r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14574
Expires: Thu, 01 Dec 2022 19:55:55 GMT
Date: Thu, 01 Dec 2022 15:53:01 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2522
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:53:01 GMT
Last-Modified: Thu, 01 Dec 2022 15:10:59 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 15:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1995
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6448
Expires: Thu, 01 Dec 2022 17:40:29 GMT
Date: Thu, 01 Dec 2022 15:53:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /0Am0179A9PJY2mLv7tmf6f9bv8IuD0kiNrZ58kVLDP1bPWOqpJ8xP9JFI8VLQKi7KSdJCUy01A=
x-amz-request-id: GHSQ3DQKYQJVH6X9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 15:46:19 GMT
age: 402
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Location: https://qa-crh.kpmgsofy.com/
X-Azure-Ref: 03c2IYwAAAACQrBZMS2MkQJqD7UxUtKYXT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
Date: Thu, 01 Dec 2022 15:53:01 GMT
Content-Length: 0
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 15:53:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 2c61c6631c178972a3ccb95d7f4c58be
5588dd23f1f03f164634dec63b2ce55a9343358d
150cef9528aba565cb77d6e5dee249fbfac90ab1a84745f75e116a0fd91ce163
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 15:53:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 21:46:26 GMT
Expires: Thu, 01 Dec 2022 21:46:26 GMT
ETag: "5588dd23f1f03f164634dec63b2ce55a9343358d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 15:08:56 GMT
cache-control: public,max-age=3600
age: 2645
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2513
Cache-Control: max-age=150940
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 15:53:02 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:48:42 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: i+adctUOd3+zptQr7mPd3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XnMzHBzFUDhTkuJ/t1hUXeLb9e8=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14897
Expires: Thu, 01 Dec 2022 20:01:20 GMT
Date: Thu, 01 Dec 2022 15:53:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14897
Expires: Thu, 01 Dec 2022 20:01:20 GMT
Date: Thu, 01 Dec 2022 15:53:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14897
Expires: Thu, 01 Dec 2022 20:01:20 GMT
Date: Thu, 01 Dec 2022 15:53:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14897
Expires: Thu, 01 Dec 2022 20:01:20 GMT
Date: Thu, 01 Dec 2022 15:53:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14897
Expires: Thu, 01 Dec 2022 20:01:20 GMT
Date: Thu, 01 Dec 2022 15:53:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 71f8798f-93e9-4649-8822-7ad3fadeec34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz6vH05oAMF_qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd11-1849aa08463e5c1f3d9b15b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QVGFEOePBybOeNxG6eWBffm8Ha_fmBnT8vMIGcI8zv9C7yiBeSncDw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
age: 64863
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 65133
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 64863
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:57 GMT
age: 64806
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:45:16 GMT
age: 36467
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 75297
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/
302 Found 56 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with no line terminators
Hash 7f381b22592260563f16c80e0a0dc487
7f97cecd6eb56f2de1ee84dae7f45a68c6d8a26c
ee8425a25b3a83e941c57037398b687cd128386bdeb0951ab907765e9495fb8a
GET / HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 56
content-type: text/html; charset=utf-8
expires: 0
location: /login
vary: Accept
set-cookie: _csrf=s%3A_UdtTl6n37n1zcwdKrwHDIO-.%2BSn9b0Vp3TbIKyN7XQ6By8mJwixUsQ90rLAH2kahrRg; Path=/; HttpOnly; Secure; SameSite=Strict
XSRF-TOKEN=7lAperG6-yRPsp__p8V4TtZnM49_iyd1apfo; Path=/; Secure; SameSite=Strict
selectedEntity=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
sofyhash=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
sofy.session=; Path=/; HttpOnly; Secure
fromUser=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
redirectURL=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
isMaintenance=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
