGEtMMKOCw2BVWF9AAA; Path=/; Domain=casalemedia.com; Expires=Thu, 01 Feb 2024 22:23:36 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=5070; Path=/; Domain=casalemedia.com; Expires=Tue, 02 May 2023 22:23:36 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=5070; Path=/; Domain=casalemedia.com; Expires=Tue, 02 May 2023 22:23:36 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive

dpm.demdex.net/ibs:dpid=1121&dpuuid=5133329524102037847&redir=

3.248.49.44

302 Found

0 B

URL HTTP/1.1
dpm.demdex.net/ibs:dpid=1121&dpuuid=5133329524102037847&redir=
IP
3.248.49.44:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ibs:dpid=1121&dpuuid=5133329524102037847&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0ed41892e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=62533241999386403632424169369190072209; Max-Age=15552000; Expires=Mon, 31 Jul 2023 22:23:36 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: amBjvpfpQKI=
Content-Length: 0
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b06cec089acd318019e1e0ca74cce574
4af9a1240f73eea11ad968ccd73f702a75e68147
7e6819de8b1bfcb09cea8470e011c63b8016a251c85ac20151c225db675006cf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4612
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Last-Modified: Wed, 01 Feb 2023 21:06:44 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206

185.94.180.125

200 OK

43 B

URL HTTP/1.1
sync.search.spotxchange.com/partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206
IP
185.94.180.125:0
ASN
#35220 SpotXchange, INC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e

HTTP Headers

GET /partner?adv_id=7180&uid=5133329524102037847&img=1&__user_check__=1&sync_id=11c42128-a27f-11ed-b6e8-1644f9a80206 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=11ce07cc-a27f-11ed-9a85-1a377c5d0206; expires=Wed, 01-Mar-2023 22:23:36 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 65
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0

aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5133329524102037847

3.67.120.212

200 OK

43 B

URL HTTP/2
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5133329524102037847
IP
3.67.120.212:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a

HTTP Headers

GET /adscores/g.pixel?sid=9212192898&rf=5133329524102037847 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2

p.rfihub.com/cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998

193.0.160.129

302 Found

0 B

URL HTTP/1.1
p.rfihub.com/cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998
IP
193.0.160.129:0
ASN
#54312 ROCKETFUEL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm?pub=39342&in=0&userid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%253A1675290214.720998 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Wed, 01 Feb 2023 22:23:36 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0NjExNTUxMrA0NjMxM7IwtRTiM9RNKy52ssx0c3QPDvcHAODwgp8lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_z3IsRXAIAgFwAlSOQd5gPjFbCNKBkqZadPlynsKwLl8LdBOUTJRI5_NKKJu2B1917wEvelgFTu78hj-luM_CPwDhMD0akkAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
euds=H4sIAAAAAAAA_wXByRGAMAgAwI_t4AAhHHYjRwqxcne_SxWnvEqhhxiEWMDfLZC5WuWk9ZqH1DYHMsltjBH-A1uZhjQ5AAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjExNTUxMrA0NjMxM7IwtRTiM9RNKy52ssx0c3QPDvcHAODwgp8lAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
Location: https://idsync.rlcdn.com/501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998
Content-Length: 0
Server: Jetty(9.3.29.v20201019)

status.geotrust.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c82cba3066dfd5140095331fb953eff
5d7e89f215ed8c3b456bc35175919665ae87dedf
f6ba0d0485ca343f4b24684ea9df6de4e63da70dd5a7bb48c5dc7981377445bc

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 511
Cache-Control: max-age=146379
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da7d35-1d7"
Expires: Fri, 03 Feb 2023 15:03:15 GMT
Last-Modified: Wed, 01 Feb 2023 14:54:45 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D

151.101.130.49

302 Found

0 B

URL HTTP/2
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP
151.101.130.49:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y9rmaAAD5F9UOgAh; Path=/; Domain=.everesttech.net; Expires=Thu, 01-Feb-2024 22:23:36 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:23:36 GMT
via: 1.1 varnish
x-served-by: cache-bma1681-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675290216.092859,VS0,VE93
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2

beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5133329524102037847

52.48.206.130

204 No Content

0 B

URL HTTP/2
beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5133329524102037847
IP
52.48.206.130:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /usermatch.gif?partner_id=rfuel&partner_user_id=5133329524102037847 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:23:36 GMT
set-cookie: _kuid_=PWrTWHlg; Expires=Mon, 31-Jul-23 22:23:36 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n008-dub-prod.krxd.net
x-request-time: D=25 t=1675290216
X-Firefox-Spdy: h2

ocsp.usertrust.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
235d9e63fde94bc91cc1d143aebccba9
21ee12ac07c972573307a2ae7fc7d2d6249631c7
3c1d5bbfebf0233cb343476de60fd1efea8396da48c1769d0d1c887e84989d6a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 09:01:04 GMT
Expires: Wed, 08 Feb 2023 09:01:03 GMT
Etag: "21ee12ac07c972573307a2ae7fc7d2d6249631c7"
Cache-Control: max-age=602078,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 788
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e17ab3fccb50f-OSL

a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3

193.0.160.129

200 OK

42 B

URL HTTP/1.1
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP
193.0.160.129:0
ASN
#54312 ROCKETFUEL

