1845555044 | 2024-04-25T17:25:37.509051
80 /
tcp
HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 17:25:37 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87a0088cfc1f4796-DFW
-1623962318 | 2024-04-27T08:33:19.262103
443 /
tcp
HTTP/1.1 200 OK
Date: Sat, 27 Apr 2024 08:33:18 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache,no-store
Expires: -1
Pragma: no-cache
Set-Cookie: TiPMix=24.646917781211762; path=/; HttpOnly; Domain=www.grantthornton.global; Max-Age=3600; Secure; SameSite=None
Set-Cookie: x-ms-routing-name=self; path=/; HttpOnly; Domain=www.grantthornton.global; Max-Age=3600; Secure; SameSite=None
Set-Cookie: EPiNumberOfVisits=1%2C2024-04-27T08%3A33%3A18; expires=Sun, 27 Apr 2025 08:33:18 GMT; path=/; secure; httponly
Set-Cookie: .AspNetCore.Antiforgery.9TtSrW0hzOs=CfDJ8CHBTfL2zZBJmDtkAnxQ5WVVQarpSYjKbd5UEuXAAccyK5j4qCkUH3qveE9KG7lzmO75pSh50CS-CgII67V38I9ON0pSa9YOXqaU69UlF3C2t3NgrXKG9VIV-PZ37G5bpYQdlnh9oh-KhiPmop3_vFM; path=/; secure; samesite=strict; httponly
Set-Cookie: .AspNetCore.Mvc.CookieTempDataProvider=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; secure; samesite=lax; httponly
Set-Cookie: .AspNetCore.Session=CfDJ8CHBTfL2zZBJmDtkAnxQ5WVrCB3h714P4XRT%2BJoJZhX0dspBC2YCjky0Dh8XlAvLvxyw88bWD6uunH%2FbM7bLtroJL1YXt2swj7y7RQgO1wUDW34PBHpbMBoVgkhHNnNC0sp6NGsbCUe0RYiPUZGERCB1gdYzwEGaQqgg3Se5mCmW; path=/; secure; samesite=lax; httponly
Set-Cookie: ARRAffinity=fc7342e06bea26050c79d446c77cb444fb230e01e206b77bf894872cf747168f;Path=/;HttpOnly;Secure;Domain=www.grantthornton.global
Set-Cookie: ARRAffinitySameSite=fc7342e06bea26050c79d446c77cb444fb230e01e206b77bf894872cf747168f;Path=/;HttpOnly;SameSite=None;Secure;Domain=www.grantthornton.global
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000; includeSubDomains
Request-Context: appId=cid-v1:9b5442f9-67c2-44c6-9c50-575327979ec9
Reporting-Endpoints: csp-endpoint="https://sch-gtil01mstr2l7s7sprod.dxcloud.episerver.net/ContentSecurityPolicy/Report/"
Content-Security-Policy: default-src 'self';block-all-mixed-content ; base-uri 'self'; object-src 'none'; script-src 'nonce-39e89514b520443ca2c9a1e6a96b71d6' 'self' https://*.onetrust.com https://cdn.optimizely.com/ https://www.grantthornton.global/ https://www.clarity.ms/ https://script.hotjar.com https://static.hotjar.com https://engage.grantthornton.global https://dl.episerver.net https://maps.googleapis.com https://www.gstatic.com https://www.google.com https://st.getsitecontrol.com/ https://widgets.getsitecontrol.com https://c.evidon.com/ https://tagmanager.google.com/ https://www.googletagmanager.com/ https://polyfill.io https://optimize.google.com https://www.google-analytics.com https://az416426.vo.msecnd.net https://ajax.googleapis.com/ https://*.evidon.com/ https://region1.google-analytics.com/ https://*.googletagmanager.com https://flo.uri.sh/ https://view.ceros.com/; img-src 'self' data: https://*.analytics.google.com https://*.onetrust.com https://*.google-analytics.com/ https://www.grantthornton.mx https://www.grantthornton.is/ https://px.ads.linkedin.com/ https://c.evidon.com/ https://px.ads.linkedin.com https://px4.ads.linkedin.com https://translate.google.com/ https://c.bing.com https://app.getsitecontrol.com/ https://c.clarity.ms/ https://www.gstatic.com/ https://www.clarity.ms/ https://l.evidon.com/ https://c.evidon.com https://l3.evidon.com https://p.adsymptotic.com https://ws.sessioncam.com https://px.ads.linkedin.com