resetUrl=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
_csrf=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
login-validated=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
request-id: L1w1KrjtZtg7MXs
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
maxage: 3600000
x-cache: CONFIG_NOCACHE
x-azure-ref: 03c2IYwAAAACeN2nbjQTCQbkmevc00hTRT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:03 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/login
200 OK 6.1 kB URL HTTP/2 qa-crh.kpmgsofy.com/login
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5182)
Hash 4b638214f76c8db72d5a0e50c342f7b4
b2f624722bd24d28b1f28c75b340865fcaa05b99
3009ae790283fd3bca2ca55f6d7abdeff015da793a123c114f9b627a87cebe17
GET /login HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=7lAperG6-yRPsp__p8V4TtZnM49_iyd1apfo; sofy.session=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 6090
content-type: text/html; charset=UTF-8
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:26 GMT
accept-ranges: bytes
etag: W/"17ca-1847c1c14f0"
set-cookie: _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU; Path=/; HttpOnly; Secure; SameSite=Strict
XSRF-TOKEN=qDGsIWvD-stAZqludOEdUMzu1dF91lgeJUiw; Path=/; Secure; SameSite=Strict
request-id: 0NVRQjnA7W342Dy
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599974
x-cache: CONFIG_NOCACHE
x-azure-ref: 04M2IYwAAAACk12jWeGbqTJwfra559AliT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:03 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/4b75b3f9148c30f3e7ba.js
200 OK 5.8 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/4b75b3f9148c30f3e7ba.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (12380), with no line terminators
Hash fb6476a9c533d8a7d185b476c038f228
d26d537820e0971848af450d675d15ef109f72ce
9b7a07196e89fef507750236ec655b7d7d62ef5809eb8399ff3f5bd062522a4b
GET /_nuxt/4b75b3f9148c30f3e7ba.js HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=qDGsIWvD-stAZqludOEdUMzu1dF91lgeJUiw; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 5801
content-type: application/javascript; charset=UTF-8
content-encoding: br
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"16a9-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=4CcWoeKg-ltDOA7t5xggKe_gaO3gutiItyTE; Path=/; Secure; SameSite=Strict
request-id: MW280n8meeqC4O2
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599987
x-cache: CONFIG_NOCACHE
x-azure-ref: 04M2IYwAAAADstCqkVZo8Qp8Dt4x+aJHvT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:04 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/60db2d745983f8870d83.js
200 OK 74 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/60db2d745983f8870d83.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65485)
Hash 14e43843d183b9dd9cbcd40f12cec531
b53617c1a52c819e157b1d78ad737e599ecf9d87
73ded055c369a330b4f9225ea27a87e0240f518490ac68eff1518cbd5d767ae4
GET /_nuxt/60db2d745983f8870d83.js HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=qDGsIWvD-stAZqludOEdUMzu1dF91lgeJUiw; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 74058
content-type: application/javascript; charset=UTF-8
content-encoding: br
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"1214a-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=NOo169Zo-3I98qgmmxE5yDZY3UJBjjqta7tU; Path=/; Secure; SameSite=Strict
request-id: bXfIueVGxNDbEwR
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599958
x-cache: CONFIG_NOCACHE
x-azure-ref: 04M2IYwAAAACQjOYZ1U9cRJ6tIpUdekgVT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:04 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/b267bab48003f373521b.js
200 OK 78 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/b267bab48003f373521b.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65485)
Hash e3f3d9e3b0e886a571ab49513c8b7987
be5fd17fb382d7bcd89b3ded78276a5ab3e4d936
e918d6ba2216a7db72876d39cadf8e1801bc59fd4e518bf9749b9666ee64b176
GET /_nuxt/b267bab48003f373521b.js HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=qDGsIWvD-stAZqludOEdUMzu1dF91lgeJUiw; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 78474
content-type: application/javascript; charset=UTF-8
content-encoding: br
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"1328a-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=YgHM6k7p-1vhoel6LxHu8qMhKqbJevNoZcZ0; Path=/; Secure; SameSite=Strict
request-id: sYYdweJQjmd3lUF
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599974
x-cache: CONFIG_NOCACHE
x-azure-ref: 04M2IYwAAAAAQe2lJ5tE1TZ+u/cTSxSesT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:04 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/b9ba96cba013d86cfd82.js
200 OK 646 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/b9ba96cba013d86cfd82.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65485)
Size 646 kB (646376 bytes)
Hash a526a51a2f9636445129504a7d836f6d
d3b4b589ae98aa2b3a4297a365cfd2ccdac1b440
d2bd1d401e21c81f1ffbce40681511491e71c4ee2399086195b998eb5e2b5e3e
GET /_nuxt/b9ba96cba013d86cfd82.js HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=qDGsIWvD-stAZqludOEdUMzu1dF91lgeJUiw; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 646376
content-type: application/javascript; charset=UTF-8
content-encoding: br
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"9dce8-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=MZvAf70q-f1wk4JdK5ZOMtxWj0tE2MeJ26vg; Path=/; Secure; SameSite=Strict
request-id: Kx4LXh6kh5u2uIU
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599988
x-cache: CONFIG_NOCACHE
x-azure-ref: 04M2IYwAAAAA9Bw2hzQiWRq7GYSwDGgcyT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:04 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/favicon.ico
200 OK 1.2 kB URL HTTP/2 qa-crh.kpmgsofy.com/favicon.ico
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 182c717abb29fd99299b401837072bad
83dc38b1cac2d10773251591b3f771284114f421
4b128531c65fa22eb53c93f3caecab048ea35c6bfd60362e66e1840b6cf21659
GET /favicon.ico HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=YgHM6k7p-1vhoel6LxHu8qMhKqbJevNoZcZ0; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 1150
content-type: image/x-icon
etag: W/"47e-g9w4scrC0QdzJRWRs/dxKEEU9CE"
x-powered-by: Express
request-id: l8RKy54UsUNP4qv
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAAA7KD5ojHlGSrAwAW8uu1PcT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:04 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/fd8d30c9332c47152fb7.js
200 OK 6.4 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/fd8d30c9332c47152fb7.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (28249)
Hash 78e382aaffa59f8be558b107bcf1dc68
ef02805f3d49089fa9fa48056423a7e79a4f04e9
302d4058bee87c9f689eb2f1532b180f557e34c59a56203cf8bdd6c1e315b9e1
GET /_nuxt/fd8d30c9332c47152fb7.js HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=YgHM6k7p-1vhoel6LxHu8qMhKqbJevNoZcZ0; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 6372
content-type: application/javascript; charset=UTF-8
content-encoding: br
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"18e4-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=TUZWtbZC-YTTQAmUe5A1gOWcLUr5hHrRDIkU; Path=/; Secure; SameSite=Strict
request-id: y9x0MTDlUnCuoAL
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599975
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAACbkmraDWo5R7PNVVGjBfcLT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:04 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/generateToken?_t=1669909983917
200 OK 6 B URL HTTP/2 qa-crh.kpmgsofy.com/generateToken?_t=1669909983917
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 317de16bfee215df653650e9b04c5ebb
d2cc2f560fe706bdd844ea552fdb378ac8202b2d
16552c2580bbe8b82d3582de9eb3e20ef0e0015937c0b4f5e2bc329368476226
GET /generateToken?_t=1669909983917 HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: TUZWtbZC-YTTQAmUe5A1gOWcLUr5hHrRDIkU
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=TUZWtbZC-YTTQAmUe5A1gOWcLUr5hHrRDIkU; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 6
content-type: application/json; charset=utf-8
expires: 0
etag: W/"6-0swvVg/nBr3YROpVL9s3isggKy0"
set-cookie: XSRF-TOKEN=kIqFHzRf-GZj-UA0E0A4rzVzMyEZSGg-nRW0; Path=/; Secure; SameSite=Strict
request-id: G7w2peiCJBOAkbv
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
maxage: 3600000
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAAA51tKGbp0kT6nqfUWUcgz8T1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/app-insights-key?_t=1669909984002
200 OK 38 B URL HTTP/2 qa-crh.kpmgsofy.com/app-insights-key?_t=1669909984002
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 443950438e607e61d4068408e2a0d0f9
b53a028892020a72324644eddc6d9372534ba28d
58af7f9dbd67791a90643aa2d94be35261313e8a4bc6584966b5e31284121a4f