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292

HTTP Headers

GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0sDA1tTQ3MjM0Mzc1NzMzNhHiM9T1cAwp1zVNC_cNy0wHAKNQCiwlAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0sDA1tTQ3MjM0Mzc1NzMzNhHiM9T1cAwp1zVNC_cNy0wHAKNQCiwlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0Mzc1sjQwMjQztDAHAEpXelQTAAAA; Path=/; Domain=.rfihub.com; Expires=Mon, 26 Feb 2024 22:23:36 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)

sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh

151.101.130.49

200 OK

85 B

URL HTTP/2
sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh
IP
151.101.130.49:0
ASN
#54113 FASTLY

File type
PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Size
85 B (85 bytes)
Hash
5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a

HTTP Headers

GET /ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y9rmaAAD5F9UOgAh HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Wed, 01 Feb 2023 22:23:36 GMT
via: 1.1 varnish
age: 1204
x-served-by: cache-bma1681-BMA
x-cache: HIT
x-cache-hits: 1952
x-timer: S1675290216.203534,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2

dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1

185.80.36.245

200 OK

43 B

URL HTTP/1.1
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1
IP
185.80.36.245:0
ASN
#27381 CASALE-MEDIA

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /rum?cm_dsp_id=57&external_user_id=5133329524102037847&forward=&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive

ps.eyeota.net/match?uid=5140084923588926632&bid=omt9pi0

3.122.214.165

200 OK

0 B

URL HTTP/1.1
ps.eyeota.net/match?uid=5140084923588926632&bid=omt9pi0
IP
3.122.214.165:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?uid=5140084923588926632&bid=omt9pi0 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Set-Cookie: SERVERID=17770~DM; Domain=eyeota.net; Path=/; Expires=Wed, 01 Feb 2023 22:33:36 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Wed, 01 Feb 2023 22:23:36 GMT

dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir=

3.248.49.44

200 OK

59 B

URL HTTP/1.1
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir=
IP
3.248.49.44:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
59 B (59 bytes)
Hash
1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13

HTTP Headers

GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5133329524102037847&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0665c523e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 7BZHOtNOS8w=
Content-Length: 59
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
43030f3d6872c114931f12d793a3bb17
81918b93fe2b78d40334c184571e20ae2f9d68d8
c988d04156ff1363a4e3272dc0cfc9b2c8624d5743ce8c3ea722ba02a0041f85

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157346
Date: Wed, 01 Feb 2023 22:23:36 GMT
Etag: "63da9db3-1d7"
Expires: Fri, 03 Feb 2023 18:06:02 GMT
Last-Modified: Wed, 01 Feb 2023 17:13:23 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GEW-09ugfcLhJCgK33RKS9Gc7S1t3mkDToiqee3T3FkdSNXqkduM7g==
Age: 3159

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
7a37d5f14346f4c2d32067a67ed9cbf2
9364052ccda00fe675fe8cc3f2f244161f2a2f69
c0f55cbfc7ce76856115b4557edefe0c45f2b2979ed89b39fd92d185fddb8682

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 13:56:49 GMT
Expires: Tue, 07 Feb 2023 13:56:48 GMT
Etag: "9364052ccda00fe675fe8cc3f2f244161f2a2f69"
Cache-Control: max-age=487391,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17ab1988b505-OSL

x.bidswitch.net/sync?dsp_id=119&user_id=5133329524102037847&expires=30

52.28.17.51

302 Found

0 B

URL HTTP/2
x.bidswitch.net/sync?dsp_id=119&user_id=5133329524102037847&expires=30
IP
52.28.17.51:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?dsp_id=119&user_id=5133329524102037847&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=5ed11681-358a-420e-9530-e9e8e248c37f; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675290216; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675290216; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675290216; path=/; expires=Thu, 01-Feb-2024 22:23:36 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2

x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30

52.28.17.51

200 OK

43 B

URL HTTP/2
x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30
IP
52.28.17.51:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ul_cb/sync?dsp_id=119&user_id=5133329524102037847&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=572958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17aa3f42b521-OSL