https://www.facebook.com https://b.ws.sessioncam.com https://ssl.gstatic.com/ https://syndication.twitter.com https://optimize.google.com https://platform.twitter.com https://pbs.twimg.com https://maps.gstatic.com https://maps.googleapis.com https://www.googletagmanager.com https://i.ytimg.com https://img.youtube.com https://cdn.jotfor.ms/ https://integration-emea.gtil-dxc.com/ https://analytics.marera.net https://script.hotjar.com/ https://www.grantthornton.co.za/ https://www.grantthornton.ca/ https://www.grantthornton.com.vn/ https://www.grantthornton.kr/ https://www.google.com.vn https://www.grantthornton.mk/ https://www.linkedin.com/ https://www.grantthornton.com.pa/ https://*.googletagmanager.com; style-src 'self' 'unsafe-inline' https://tagmanager.google.com/ https://fonts.googleapis.com/ https://optimize.google.com https://platform.twitter.com https://cdnjs.cloudflare.com https://fonts.googleapis.com https://app-lon07.marketo.com/ https://engage.grantthornton.global/; font-src 'self' data: https://static3.avast.com https://use.typekit.net/ https://st.getsitecontrol.com/ https://fonts.gstatic.com https://script.hotjar.com/; frame-src https://www.googletagmanager.com https://l3.evidon.com https://www.paperturn-view.com https://vars.hotjar.com https://a10084069166.cdn.optimizely.com/ https://www.google.com/ https://platform.twitter.com https://www.youtube.com https://optimize.google.com https://w.soundcloud.com https://player.vimeo.com https://www.gstatic.com https://cdn.optimizely.com https://player.cnbc.com/ https://onlinerecruitment.exelsyslive.com/ https://view.ceros.com/ https://flo.uri.sh/ https://app-lon07.marketo.com/ https://engage.grantthornton.global/ https://www.facebook.com/; connect-src 'self' https://*.onetrust.com https://*.google.com https://*.doubleclick.net https://*.googlesyndication.com https://analytics.google.com/ https://digitalwhiskey.matomo.cloud/ https://www.facebook.com/ https://www.facebook.com/tr/ https://surveystats.hotjar.io/ https://vc.hotjar.io/ https://l3.evidon.com https://optoutapi.evidon.com https://extreme-ip-lookup.com https://stats.g.doubleclick.net https://logx.optimizely.com https://dc.services.visualstudio.com https://az416426.vo.msecnd.net https://rum.optimizely.com/ https://www.clarity.ms/ https://b.ws.sessioncam.com https://vars.hotjar.com https://errors.client.optimizely.com https://642-sde-924.mktoresp.com https://in.hotjar.com https://ws.sessioncam.com https://surveystats.hotjar.io/ https://magicbeanlab.com https://l.evidon.com/ https://idx.liadm.com/ https://maps.googleapis.com/ https://*.analytics.google.com/ https://*.google-analytics.com/ https://*.googletagmanager.com wss://ws.hotjar.com/ https://content.hotjar.io/ https://metrics.hotjar.io/ https://px.ads.linkedin.com/; report-uri /ContentSecurityPolicy/Report/; report-to csp-endpoint;
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1; mode=block
Expect-CT: max-age=0, enforce, report-uri="https://example.report-uri.com/r/d/ct/enforce"
Feature-Policy: accelerometer 'none'; camera 'none'; geolocation 'self'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none'
Permissions-Policy: accelerometer=(), camera=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 87ad778bcad1644d-SJC
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:06:c4:8a:3c:5f:67:73:46:ef:5c:0b:e1:30:9e:9e:ea:cc
Signature Algorithm: ecdsa-with-SHA384
Issuer: C=US, O=Let's Encrypt, CN=E1
Validity
Not Before: Mar 10 02:59:26 2024 GMT
Not After : Jun 8 02:59:25 2024 GMT
Subject: CN=www.grantthornton.global
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:3f:10:50:b8:b5:9b:87:c0:d2:55:8c:35:53:1d:
8c:89:7b:c0:5b:63:5d:1d:87:b5:e0:ad:09:33:1a:
3a:82:9b:ed:f3:47:d0:d1:0e:e3:bb:a5:da:f5:48:
66:38:92:b8:e1:95:17:09:4d:f0:4d:4f:99:fd:ca:
30:41:f6:32:33
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
30:D1:0C:C9:4D:FB:73:3E:1E:DB:AD:AA:70:C0:A4:F8:00:3F:19:76
X509v3 Authority Key Identifier:
5A:F3:ED:2B:FC:36:C2:37:79:B9:52:30:EA:54:6F:CF:55:CB:2E:AC
Authority Information Access:
OCSP - URI:http://e1.o.lencr.org
CA Issuers - URI:http://e1.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:www.grantthornton.global
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Mar 10 03:59:26.973 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FB:1D:53:CD:DE:2B:FD:D4:AB:DE:AF:
38:CD:3F:1E:25:7C:6B:12:C2:B3:7D:CF:3B:E1:B2:2B:
91:1B:5E:4F:95:02:20:55:5C:2F:DB:51:83:6C:E8:BC:
80:8A:C4:9D:65:D1:70:DB:41:57:F6:2B:B1:02:72:63:
2A:A3:0F:8D:57:A8:A3
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
Timestamp : Mar 10 03:59:26.991 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:4F:27:F8:E8:27:4F:32:CD:1B:D9:87:DD:
B8:FF:AC:65:BD:70:39:FC:38:AD:E1:57:1E:DE:33:BA:
B9:BD:C9:E4:02:20:2A:26:48:B0:FD:DB:29:FA:F3:E8:
46:29:E1:2C:55:C1:C3:D1:E9:EE:EC:69:7B:2A:75:63:
7A:7E:F4:4A:AE:C9
Signature Algorithm: ecdsa-with-SHA384
Signature Value:
30:66:02:31:00:c0:87:c2:4c:83:e2:73:37:dc:38:ac:56:0d:
fd:db:0a:ae:79:ca:e1:ec:aa:2f:6f:d6:46:6d:99:3f:7f:c6:
3d:d3:0b:5b:44:84:72:92:c6:92:48:4f:cb:fb:fe:9d:61:02:
31:00:ba:eb:74:bd:eb:ee:08:e1:3b:b4:a0:2a:5d:49:52:f9:
17:34:87:55:ef:8a:3f:72:27:16:71:46:05:d5:3d:2d:72:bb:
a0:0c:fe:ad:3e:99:4f:22:68:53:16:3e:e9:de
-499110518 | 2024-04-25T16:32:53.015581
2082 /
tcp
HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 16:32:53 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 879fbb4b5b14e836-DFW
141477257 | 2024-04-25T15:19:39.964844
2083 /
tcp
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 25 Apr 2024 15:19:39 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -
-654566843 | 2024-04-25T16:04:59.365929
2086 /
tcp
HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 16:04:59 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5892
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 879f926f08c29fe1-AMS
13333715 | 2024-04-25T18:47:05.532494
2087 /
tcp
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 25 Apr 2024 18:47:05 GMT
Content-Type: text/html
Content-Length: 155
Connection: close
CF-RAY: -
<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>cloudflare</center>
</body>
</html>
349059256 | 2024-04-25T16:55:02.393290
8080 /
tcp
HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 16:55:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 5894
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 879fdbbfc8a7e52c-DFW
141477257 | 2024-04-25T12:25:47.546250
8443 /
tcp
HTTP/1.1 400 Bad Request
Server: cloudflare
Date: Thu, 25 Apr 2024 12:25:47 GMT
Content-Type: text/html
Content-Length: 655
Connection: close
CF-RAY: -
931523373 | 2024-04-25T15:53:49.793567
8880 /
tcp
HTTP/1.1 403 Forbidden
Date: Thu, 25 Apr 2024 15:53:49 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 16
Connection: close
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 879f82162edf421b-EWR
error code: 1003