GET /app-insights-key?_t=1669909984002 HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: kIqFHzRf-GZj-UA0E0A4rzVzMyEZSGg-nRW0
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=kIqFHzRf-GZj-UA0E0A4rzVzMyEZSGg-nRW0; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU; sessionTimeout=1669913584002
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 38
content-type: application/json; charset=utf-8
expires: 0
etag: W/"26-tToCiJICCnIyRkTt3G2TclNLoo0"
set-cookie: XSRF-TOKEN=r5Tf5Kzw-PHl-LoUv2nWuujIy5ovXD-bDlGQ; Path=/; Secure; SameSite=Strict
request-id: kX3l2uQ2ErUmT5M
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
maxage: 3600000
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAADTy6khLmWRRL5LZJzidvp9T1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/api/users/forceLogoutCheck?_t=1669909984065
302 Found 28 B URL HTTP/2 qa-crh.kpmgsofy.com/api/users/forceLogoutCheck?_t=1669909984065
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 0b7f2a5c390c3e89565b9eae391ad462
d9de75af1e13a3520c995febb9fc25087c45ce30
34323d59838e183642b46e19edbd84f1c1311638b5d6bb78d6cfe54bc86255bf
GET /api/users/forceLogoutCheck?_t=1669909984065 HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: r5Tf5Kzw-PHl-LoUv2nWuujIy5ovXD-bDlGQ
Request-Id: |d451fe93d3da439fb0b701cf55247f19.b45703ae69dd4a32
traceparent: 00-d451fe93d3da439fb0b701cf55247f19-b45703ae69dd4a32-01
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=r5Tf5Kzw-PHl-LoUv2nWuujIy5ovXD-bDlGQ; sofy.session=; _csrf=s%3AM3nmjfNQsZKPf0TjYaB_W-go.lQfl6qk2XAB3USeEx6BEIvBYlJY0tSN0aBVfgYgRAfU; sessionTimeout=1669913584046; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 28
content-type: text/plain; charset=utf-8
expires: 0
location: /login
vary: Accept
set-cookie: XSRF-TOKEN=cDyc0RW9-aBaBq2kTDWUPUi5L-8MRMj0mPnY; Path=/; Secure; SameSite=Strict
selectedEntity=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
sofyhash=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
sofy.session=; Path=/; HttpOnly; Secure
fromUser=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
redirectURL=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
isMaintenance=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
resetUrl=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
_csrf=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
login-validated=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
request-id: |d451fe93d3da439fb0b701cf55247f19.b45703ae69dd4a32
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
maxage: 3600000
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAAC8MOlAR+fcSICiwYCSDd2JT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/login
200 OK 6.1 kB URL HTTP/2 qa-crh.kpmgsofy.com/login
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5182)
Hash 4b638214f76c8db72d5a0e50c342f7b4
b2f624722bd24d28b1f28c75b340865fcaa05b99
3009ae790283fd3bca2ca55f6d7abdeff015da793a123c114f9b627a87cebe17
GET /login HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: r5Tf5Kzw-PHl-LoUv2nWuujIy5ovXD-bDlGQ
Request-Id: |d451fe93d3da439fb0b701cf55247f19.b45703ae69dd4a32
traceparent: 00-d451fe93d3da439fb0b701cf55247f19-b45703ae69dd4a32-01
Referer: https://qa-crh.kpmgsofy.com/login
Connection: keep-alive
Cookie: XSRF-TOKEN=cDyc0RW9-aBaBq2kTDWUPUi5L-8MRMj0mPnY; sofy.session=; sessionTimeout=1669913584046; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 6090
content-type: text/html; charset=UTF-8
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:26 GMT
accept-ranges: bytes
etag: W/"17ca-1847c1c14f0"
set-cookie: _csrf=s%3ApUJ5mgXo611kOzhuu23UcIeG.oKu7Me%2F5I%2BVPuegbZxZQgvX1sZ0UdBPrPMOYyzUz4pw; Path=/; HttpOnly; Secure; SameSite=Strict
XSRF-TOKEN=MYJ04U8E-TITyp4Xc2sX3ynXgWWUbPyrnPvU; Path=/; Secure; SameSite=Strict
request-id: |d451fe93d3da439fb0b701cf55247f19.b45703ae69dd4a32
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599963
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAABJUJskK1AMQ7qiR/8d75KhT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/img/48733d1.svg
200 OK 1.3 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/img/48733d1.svg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 5392c02e06c46c8ed774a0731c6d8923
f4d59c254724ce49b410a0618fcaabd36cddf35a
b892cf101675dbc79ed6efc544f68e2a779950ebd43ef5251ac5cf6df5682b85
GET /_nuxt/img/48733d1.svg HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=MYJ04U8E-TITyp4Xc2sX3ynXgWWUbPyrnPvU; sofy.session=; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z; _csrf=s%3ApUJ5mgXo611kOzhuu23UcIeG.oKu7Me%2F5I%2BVPuegbZxZQgvX1sZ0UdBPrPMOYyzUz4pw; ai_session=RHDSwInIXzL/BIZhtWnIZG|1669909984203|1669909984203; sessionTimeout=1669913584172
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
content-length: 1346
content-type: image/svg+xml
content-encoding: br
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"542-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=FopfdDYn-x0VwBOHhwYwo0LtAMlOGN13k7m4; Path=/; Secure; SameSite=Strict
request-id: 612F7RppzJmnC0H
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599947
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAAAjkZA+whh1TbZVQvC84KHvT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/generateToken?_t=1669909984345
200 OK 6 B URL HTTP/2 qa-crh.kpmgsofy.com/generateToken?_t=1669909984345
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 317de16bfee215df653650e9b04c5ebb
d2cc2f560fe706bdd844ea552fdb378ac8202b2d
16552c2580bbe8b82d3582de9eb3e20ef0e0015937c0b4f5e2bc329368476226
GET /generateToken?_t=1669909984345 HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-XSRF-TOKEN: MYJ04U8E-TITyp4Xc2sX3ynXgWWUbPyrnPvU
Request-Id: |d451fe93d3da439fb0b701cf55247f19.0da8bbbae1e74460
traceparent: 00-d451fe93d3da439fb0b701cf55247f19-0da8bbbae1e74460-01
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=MYJ04U8E-TITyp4Xc2sX3ynXgWWUbPyrnPvU; sofy.session=; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z; _csrf=s%3ApUJ5mgXo611kOzhuu23UcIeG.oKu7Me%2F5I%2BVPuegbZxZQgvX1sZ0UdBPrPMOYyzUz4pw; ai_session=RHDSwInIXzL/BIZhtWnIZG|1669909984203|1669909984203; sessionTimeout=1669913584172
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
content-length: 6
content-type: application/json; charset=utf-8
expires: 0
etag: W/"6-0swvVg/nBr3YROpVL9s3isggKy0"
set-cookie: XSRF-TOKEN=Q2s20EAe-LAQO6J_DA5ga0T3OaCGSabpaWMI; Path=/; Secure; SameSite=Strict
request-id: |d451fe93d3da439fb0b701cf55247f19.0da8bbbae1e74460
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
maxage: 3600000
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAAD4U6uePEwfRb6OkvZSUPdPT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/fonts/3ed9575.ttf
200 OK 52 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/fonts/3ed9575.ttf
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 85a5a32fc211c3649ff7ab1bc6ab08e3
9a7e4cdfb989b58d17705cd48df3df52709073e5
3fa06d3385c1d2c99a655e10f4a5e0bfb8652be2ea1b7f9dfe4a818768b642cf
GET /_nuxt/fonts/3ed9575.ttf HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=Q2s20EAe-LAQO6J_DA5ga0T3OaCGSabpaWMI; sofy.session=; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z; _csrf=s%3ApUJ5mgXo611kOzhuu23UcIeG.oKu7Me%2F5I%2BVPuegbZxZQgvX1sZ0UdBPrPMOYyzUz4pw; ai_session=RHDSwInIXzL/BIZhtWnIZG|1669909984203|1669909984203; sessionTimeout=1669913584172
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
content-length: 51990
content-type: font/ttf
content-encoding: br
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"cb16-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=b9kLyHYQ-snBiUQOjITFoUt9th0YkHBDRTmA; Path=/; Secure; SameSite=Strict
request-id: ztWf3cNzJN1yP3a
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599972
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAABVdimjPQZOTqTMQfaCZ1agT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/dad6c8ec985242e662f3.js
200 OK 4.2 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/dad6c8ec985242e662f3.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (18871)
Hash 29619f973d45985387e6dedc4bd6bc7b
00c6bad73dbb16e06e4135d1a4fb291f7cbb5b1e
aceb3092fb62a9d43f7166efa9056ac35d1adbf3bcdc3b5971b9937a188855bc
GET /_nuxt/dad6c8ec985242e662f3.js HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=Q2s20EAe-LAQO6J_DA5ga0T3OaCGSabpaWMI; sofy.session=; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z; _csrf=s%3ApUJ5mgXo611kOzhuu23UcIeG.oKu7Me%2F5I%2BVPuegbZxZQgvX1sZ0UdBPrPMOYyzUz4pw; ai_session=RHDSwInIXzL/BIZhtWnIZG|1669909984203|1669909984203; sessionTimeout=1669913584473
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 4207
content-type: application/javascript; charset=UTF-8
content-encoding: br
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:25 GMT
accept-ranges: bytes
etag: W/"106f-1847c1c1108"
vary: Accept-Encoding
set-cookie: XSRF-TOKEN=Qyj3EPMs-QfOAcL07s3d_KjtiJc-VkpBmYu4; Path=/; Secure; SameSite=Strict
request-id: zeM1rZ0YE5q2oSg
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599976
x-cache: CONFIG_NOCACHE
x-azure-ref: 04s2IYwAAAAAka8aNTGPvT4XvP+7qStYuT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
qa-crh.kpmgsofy.com/_nuxt/img/deb4d04.jpg
200 OK 445 kB URL HTTP/2 qa-crh.kpmgsofy.com/_nuxt/img/deb4d04.jpg
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 4000x2667, components 3\012- data
Size 445 kB (444964 bytes)
Hash deb4d04013e1255ad4c621d95c3876c8
6130aef52ea10ba5ebbf354375526feb937b8a3a
eebf0f9b9a7df8fc8ec12a31c1b3b65a3efe837d37acea71f16e8b10d16c5c57
GET /_nuxt/img/deb4d04.jpg HTTP/1.1
Host: qa-crh.kpmgsofy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/login
Cookie: XSRF-TOKEN=Q2s20EAe-LAQO6J_DA5ga0T3OaCGSabpaWMI; sofy.session=; ai_user=5USrdP1tTSPhat52dV8tHa|2022-12-01T15:53:04.057Z; _csrf=s%3ApUJ5mgXo611kOzhuu23UcIeG.oKu7Me%2F5I%2BVPuegbZxZQgvX1sZ0UdBPrPMOYyzUz4pw; ai_session=RHDSwInIXzL/BIZhtWnIZG|1669909984203|1669909984203; sessionTimeout=1669913584172
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
pragma: no-cache
content-length: 444964
content-type: image/jpeg
expires: 0
last-modified: Tue, 15 Nov 2022 16:25:26 GMT
accept-ranges: bytes
etag: W/"6ca24-1847c1c14f0"
set-cookie: XSRF-TOKEN=4zLJaDHQ-Z4_L9nKQGBy3-eLNYknjTnRbI0g; Path=/; Secure; SameSite=Strict
request-id: oGwvQFHkyC7rwn9
x-xss-protection: 0
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-frame-options: DENY
content-security-policy: default-src 'self';frame-src 'self' www.google.com/recaptcha/ sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;script-src 'self' 'unsafe-inline' 'unsafe-eval' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ www.gstatic.com/recaptcha/ www.google.com/recaptcha/ www.google.com/js/ code.highcharts.com/7.1.3/lib/jspdf.js code.highcharts.com/7.1.3/lib/svg2pdf.js *.googleapis.com/ cdn.jsdelivr.net/;style-src 'self' 'unsafe-inline' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.googleapis.com/ cdn.jsdelivr.net/;font-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ fonts.gstatic.com/ cdn.jsdelivr.net/ data:;img-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/ chart.googleapis.com/ data: blob: *.googleapis.com/;media-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;object-src 'self' sofy-cdn.azureedge.net/ sofycdn2.azureedge.net/ sofycdn.blob.core.windows.net/ cdn.kpmgsofy.com/;connect-src 'self' dc.services.visualstudio.com/v2/track sofy-dev.onelogin.com
maxage: 3599972
x-cache: CONFIG_NOCACHE
x-azure-ref: 04c2IYwAAAACtctAbE5NhRoWrY3Q0xh1NT1NMMjMxMDUwMjAzMDQ5ADk3ZTkwODMyLWU0YjQtNDYwMS05NzFjLWZlN2YyZjlkMjAyNg==
date: Thu, 01 Dec 2022 15:53:05 GMT
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
200 OK 0 B URL HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,sdk-context
Referer: https://qa-crh.kpmgsofy.com/
Origin: https://qa-crh.kpmgsofy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-methods: POST
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 15:53:06 GMT
content-length: 0
X-Firefox-Spdy: h2
dc.services.visualstudio.com/v2/track
200 OK 96 B URL HTTP/2 dc.services.visualstudio.com/v2/track
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash be91dedef75f4c3de01e7048590eefd6
a01d8f8e90cb678298644ba211797cd3194c7cd6
8a621018a41643ab96f1af177a8b4b6c01d9fbde10b6a14227daf2da1a602490
POST /v2/track HTTP/1.1
Host: dc.services.visualstudio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Sdk-Context: appId
Content-Length: 3120
Origin: https://qa-crh.kpmgsofy.com
Connection: keep-alive
Referer: https://qa-crh.kpmgsofy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-ms-session-id: D0086B91-27C1-474B-92AC-8E18EF1F8A91
strict-transport-security: max-age=31536000
access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context
access-control-allow-origin: *
access-control-max-age: 3600
x-content-type-options: nosniff
date: Thu, 01 Dec 2022 15:53:06 GMT
content-length: 96
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f07f254d44ff2fb86ee22cee39ef3eb0
0660a548a491d4a58ca2246f094f0553437c3f61
859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F_ZBWwAOPbEjvMD1ChrgN9QYUyyFYdtRT6CcX6gviowmeinPRgVtnA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:19:21 GMT
age: 41629
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
13.107.219.53
93.184.220.29
13.69.106.215
23.36.77.32