idsync.rlcdn.com/360947.gif?partner_uid=5133329524102037847

35.244.174.68

200 OK

42 B

URL HTTP/2
idsync.rlcdn.com/360947.gif?partner_uid=5133329524102037847
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /360947.gif?partner_uid=5133329524102037847 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: rlas3=hU5PVSQsavLYTHcrB/kJXw81E/deq0bX6atydhlMgOE=; Path=/; Domain=rlcdn.com; Expires=Thu, 01 Feb 2024 22:23:36 GMT; Secure; SameSite=None
pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

idsync.rlcdn.com/501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998

35.244.174.68

307 Temporary Redirect

0 B

URL HTTP/2
idsync.rlcdn.com/501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /501709.gif?partner_uid=60ec8cc6-de12-4124-8a54-bb3d64fb7d3e%3A1675290214.720998 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store
location: https://idsync.rlcdn.com/1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

idsync.rlcdn.com/1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA

35.244.174.68

307 Temporary Redirect

0 B

URL HTTP/2
idsync.rlcdn.com/1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1000.gif?memo=CM3PHhJACjwIARAFGjY2MGVjOGNjNi1kZTEyLTQxMjQtOGE1NC1iYjNkNjRmYjdkM2U6MTY3NTI5MDIxNC43MjA5OTgQABoNCOjM654GEgUI6AcQAEIASgA HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=epsilon&google_cm
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=COjM654GEgUI6AcQABIGCLrqARAA; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=572958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17ab9a9cb51d-OSL

idsync.rlcdn.com/362358.gif?google_error=3

35.244.174.68

200 OK

42 B

URL HTTP/2
idsync.rlcdn.com/362358.gif?google_error=3
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /362358.gif?google_error=3 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20841940p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Sun, 02 Apr 2023 22:23:36 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
8a41a6e5225635ecc02de9eabd9a472b
585d12a70f821899fdfad9c09cc87fc46cac9ea0
997fff4ada3bc79630777b4f847861230bb5ae6c58627220d8ef2c693bb92cbf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:23:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 13:42:56 GMT
Expires: Wed, 08 Feb 2023 13:42:55 GMT
Etag: "585d12a70f821899fdfad9c09cc87fc46cac9ea0"
Cache-Control: max-age=572958,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e17ae1d66b505-OSL

e1.emxdgt.com/put?d=d16&uid=5133329524102037847

18.158.8.202

204 No Content

0 B

URL HTTP/2
e1.emxdgt.com/put?d=d16&uid=5133329524102037847
IP
18.158.8.202:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /put?d=d16&uid=5133329524102037847 HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
content-type: text/html
date: Wed, 01 Feb 2023 22:23:36 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
005622e59568cb632684a1cd2880c97e
31333726c45ed676daec90ecde21654791c06a9d
02b0023deb129dda05ec64f305ddd4f0aba5a3d0e7bf91a099f6acc1de7b15a3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 01 Feb 2023 22:23:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 01 Feb 2023 21:29:42 GMT
Expires: Thu, 02 Feb 2023 21:29:42 GMT
ETag: "31333726c45ed676daec90ecde21654791c06a9d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

lubrizol.mpeasylink.com/mpel/mpel_ssd.js

44.196.216.203

200 OK

0 B

URL HTTP/2
lubrizol.mpeasylink.com/mpel/mpel_ssd.js
IP
44.196.216.203:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel_ssd.js HTTP/1.1
Host: lubrizol.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:23:34 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"3276-1609775222000"
last-modified: Mon, 04 Jan 2021 15:47:02 GMT
cache-control: max-age=86400
expires: Thu, 02 Feb 2023 22:23:34 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

kit.fontawesome.com/25e47bdf1c.js

104.18.22.52

200 OK

0 B

URL HTTP/2
kit.fontawesome.com/25e47bdf1c.js
IP
104.18.22.52:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /25e47bdf1c.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:33 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FxGUd5Q4st5mGRQ_LtBh
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 792e1799c80eb4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.linkedin.oribi.io/partner/3090252/domain/lubrizol.com/token

54.230.111.78

200 OK

0 B

URL HTTP/2
cdn.linkedin.oribi.io/partner/3090252/domain/lubrizol.com/token
IP
54.230.111.78:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /partner/3090252/domain/lubrizol.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lubrizol.com
Connection: keep-alive
Referer: https://www.lubrizol.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
date: Wed, 01 Feb 2023 21:46:59 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 435bWVqa4JtE9uebpJGPpRhOV8uQsofpHj8B1ZPwcdrj4rvhyiCWhQ==
age: 2196
X-Firefox-Spdy: h2

partners.tremorhub.com/sync?UIRF=5133329524102037847&r=V4EnqA_WsEAs

54.211.235.181

200 OK

0 B

URL HTTP/2
partners.tremorhub.com/sync?UIRF=5133329524102037847&r=V4EnqA_WsEAs
IP
54.211.235.181:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sync?UIRF=5133329524102037847&r=V4EnqA_WsEAs HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20841940p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:23:36 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (38)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML