Report - mz.rs/

Report Overview

Submitted URL
mz.rs/
IP
67.199.248.13
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2023-02-01 04:36:46
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	95.101.11.115
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
mz.rs	unknown	2013-05-19T17:03:18Z	2023-01-24T03:12:05Z	337 B	414 B	67.199.248.13
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.149.45.114
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	377 B	55 kB	142.250.74.168
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-13T05:22:57Z	3.5 kB	25 kB	151.101.2.137
i.ytimg.com	109	2012-10-03T19:11:04Z	2023-03-13T08:43:01Z	399 B	78 kB	142.250.74.118
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	2.2 kB	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	103 kB	34.120.237.76
www.mazars.com	588235	2017-02-08T14:59:31Z	2023-01-28T02:09:49Z	8.4 kB	5.2 MB	20.216.153.181
use.typekit.net	494	2012-07-05T03:42:39Z	2023-03-13T05:10:17Z	2.1 kB	205 kB	23.36.76.186
scontent-ams2-1.cdninstagram.com	unknown	2015-05-28T11:37:01Z	2023-03-09T13:53:23Z	653 B	140 kB	157.240.247.63
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
static.mazars.com	870259	2017-02-01T08:58:09Z	2023-02-01T05:36:35Z	2.5 kB	534 kB	20.216.153.181
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-13T05:10:18Z	450 B	338 B	23.36.76.186
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	142.250.74.131
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-13T05:22:57Z	1.5 kB	923 B	162.247.241.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-01 04:36:54	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-02-01 04:36:55	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	js-agent.newrelic.com/466.95d4308d-1222.js	6.8 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/466.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash 2b339e4b3b0435de10496ee00de8446a 79f268e9f3a219853b3ac8ef5bb30b46de0d39b3 65d385b4c059f3ff75a6c54cc09fe0fd32ea3a2487a11589285627684b7f7211 Loading...

	www.mazars.com/	338 B	2023-03-12	2023-07-07
Pretty URL www.mazars.com/ IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:25:41 Last Seen2023-07-07 09:37:00 Times Seen2 Hash b456a5e7f1f8f5ae7fa1af5652ff2fec afd0ddf4c7e69e5be0d155391613437c573ba805 2135e3389a14c7d1f50ad81b69bc35782fd069411ea24f34d1bb0d4f04d68283 Loading...

	js-agent.newrelic.com/457.95d4308d-1222.js	4.8 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/457.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash c16abc7fa2e34cbb7baf3e290120ad5a 9490809ae455b4ff698465990466bbc239a8d593 4f1c6499f6a30c6286a56fdf68659e09c40a44ca315ca91fe6a46bc953998dd2 Loading...

	js-agent.newrelic.com/41.95d4308d-1222.js	828 B	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/41.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash 29dd8aef66100e4c69e07fd60fc88b12 782578a4e84457c0a5295be82741ac611a6f522d 334dc34df8944a7cec9a7f00e250fac46113625e9a8c5dd176caf8bcef5bb676 Loading...

	js-agent.newrelic.com/142.95d4308d-1222.js	2.0 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/142.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash 082c9f0a95ce6870ed4d9266fa0e41e5 abd5e82b64ab22da4bfa2de9fa27e8ae27fede92 b658136fadc6fc8c259f717c518f3b5c14fbdf90ea299d36387f9681e772b6ea Loading...

	static.mazars.com/var/mazars/cache/public/javascript/f6e73f6949529495439a07490ce77665_1673962395.js	526 kB	2023-03-12	2023-03-29
Pretty URL static.mazars.com/var/mazars/cache/public/javascript/f6e73f6949529495439a07490ce77665_1673962395.js IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:49:38 Last Seen2023-03-29 21:19:22 Times Seen2 Hash 321fcfdbe57135e96eaa14020b1bebe3 005c51d6d4b2a6cccef9b61e5f7a1a358e9509d0 ce613002fb606c3e2a5f6b7daffaf3cc0638daa56096800c76b62ab377ae14dc Loading...

	www.mazars.com/	52 B	2023-03-12	2023-07-07
Pretty URL www.mazars.com/ IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:04:31 Last Seen2023-07-07 09:37:00 Times Seen5 Hash 8e043e6e59ba6a0e5b0775eab0bba3ec aa4b6b7f62cf4bc3868689545595181197fc2059 a3f8294af2efa7475ebd77ca0ed66ab2ee4d205449118c230b0722a4e86591f6 Loading...

	js-agent.newrelic.com/859.95d4308d-1222.js	6.7 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/859.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen4 Hash b087387593417c0b63259918da3584e3 5a58a1f92613148f4b977236b1a6463934cc1f93 1de1594a678d9dcbd8d9367a11fef1812376de4f23105c2a480609caeb88efec Loading...

	js-agent.newrelic.com/244.95d4308d-1222.js	6.9 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/244.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash a24fd7e602a6b44ab4c03cab69c843c6 57157918ba70de0486aa2f52efcae2ff0c465993 94d7e0d89806dad5b38503db570b3154cdfc886a6fca65cc0897bb4c2c18e648 Loading...

	bam.nr-data.net/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=3126&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&ap=37&be=819&fe=1122&dc=832&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1675226214277,%22n%22:0,%22f%22:410,%22dn%22:413,%22dne%22:540,%22c%22:540,%22s%22:579,%22ce%22:688,%22rq%22:688,%22rp%22:760,%22rpe%22:762,%22dl%22:798,%22di%22:1613,%22ds%22:1650,%22de%22:1657,%22dc%22:1940,%22l%22:1940,%22le%22:1951%7D,%22navigation%22:%7B%7D%7D&fcp=1600&at=TxJVQFgYSU0%3D&jsonp=NREUM.setToken	49 B	2023-03-07	2023-05-22
Pretty URL bam.nr-data.net/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=3126&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&ap=37&be=819&fe=1122&dc=832&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1675226214277,%22n%22:0,%22f%22:410,%22dn%22:413,%22dne%22:540,%22c%22:540,%22s%22:579,%22ce%22:688,%22rq%22:688,%22rp%22:760,%22rpe%22:762,%22dl%22:798,%22di%22:1613,%22ds%22:1650,%22de%22:1657,%22dc%22:1940,%22l%22:1940,%22le%22:1951%7D,%22navigation%22:%7B%7D%7D&fcp=1600&at=TxJVQFgYSU0%3D&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:29 Last Seen2023-05-22 08:03:01 Times Seen332 Hash f34efd1229ae6c1fec6c67f7fa8e20f9 477f40b6d9cb8a306b0aca97462caef4ab26cb6f a83848cf5c3d96caefe490c19e41659609b3691dd4c531cf925016c084d8e1b0 Loading...

	www.mazars.com/	46 kB	2023-03-13	2023-03-13
Pretty URL www.mazars.com/ IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:52:03 Last Seen2023-03-13 14:47:22 Times Seen1 Hash 936f5153a7248bf432bd65bf4f6ead3d 2072ef0ce9333948018e9be2efadfe376d80fe60 490e8a52c4eb400b7087d7d19a865b2bc67c008aa257c0bceacb157d1de18b5b Loading...

	www.googletagmanager.com/gtm.js?id=GTM-Z4MP	147 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-Z4MP IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:52:03 Last Seen2023-03-13 13:52:03 Times Seen1 Hash d4fc0e0d31dc53c8279717cb9eef7cb2 4eed197cad68ec16f49f1de43f000d28270f0303 7b64288d9d9605ce26eaa66253e19833a81bfc46acdc011ec3ba678978d4d03c Loading...

	js-agent.newrelic.com/620.95d4308d-1222.js	3.0 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/620.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash ca9b029ff66dd9146273984d16e20abc 6d97560ee6a096a95b04c91087c2c3a5d59a2f24 f30303e41262ed1ae693c03b4ebd0b8ef04eee3e46163bc5ae376e019905524b Loading...

	js-agent.newrelic.com/736.95d4308d-1222.js	4.7 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/736.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:56 Times Seen5 Hash def1dc24974c16a4e78c08e349b92860 27147ec38011c7b26fd8b2f08a9751db254c828d 221b0e5f79285115e0fbcec94120508a341186223526a9553048046530818612 Loading...

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/jquery.min.js	90 kB	2023-03-13	2024-04-18
Pretty URL www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/jquery.min.js IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:52:03 Last Seen2024-04-18 09:33:15 Times Seen25 Hash 8e28a75680ead210f88ec84bb23c1063 d685226f91e13e99f9182a6f4a01fae68d41dd21 8d0ec2f928bcffbfd34eb20810741f53dd9495ac7f0159d5647a919733a39f17 Loading...

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/animations.js	157 kB	2023-03-12	2023-03-13
Pretty URL www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/animations.js IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:04:31 Last Seen2023-03-13 14:47:22 Times Seen1 Hash bfe52b8672cdf9c7145edc1cde54e529 59f50f1f59abdffc298c6e2ea0106a222dac899f dc4cd03edf4c02130e39d883d2d1bd13b098985187aeeb21766631e182066071 Loading...

	www.mazars.com/	297 B	2023-03-13	2023-07-07
Pretty URL www.mazars.com/ IP 20.216.153.181 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:52:03 Last Seen2023-07-07 09:37:00 Times Seen2 Hash 687427fd35f882bae21e749afb1904a1 c6ea30de175a0fa77df8d11acd0a4372d24bf9ca 15d80d721bfa17d0dbd5a9e08957fc11285e193f5fa8f3286b0f92c7723365f4 Loading...

	js-agent.newrelic.com/569.95d4308d-1222.js	7.5 kB	2023-03-13	2023-05-04
Pretty URL js-agent.newrelic.com/569.95d4308d-1222.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:42:49 Last Seen2023-05-04 15:49:55 Times Seen4 Hash e97726ab932639fed09971b1d682788c 006828b20763e0c2357cb8fedf63b9e8c0440d97 5442d1b4e5503e7bf898d26807bda51d7bdbc22dd34f545d3c3cc91688f98021 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 0ad2ecb1f29007854df2c43fecfec81a	29 B	2023-03-12	2024-04-26
Pretty Observations First Seen2023-03-12 20:00:33 Last Seen2024-04-26 17:48:54 Times Seen11 Hash 0ad2ecb1f29007854df2c43fecfec81a bb96cc6c92df6c07343e0348b494551081efd03c 8ab0e3d5ddf5be4b8c4dd05937db01f37799d273b153fd38345fb1f62dfd8854 Loading...

	#2 Eval - ee96ee0ff39d06ee46967ea0a4f38920	18 B	2023-03-12	2024-04-26
Pretty Observations First Seen2023-03-12 20:00:33 Last Seen2024-04-26 17:48:54 Times Seen12 Hash ee96ee0ff39d06ee46967ea0a4f38920 c9845dff70a7e5a84a3fa809492b79ed7205d595 84492b52082c1892214a926abf2277177e728654043d52ccc5421de3250d13fb Loading...

	#3 Eval - 131234ef281e470acdb8d4d686e0d230	19 B	2023-03-12	2024-04-26
Pretty Observations First Seen2023-03-12 20:00:33 Last Seen2024-04-26 17:48:54 Times Seen11 Hash 131234ef281e470acdb8d4d686e0d230 ff6857e18a2f94655d03f11697056004e644d0f7 12bcfb40473c701ab657dde154c8e364c145365470bb95f387fc2d1560913b20 Loading...

	#4 Eval - 8968e6d216aa62e38a80e768b3e9fcd8	12 B	2023-03-12	2024-04-26
Pretty Observations First Seen2023-03-12 20:00:33 Last Seen2024-04-26 17:48:54 Times Seen10 Hash 8968e6d216aa62e38a80e768b3e9fcd8 976da752c84b3f621cc714c5f1e49ae3f22b3b36 55e5ccfd18460fb0b3fee6c4078508343f02478673dfa1cad44931f3e0db3281 Loading...

HTTP Transactions (66)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7e05c8461bd2dc5a149f71e2c465ea29 705983959c887e243cb55a8a1796757b579ee977 4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11716 Expires: Wed, 01 Feb 2023 07:51:50 GMT Date: Wed, 01 Feb 2023 04:36:34 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 0c35c3ec659d3a26ea97e68d787bb043 d97e3672244efec5b7814f2d8a734cd1a9387854 4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16927 Expires: Wed, 01 Feb 2023 09:18:41 GMT Date: Wed, 01 Feb 2023 04:36:34 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 01 Feb 2023 03:43:24 GMT content-type: application/json age: 3190 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 09ee4b0fe6cf4ca5ed31b24452338d00 7e62b6e20f0d4737f4a8d94f9818a0883027839e 56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6425 Expires: Wed, 01 Feb 2023 06:23:39 GMT Date: Wed, 01 Feb 2023 04:36:34 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: QpUt+eIEAl6aX1GZB7/kwwdfpy2wHkA8/dZGC/IiA1F7kAa1kBl/Job8bd7aCyiIAZ/OvjlZqHs= x-amz-request-id: WP320BH1TPQSCFSH content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 01 Feb 2023 04:22:30 GMT age: 844 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	mz.rs/	67.199.248.13	301 Moved Permanently	58 B
URL HTTP/1.1 mz.rs/ IP 67.199.248.13:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type HTML document, ASCII text Size 58 B (58 bytes) Hash 345b65f65f1f99b09861422636c4aead 705099252392eea6e28af7d27e00f8d5cc25f31f 3eec126330e3158bad63d0e5d215dd56557fee8202c7d4f10963eb1466e1620b HTTP Headers `GET / HTTP/1.1 Host: mz.rs User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Server: nginx Date: Wed, 01 Feb 2023 04:36:34 GMT Content-Type: text/html; charset=utf-8 Content-Length: 58 cache-control: no-cache, no-store, max-age=0, must-revalidate location: https://www.mazars.com/ pragma: no-cache strict-transport-security: max-age=1209600 x-frame-options: DENY Via: 1.1 google, 1.1 google`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:34 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 01 Feb 2023 03:49:05 GMT age: 2850 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	www.mazars.com/	20.216.153.181	200 OK	31 kB
URL HTTP/2 www.mazars.com/ IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (45969), with CRLF, LF line terminators Size 31 kB (30642 bytes) Hash 5efb3d8b7afdd3a1dcd18c12e6863604 6f01813c5f181e4b4ae909e31fb9b5f1537934e8 7ee679446c51365ca80e8ee580c0ba96eab020775b155a9a0f907bfca9066b0d HTTP Headers `GET / HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: text/html; charset=utf-8 content-length: 30642 cache-control: public, must-revalidate, proxy-revalidate, max-age=600 expires: Wed, 01 Feb 2023 04:46:31 GMT served-by: www.mazars.com content-language: en set-cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a; path=/; secure; HttpOnly x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Wed, 01 Feb 2023 04:36:31 GMT vary: Accept-Encoding content-encoding: gzip x-varnish: 4227602 4227582 age: 4 x-cache: HIT x-cache-hits: 1 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/mazars-logo.png	20.216.153.181	200 OK	14 kB
URL HTTP/2 www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/mazars-logo.png IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type PNG image data, 538 x 84, 8-bit/color RGBA, non-interlaced\012- data Size 14 kB (14077 bytes) Hash aab86fac1a774a979f78f0eb76ec5014 0d93bce00af40807988235599e31946acb37942a ae42e3a29996406063c37fa1dd93c8653441d149ad3bc4a5941ea97837589bbe HTTP Headers GET /extension/ezmazars_rwdesign/design/mazars2020/images/mazars-logo.png HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: image/png content-length: 14077 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 20 Oct 2020 18:06:59 GMT etag: "36fd-5b21e18d616c0" cache-control: public, max-age=2592000 x-varnish: 4227604 755152 age: 2338 x-cache: HIT x-cache-hits: 260 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a 86f640e134a741a0f906a8e3a0f5c6659dd0e394 a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E" Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10497 Expires: Wed, 01 Feb 2023 07:31:32 GMT Date: Wed, 01 Feb 2023 04:36:35 GMT Connection: keep-alive`

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/praxity.svg	20.216.153.181	200 OK	3.1 kB
URL HTTP/2 www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/praxity.svg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (8220), with no line terminators Size 3.1 kB (3115 bytes) Hash 7d3c567024a300997d01d2c8a1565e2a a01fa4a0695d59272f5026ddb7277e01e25fa442 fe9b23fd726ee5f5f44378addc7e12931b0ace5a4d8b54267b53a2a18f56db58 HTTP Headers `GET /extension/ezmazars_rwdesign/design/mazars2020/images/praxity.svg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: image/svg+xml content-length: 3115 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 20 Oct 2020 18:08:23 GMT etag: "201c-5b21e1dd7d3c0-gzip" vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * cache-control: public, max-age=2592000 x-varnish: 2851895 3703175 age: 1672 x-cache: HIT x-cache-hits: 8 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/jquery.min.js	20.216.153.181	200 OK	31 kB
URL HTTP/2 www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/jquery.min.js IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size 31 kB (31136 bytes) Hash d710bf75c61767ccf887cf65944d5421 cb48580c0f80ae8f692b42266a9f17fb2b9d529a 304faadce98a7b7f1e7445d4222d3a85124605b9db068a38c680859663bbee02 HTTP Headers `GET /extension/ezmazars_rwdesign/design/mazars2020/javascript/jquery.min.js HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: application/javascript content-length: 31136 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 17 Jan 2023 09:11:17 GMT etag: "15f38-5f27215139b70-gzip" vary: Accept-Encoding content-encoding: gzip cache-control: max-age=432000 expires: Mon, 06 Feb 2023 04:08:43 GMT x-varnish: 4227606 852449 age: 1672 x-cache: HIT x-cache-hits: 11 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	static.mazars.com/var/mazars/cache/public/stylesheets/bd4f9093fdbb7dc6b8fba50b06230307_1673962020_all.css	20.216.153.181	200 OK	89 kB
URL HTTP/2 static.mazars.com/var/mazars/cache/public/stylesheets/bd4f9093fdbb7dc6b8fba50b06230307_1673962020_all.css IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (65532) Size 89 kB (88798 bytes) Hash 400e90d9f2a676a77e2928a6c392fdc2 21320c9ca05454f1905215e095e739a87b16f9c3 7f503b28a11fe2348c2ffdd35e8fc52b5b2ce540b0e87c276b454dc20f0297f9 HTTP Headers `GET /var/mazars/cache/public/stylesheets/bd4f9093fdbb7dc6b8fba50b06230307_1673962020_all.css HTTP/1.1 Host: static.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: text/css content-length: 88798 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 17 Jan 2023 13:27:01 GMT etag: "822b4-5f275a7b022cc-gzip" vary: Accept-Encoding content-encoding: gzip cache-control: max-age=432000 expires: Mon, 06 Feb 2023 04:15:09 GMT x-varnish: 4227608 2097903 age: 1286 x-cache: HIT x-cache-hits: 81 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/animations.js	20.216.153.181	200 OK	62 kB
URL HTTP/2 www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/javascript/animations.js IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (35893), with LF, NEL line terminators Size 62 kB (62299 bytes) Hash 7de46df35742d56b40e521c532e5722b 80a89b88cdca4e01c1417cb91ddaa5bfecc928ea 54cfe6c4e36985ba716115927fa11db666066a2aa4e0aa722215e1f04c3cf3ac HTTP Headers `GET /extension/ezmazars_rwdesign/design/mazars2020/javascript/animations.js HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: application/javascript content-length: 62299 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 17 Jan 2023 13:33:15 GMT etag: "26532-5f275bdfa075a-gzip" vary: Accept-Encoding content-encoding: gzip cache-control: max-age=432000 expires: Mon, 06 Feb 2023 04:08:43 GMT x-varnish: 2851897 2097241 age: 1672 x-cache: HIT x-cache-hits: 11 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	use.typekit.net/anb0jug.css	23.36.76.186	200 OK	687 B
URL HTTP/2 use.typekit.net/anb0jug.css IP 23.36.76.186:0 ASN #20940 Akamai International B.V. File type Unicode text, UTF-8 text, with very long lines (516) Size 687 B (687 bytes) Hash 3309b0c6eca2a3af557c8f7289dd499d 188132cc12f2745caa716028ad8de1d2ae7bfb75 b0ec2429fc187f7e73e63b53e21ce828a3d530de61fa2edfb57f7984cfe39297 HTTP Headers `GET /anb0jug.css HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx content-type: text/css;charset=utf-8 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; cache-control: private, max-age=600, stale-while-revalidate=604800 timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin content-encoding: gzip content-length: 687 date: Wed, 01 Feb 2023 04:36:35 GMT X-Firefox-Spdy: h2`

	static.mazars.com/var/mazars/cache/public/javascript/f6e73f6949529495439a07490ce77665_1673962395.js	20.216.153.181	200 OK	174 kB
URL HTTP/2 static.mazars.com/var/mazars/cache/public/javascript/f6e73f6949529495439a07490ce77665_1673962395.js IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (29355), with LF, NEL line terminators Size 174 kB (174144 bytes) Hash 2a16a5ea9542c342401e989b9a9c74c0 547e0f27ae091babd3c82fe7fc42b1e03cc7f67a 5373f7114621075f3591f606588a4387ac6309a439efa5060ec814465474f1d9 HTTP Headers `GET /var/mazars/cache/public/javascript/f6e73f6949529495439a07490ce77665_1673962395.js HTTP/1.1 Host: static.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: application/javascript content-length: 174144 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 17 Jan 2023 13:33:16 GMT etag: "80778-5f275be05efbb-gzip" vary: Accept-Encoding content-encoding: gzip cache-control: max-age=432000 expires: Mon, 06 Feb 2023 03:57:20 GMT x-varnish: 2851899 330055 age: 2355 x-cache: HIT x-cache-hits: 146 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	p.typekit.net/p.css?s=1&k=anb0jug&ht=tk&f=34693.34697.34700&a=88458973&app=typekit&e=css	23.36.76.186	200 OK	5 B
URL HTTP/2 p.typekit.net/p.css?s=1&k=anb0jug&ht=tk&f=34693.34697.34700&a=88458973&app=typekit&e=css IP 23.36.76.186:0 ASN #20940 Akamai International B.V. File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers `GET /p.css?s=1&k=anb0jug&ht=tk&f=34693.34697.34700&a=88458973&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Thu, 28 Jul 2022 22:24:50 GMT etag: "62e30cb2-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:35 GMT X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c004ef398fc2138876eac9e202e6e7c9 9b695108fe043113ee8dc3369be58234f1a73323 ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:35 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	54.149.45.114	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.149.45.114:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: /IfSBwMMwl1VSiEnYLdyUQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: sf7HgvyxzA9mB1UnRi0ksqp8ozo=`

	www.googletagmanager.com/gtm.js?id=GTM-Z4MP	142.250.74.168	200 OK	54 kB
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-Z4MP IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (6275) Size 54 kB (54361 bytes) Hash eee194ac67b3defe610380ee30d9d419 9f8a900f4d53e106ad1b91c2d42374df4015c1e8 1f31af77c7b5253e1a5b4f87ec7c58aaa2d465e8442f38292c33c10762621afd HTTP Headers `GET /gtm.js?id=GTM-Z4MP HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 01 Feb 2023 04:36:35 GMT expires: Wed, 01 Feb 2023 04:36:35 GMT cache-control: private, max-age=900 last-modified: Wed, 01 Feb 2023 03:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 54361 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	use.typekit.net/af/58984a/00000000000000003b9b40fb/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n3&v=3	23.36.76.186	200 OK	71 kB
URL HTTP/2 use.typekit.net/af/58984a/00000000000000003b9b40fb/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n3&v=3 IP 23.36.76.186:0 ASN #20940 Akamai International B.V. File type Web Open Font Format (Version 2), CFF, length 70804, version 1.0\012- data Size 71 kB (70804 bytes) Hash 4428d6bb91314ef6c0b527462c279de0 25c3fca13f4cbf6d3dac26ac463b9645b32deb6e 513e522df6310473e4c7b58d193d5ff00c3bbd0373fd6e85e802d323ed73aeed HTTP Headers GET /af/58984a/00000000000000003b9b40fb/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n3&v=3 HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.mazars.com Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx content-type: application/font-woff2 content-length: 70804 etag: "efa4f13ed971b200cc4d50ef0d1233460c980f29" timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin cache-control: public, max-age=31536000 date: Wed, 01 Feb 2023 04:36:35 GMT X-Firefox-Spdy: h2`

	use.typekit.net/af/6e8f0a/00000000000000003b9b40ff/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n5&v=3	23.36.76.186	200 OK	71 kB
URL HTTP/2 use.typekit.net/af/6e8f0a/00000000000000003b9b40ff/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n5&v=3 IP 23.36.76.186:0 ASN #20940 Akamai International B.V. File type Web Open Font Format (Version 2), CFF, length 70676, version 1.0\012- data Size 71 kB (70676 bytes) Hash 9de1ec4aecc4335df2045bda76af682d 17f5605673f1cdc7bffc3e76347090f0508f837f e7a56aed7f4812e801442cb33117a6532d8d8bc2b9028bcc4a5a88233ab97949 HTTP Headers GET /af/6e8f0a/00000000000000003b9b40ff/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n5&v=3 HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.mazars.com Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx content-type: application/font-woff2 content-length: 70676 etag: "7a7453652706280a4e7ce2d81db407b37c2d9fe1" timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin cache-control: public, max-age=31536000 date: Wed, 01 Feb 2023 04:36:35 GMT X-Firefox-Spdy: h2`

	www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/news-and-insights/esg-report-where-are-you-on-the-journey/57913303-1-eng-GB/ESG-report-where-are-you-on-the-journey_home_slider.jpg	20.216.153.181	200 OK	380 kB
URL HTTP/2 www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/news-and-insights/esg-report-where-are-you-on-the-journey/57913303-1-eng-GB/ESG-report-where-are-you-on-the-journey_home_slider.jpg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x900, components 3\012- data Size 380 kB (380141 bytes) Hash 2a41f405cbfb747e91621e4c4b69246c 1e610f80ed06174f3e7eb62a36ca1ffa04a9b17f 5e2e8367a288a10c2f5a059ca4c78f2239b5f1e1c78a25a764f586ecdea6309b HTTP Headers GET /var/mazars/storage/images/media/global-contents/mazars.com/news-and-insights/esg-report-where-are-you-on-the-journey/57913303-1-eng-GB/ESG-report-where-are-you-on-the-journey_home_slider.jpg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: image/jpeg content-length: 380141 served-by: www.mazars.com x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 29 Nov 2022 19:35:15 GMT etag: "1669750515-380141" cache-control: public, max-age=31536000, immutable x-varnish: 4227610 262867 age: 9298 x-cache: HIT x-cache-hits: 25 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c004ef398fc2138876eac9e202e6e7c9 9b695108fe043113ee8dc3369be58234f1a73323 ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:35 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	static.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/fa-light-300.woff2	20.216.153.181	200 OK	190 kB
URL HTTP/2 static.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/fa-light-300.woff2 IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Web Open Font Format (Version 2), TrueType, length 190440, version 331.524\012- data Size 190 kB (190440 bytes) Hash 68c2f74f76d4236722607d6eeb8b105d 0f2c00f00ee101d7a976241f41c2472fcd373b19 9a8ed4a9ae2e4bf2af86d128b59c0c65e4992b3181e73851ff7d9cdca3833586 HTTP Headers GET /extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/fa-light-300.woff2 HTTP/1.1 Host: static.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.mazars.com Connection: keep-alive Referer: https://static.mazars.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: font/woff2 content-length: 190440 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 20 Oct 2020 18:06:59 GMT etag: "2e7e8-5b21e18d616c0" access-control-allow-origin: * cache-control: public, max-age=2592000 x-varnish: 2851901 1999196 age: 1265 x-cache: HIT x-cache-hits: 77 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	static.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/fa-brands-400.woff2	20.216.153.181	200 OK	77 kB
URL HTTP/2 static.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/fa-brands-400.woff2 IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Web Open Font Format (Version 2), TrueType, length 76636, version 331.524\012- data Size 77 kB (76636 bytes) Hash a0f6b35c2b55babc93cb9b15791a1d4c bd5cea4fa49feb29a336ee8623b46f8eb5c235b3 80c7d8d88a91688aa18a1ce39ec33e15ac5e1cad7c7be1c5fa3c403f34f1b53c HTTP Headers GET /extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/fa-brands-400.woff2 HTTP/1.1 Host: static.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.mazars.com Connection: keep-alive Referer: https://static.mazars.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: font/woff2 content-length: 76636 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 20 Oct 2020 18:06:59 GMT etag: "12b5c-5b21e18d616c0" access-control-allow-origin: * cache-control: public, max-age=2592000 x-varnish: 4227612 3802910 age: 2354 x-cache: HIT x-cache-hits: 129 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	static.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/icomoon.ttf	20.216.153.181	200 OK	1.3 kB
URL HTTP/2 static.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/icomoon.ttf IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data Size 1.3 kB (1300 bytes) Hash 132f68a1efa22114228f8df6f7356bcf 5484f498acbf7e5080e4c145c0ee6c3bffa6faae d3e7d75a2d5890386a0289cc10ecced61cac65f36853c25fca43e20c4553691c HTTP Headers GET /extension/ezmazars_rwdesign/design/mazars2020/stylesheets/fonts/icomoon.ttf HTTP/1.1 Host: static.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.mazars.com Connection: keep-alive Referer: https://static.mazars.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:35 GMT content-type: application/font-sfnt content-length: 1300 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Mon, 11 Apr 2022 15:45:33 GMT etag: "514-5dc62d5a7c140" access-control-allow-origin: * cache-control: public, max-age=2592000 x-varnish: 2851903 722828 age: 2354 x-cache: HIT x-cache-hits: 121 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	use.typekit.net/af/261c77/00000000000000003b9b4101/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n6&v=3	23.36.76.186	200 OK	61 kB
URL HTTP/2 use.typekit.net/af/261c77/00000000000000003b9b4101/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n6&v=3 IP 23.36.76.186:0 ASN #20940 Akamai International B.V. File type Web Open Font Format (Version 2), CFF, length 61120, version 1.0\012- data Size 61 kB (61120 bytes) Hash 3c999435cdfe94f70501ff02385a44a4 ee86799d0fb012f8baae42cc10ab8531172425bd cd799a85857c6a93d4159f1c821f29ae2c29eb33f43b12c55efa1feff933ae8d HTTP Headers GET /af/261c77/00000000000000003b9b4101/27/l?primer=f592e0a4b9356877842506ce344308576437e4f677d7c9b78ca2162e6cad991a&fvd=n6&v=3 HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.mazars.com Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK server: nginx content-type: application/font-woff2 content-length: 61120 etag: "0a460c79ff22a47eb6045e1a879b4d9a2fccd22e" timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin cache-control: public, max-age=31536000 date: Wed, 01 Feb 2023 04:36:35 GMT X-Firefox-Spdy: h2`

	www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/illustrations/vignettes-news/vignette-growing-with-purpose/56829454-3-eng-GB/vignette-Growing-with-purpose_home_block.jpg	20.216.153.181	200 OK	76 kB
URL HTTP/2 www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/illustrations/vignettes-news/vignette-growing-with-purpose/56829454-3-eng-GB/vignette-Growing-with-purpose_home_block.jpg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 444x250, components 3\012- data Size 76 kB (76288 bytes) Hash ce1a0a4acb7f25d5b7cccced7d26e0ab 7cbf2957e7a61f64d7f0dc9b9f579278b24b5e52 3b7a3019321b08db7800886f314abcfd53f82b1b37d88b8d03b9432199da65d3 HTTP Headers GET /var/mazars/storage/images/media/global-contents/mazars.com/illustrations/vignettes-news/vignette-growing-with-purpose/56829454-3-eng-GB/vignette-Growing-with-purpose_home_block.jpg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/jpeg content-length: 76288 served-by: www.mazars.com x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Thu, 12 May 2022 15:00:30 GMT etag: "1652367630-76288" cache-control: public, max-age=31536000, immutable x-varnish: 2851907 458886 age: 9299 x-cache: HIT x-cache-hits: 23 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16215 Expires: Wed, 01 Feb 2023 09:06:51 GMT Date: Wed, 01 Feb 2023 04:36:36 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16215 Expires: Wed, 01 Feb 2023 09:06:51 GMT Date: Wed, 01 Feb 2023 04:36:36 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC" Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16215 Expires: Wed, 01 Feb 2023 09:06:51 GMT Date: Wed, 01 Feb 2023 04:36:36 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg	34.120.237.76	200 OK	6.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.8 kB (6773 bytes) Hash d2189ff7eee65e0fde9be79c994b1d1e c82caabf73415755643b9ab874364162e798f58c f0d08ab954f728a73a30d22c874019789d55b64a6160d5dafe4d08249f2e9ed4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6773 x-amzn-requestid: b3b6b388-dd50-4a4d-83e0-219b0d285f4c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foee_GcdoAMFRWg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9aac6-286883827020ff9a1412030c;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 23:56:54 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 59jJ-7FGO_UqZi7pUGx6h9imXp1a5bOeAbKFkDQBC91qQ2lnyyl11w== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 00:18:23 GMT etag: "c82caabf73415755643b9ab874364162e798f58c" content-type: image/jpeg age: 15493 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5583 bytes) Hash fec00239dceb510f051645ae93dac5f2 6524837e65b070341f9c8f4589492876ae293f17 d00272557742c57d084ab7e46b9b1722b28b869ae9c63e2169e7124e5107c009 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a7557cc-bf07-438f-8710-ba1b44e30270.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5583 x-amzn-requestid: f37b4455-c9fb-46e4-a287-f40c1138a77a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fflQWGqCIAMFvjA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d61c02-01d34b0d3a9a0101555081f5;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 07:10:58 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: KTfQ_pc9OU0WnnQlmhjYlFAInn2Cwz6xNGtjL3FtP5XJX8vHTidkoA== via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 07:37:27 GMT age: 75549 etag: "6524837e65b070341f9c8f4589492876ae293f17" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F352eebeb-36ab-4e45-818a-3f8bb7f7e41f.jpeg	34.120.237.76	200 OK	6.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F352eebeb-36ab-4e45-818a-3f8bb7f7e41f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.2 kB (6189 bytes) Hash eeee3f44ebd0980444f962d3936c6ec6 27f6fc214176af3a237e45022d7240123ab36f8c 255c54650fdef5af9d4f3f8ee5d25f8cf3b3b6e755f41cf5f7758e3ef96b7bac HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F352eebeb-36ab-4e45-818a-3f8bb7f7e41f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6189 x-amzn-requestid: 6901e757-7950-4e70-92a9-212e91dda392 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fflm0EO1IAMFyvA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d61c91-52ad7e6b3563cc46184f1a54;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 07:13:21 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: c24ZZ4IMp1Sj8mi1dOP5055neiJh4aShggwtjujZoP-TfwP_4oy7lQ== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 07:26:25 GMT age: 76211 etag: "27f6fc214176af3a237e45022d7240123ab36f8c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg	34.120.237.76	200 OK	15 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 15 kB (14809 bytes) Hash 1ad49e3ca0f9935c7ff8f922039e5864 6382ee41cb26e42293e1ba5d9f0d3af64ddb672c 7a838e4e1aff60581fbf939920955ea67dae8fb3fa4e31572787c773404d071e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3e99cd9-0681-47a5-bd03-80ff73a169b8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 14809 x-amzn-requestid: fc920367-4bb1-40fd-9f1d-1d50b27cfc77 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaXEQEoAMF3Zw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-0f70e0252fc3a3e5248bb372;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 8SGqBRt27x1A3p1Z55UzPW8myS3BPu1ows_X76xLB8KY5xNnfs1pUw== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:45:15 GMT age: 24681 etag: "6382ee41cb26e42293e1ba5d9f0d3af64ddb672c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8542 bytes) Hash 85cde231b700eec450e0611b97742a43 c2c6279d74efdcceb319d6943cbcb9d1d1b686ca d52297e17f93932aa7c99ae734d4b68f3b9b09b9938db95ecc96bac9f3bb588c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0378a78-c173-4036-ab09-812b1651c606.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8542 x-amzn-requestid: ad485963-7e2e-410d-ad1c-6386fb738f18 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaVHXcoAMFuhw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-12d7e4502d1fc1511b6f2260;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: M1OD8v_jLlitIjUwxyZSke4kBfIFy0C_tbDQAHe5iDBrm_Fha7uwFg== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:51:28 GMT etag: "c2c6279d74efdcceb319d6943cbcb9d1d1b686ca" content-type: image/jpeg age: 24308 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif	34.120.237.76	200 OK	45 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif IP 34.120.237.76:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 296 x 148\012- data Size 45 kB (44860 bytes) Hash 54d9e8efcff3cc7fa309dc41e89c2a26 fa1cd58cf243d18f360e4394a02bee994e738c0a 4dd37eec5c27d911c3193c7ba08c10a8ec2526eac48c9b6a2a4ec49502cf189a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a36c4fb-50d9-4aa0-bfa2-db52c0bc2f9a.gif HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 44860 x-amzn-requestid: 318e5c01-c024-4c5e-8422-e6cba20b8dc2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foJaTEeBoAMFesA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9890e-4b775cdc759aac341f2aff9a;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vmPt8MLY6RsliPiMKcbnJ6jGjfuc8LXspyaqEIQiExnxnPOXIWDhqA== via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Tue, 31 Jan 2023 21:51:26 GMT age: 24310 etag: "fa1cd58cf243d18f360e4394a02bee994e738c0a" content-type: image/gif cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.mazars.com/var/mazars/storage/original/video/d4bfe517acfa1fbf7434583e2143ee83.webm	20.216.153.181	206 Partial Content	3.4 MB
URL HTTP/2 www.mazars.com/var/mazars/storage/original/video/d4bfe517acfa1fbf7434583e2143ee83.webm IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type WebM\012- EBML file, creator webmB\20\012- data Size 3.4 MB (3415121 bytes) Hash a0d0396212cfefff3936da3bf03f0f8e d06f54f602bd6003a18d2107c67f9b86f9f959fd 2f184b85faebd06f4a859ad3771422e401f1578b6a0c500e57f463bf46f0952a HTTP Headers GET /var/mazars/storage/original/video/d4bfe517acfa1fbf7434583e2143ee83.webm HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: video/webm,video/ogg,video/;q=0.9,application/ogg;q=0.7,audio/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: video Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 206 Partial Content server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: video/webm content-length: 3415121 served-by: www.mazars.com expires: Thu, 02 Feb 2023 01:58:06 GMT x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 29 Nov 2022 19:10:45 GMT etag: "1669749045-3415121" cache-control: public, max-age=31536000, immutable x-varnish: 2982183 327737 age: 9510 x-cache: HIT x-cache-hits: 28 x-front: front1 accept-ranges: bytes content-range: bytes 0-3415120/3415121 X-Firefox-Spdy: h2

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/favicons/favicon.ico	20.216.153.181	200 OK	1.2 kB
URL HTTP/2 www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/favicons/favicon.ico IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size 1.2 kB (1150 bytes) Hash 5b6218f8703c6b7013c5511f12eb719e b014c4ff3b704179a0c0bbfaa535d3842821d2bd a5fd40af84b925cb1ef874b70b0b49823e66a4bc69bfdb837adb6924759d8f62 HTTP Headers GET /extension/ezmazars_rwdesign/design/mazars2020/images/favicons/favicon.ico HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/vnd.microsoft.icon content-length: 1150 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 20 Oct 2020 18:08:22 GMT etag: "47e-5b21e1dc89180" cache-control: public, max-age=2592000 x-varnish: 2982188 33727 age: 9270 x-cache: HIT x-cache-hits: 20 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/favicons/apple-icon-180x180.png	20.216.153.181	200 OK	5.3 kB
URL HTTP/2 www.mazars.com/extension/ezmazars_rwdesign/design/mazars2020/images/favicons/apple-icon-180x180.png IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 5.3 kB (5258 bytes) Hash 528bba0a66ee37db58a8c0f21662b4f1 4e5257b00b0e0df69826647f4375676a3c2483ef 6cecd3623f29dd1995cb272ca95a27e43838e6bdc25220e74c153a2c290d70e6 HTTP Headers GET /extension/ezmazars_rwdesign/design/mazars2020/images/favicons/apple-icon-180x180.png HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/png content-length: 5258 x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Tue, 20 Oct 2020 18:08:22 GMT etag: "148a-5b21e1dc89180" cache-control: public, max-age=2592000 x-varnish: 2851909 98497 age: 9820 x-cache: HIT x-cache-hits: 6 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	www.mazars.com/mazarsAjax/social_wall/dc45aa65b0f0c743cd84830f7ee5473b	20.216.153.181	200 OK	1.2 kB
URL HTTP/2 www.mazars.com/mazarsAjax/social_wall/dc45aa65b0f0c743cd84830f7ee5473b IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with very long lines (573) Size 1.2 kB (1244 bytes) Hash 9dfb26e10361ed1ab6663ec975fdd2f6 31ffafaadeba7ed7c8c03b173738e76d78b9f8c9 c2c1bbe7b0ee1e27c3b90fbc036c3428fdcfaa47196861a7c04c17625ba77f42 HTTP Headers GET /mazarsAjax/social_wall/dc45aa65b0f0c743cd84830f7ee5473b HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-NewRelic-ID: UwMPWF5XGwUBXVNXAQM= X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: text/html; charset=utf-8 content-length: 1244 served-by: www.mazars.com content-language: en expires: Thu, 19 Nov 1981 08:52:00 GMT cache-control: no-store, no-cache, must-revalidate x-newrelic-app-data: PxQAVF5aAAcTUlBbBQQBVEYdFGQHBDcQUQxLA1tMXV1dORY0QwhvTTgZQQAUPxdERxM9TVpQTQcWQmocCwgHB0hMSApIGhgCHVUJUQFRH1JKBw5TXlUUHgFIQ1YHCVYCUAQPBlQEUFNRAwlAFF5VXkAAZA== set-cookie: eZSESSID=mtec93l92sto0alccflia8tnh1; path=/ x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Wed, 01 Feb 2023 04:32:02 GMT vary: Accept-Encoding content-encoding: gzip x-varnish: 2851911 4423874 age: 274 x-cache: HIT x-cache-hits: 1 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2

	js-agent.newrelic.com/859.95d4308d-1222.js	151.101.2.137	200 OK	3.0 kB
URL HTTP/2 js-agent.newrelic.com/859.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (6657), with no line terminators Size 3.0 kB (2975 bytes) Hash 364ac85aef21ab784eeec8f55116dff7 82089547d57defc88e114832b7eb9919a8876e31 255295be519de9a2d1040b1c547c25756b63310e2d7234bcf252ed41d5278c0b HTTP Headers `GET /859.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: PAOkWJ6WiOdnSUVZHZQv79Edy7uPwU81uM9fUJQx6T8UpQupKV3O9whnAR+3HGoYTBPmehtRe7k= x-amz-request-id: WFN4FJZ1XN6DZ8EG last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "b087387593417c0b63259918da3584e3" x-amz-version-id: GtNmis6Y3zB4SbtciuRtabFzp3T7wBIy content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 2153 x-timer: S1675226197.097021,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 2975 X-Firefox-Spdy: h2

	www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/illustrations/webpage-image-1600-900/57780291-1-eng-GB/Webpage-image-1600-900_home_slider.jpg	20.216.153.181	200 OK	300 kB
URL HTTP/2 www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/illustrations/webpage-image-1600-900/57780291-1-eng-GB/Webpage-image-1600-900_home_slider.jpg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1600x900, components 3\012- data Size 300 kB (299467 bytes) Hash 09a725c70eed25ec166587fc52ab75b5 6bf2da4e92f2dc5b0df2981c9b9d2caf5cf89f80 83980a82f97699ca41f0ca8fba50e3b3d32de5ab322d5b33fbf6a014cc04fe77 HTTP Headers GET /var/mazars/storage/images/media/global-contents/mazars.com/illustrations/webpage-image-1600-900/57780291-1-eng-GB/Webpage-image-1600-900_home_slider.jpg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/jpeg content-length: 299467 served-by: www.mazars.com x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Wed, 09 Nov 2022 10:04:34 GMT etag: "1667988274-299467" cache-control: public, max-age=31536000, immutable x-varnish: 2982190 33645 age: 9295 x-cache: HIT x-cache-hits: 19 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/news-and-insights/myths-and-barriers-preventing-the-progression-of-women-home/57638073-1-eng-GB/Myths-and-barriers-preventing-the-progression-of-women-home_home_slider.jpg	20.216.153.181	200 OK	225 kB
URL HTTP/2 www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/news-and-insights/myths-and-barriers-preventing-the-progression-of-women-home/57638073-1-eng-GB/Myths-and-barriers-preventing-the-progression-of-women-home_home_slider.jpg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1350x900, components 4\012- data Size 225 kB (225021 bytes) Hash d77e7f212fcf0629af25045c68db3570 859023604033e184007dcbb1a095a7a8483d3845 30a1bbd0adf156301469776d318d11a0ab6c690412d30bd07dd6ae9522e30c42 HTTP Headers GET /var/mazars/storage/images/media/global-contents/mazars.com/news-and-insights/myths-and-barriers-preventing-the-progression-of-women-home/57638073-1-eng-GB/Myths-and-barriers-preventing-the-progression-of-women-home_home_slider.jpg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/jpeg content-length: 225021 served-by: www.mazars.com x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Wed, 19 Oct 2022 18:52:14 GMT etag: "1666205534-225021" cache-control: public, max-age=31536000, immutable x-varnish: 2851913 262878 age: 9295 x-cache: HIT x-cache-hits: 19 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 4ed1ec30d5bc342dcebe6cbc214b6755 9e4930daeefa97ffbce3609eb7473b9fd3208f20 aeb622d350b9ba797adac5f479561569c7884f3a0e887a0f1d18a20d3b971f20 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	i.ytimg.com/vi/j8JfLxuED44/maxresdefault.jpg	142.250.74.118	200 OK	77 kB
URL HTTP/2 i.ytimg.com/vi/j8JfLxuED44/maxresdefault.jpg IP 142.250.74.118:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data Size 77 kB (77431 bytes) Hash c299ef1a709578ad4264ef89ff522043 5f789630281f70567a3c27b9c3784f693f32f900 fa08361c485b20c9a5c64b9b67b7e2f7a5723dc404f228e216e5a2b406266beb HTTP Headers `GET /vi/j8JfLxuED44/maxresdefault.jpg HTTP/1.1 Host: i.ytimg.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Origin cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="youtube" report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]} timing-allow-origin: * content-length: 77431 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 01 Feb 2023 04:36:37 GMT expires: Wed, 01 Feb 2023 06:36:37 GMT cache-control: public, max-age=7200 etag: "1670360530" content-type: image/jpeg age: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 784285f3de3aee6855cda40438d843e3 9d037310d2e65a1177c1cd2b0506171966dcf560 19af6517f3f7f7d22059fe60afdb1db61dcb02f89ac14fb69941b1763095e518 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2396 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:37 GMT Last-Modified: Wed, 01 Feb 2023 03:56:41 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 4ed1ec30d5bc342dcebe6cbc214b6755 9e4930daeefa97ffbce3609eb7473b9fd3208f20 aeb622d350b9ba797adac5f479561569c7884f3a0e887a0f1d18a20d3b971f20 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 784285f3de3aee6855cda40438d843e3 9d037310d2e65a1177c1cd2b0506171966dcf560 19af6517f3f7f7d22059fe60afdb1db61dcb02f89ac14fb69941b1763095e518 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2396 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:37 GMT Last-Modified: Wed, 01 Feb 2023 03:56:41 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471`

	scontent-ams2-1.cdninstagram.com/v/t51.29350-15/321078618_1230629904537325_1228126473172059645_n.webp?stp=dst-jpg&_nc_cat=111&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=rJHzT2AgX-QAX9Z8erg&_nc_ht=scontent-ams2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfD4D22M4t99PAIsgegEaKK2Zt1OOzl5qD45kQw-rL5BPQ&oe=63DEDC06	157.240.247.63	200 OK	139 kB
URL HTTP/2 scontent-ams2-1.cdninstagram.com/v/t51.29350-15/321078618_1230629904537325_1228126473172059645_n.webp?stp=dst-jpg&_nc_cat=111&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=rJHzT2AgX-QAX9Z8erg&_nc_ht=scontent-ams2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfD4D22M4t99PAIsgegEaKK2Zt1OOzl5qD45kQw-rL5BPQ&oe=63DEDC06 IP 157.240.247.63:0 ASN #32934 FACEBOOK File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1080, components 3\012- data Size 139 kB (138964 bytes) Hash 33777ac1e74f55cee9fdd0140fa0385f ee0bd3f093dd9533a1501a2b02d59c08ecc611d8 df5529cf3227e64f32b26d52edb2bdccd442d9bfef91673da40981e11e4e9ddc HTTP Headers GET /v/t51.29350-15/321078618_1230629904537325_1228126473172059645_n.webp?stp=dst-jpg&_nc_cat=111&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=rJHzT2AgX-QAX9Z8erg&_nc_ht=scontent-ams2-1.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfD4D22M4t99PAIsgegEaKK2Zt1OOzl5qD45kQw-rL5BPQ&oe=63DEDC06 HTTP/1.1 Host: scontent-ams2-1.cdninstagram.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS last-modified: Thu, 22 Dec 2022 15:07:57 GMT x-haystack-needlechecksum: 1016036697 x-needle-checksum: 3119339096 content-type: image/jpeg content-digest: adler32=3251861256 timing-allow-origin: * cross-origin-resource-policy: cross-origin access-control-allow-origin: * cache-control: max-age=1209600, no-transform accept-ranges: bytes content-length: 138964 x-fb-trip-id: 1679558926 date: Wed, 01 Feb 2023 04:36:37 GMT alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/multimedia/website-images/cyber-security-report-carousel/57633513-1-eng-GB/Cyber-security-report-carousel_home_slider.jpg	20.216.153.181	200 OK	363 kB
URL HTTP/2 www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/multimedia/website-images/cyber-security-report-carousel/57633513-1-eng-GB/Cyber-security-report-carousel_home_slider.jpg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 1600x900, components 3\012- data Size 363 kB (363354 bytes) Hash c76518efce1a217529f691cd29e04291 6f38c76c71efce9ff88a8709bff1eb0c2638c261 61fa98bcd8f52c9f5ccca75cc9b0e360c82966a53e545a7045526b3bc479b8a6 HTTP Headers GET /var/mazars/storage/images/media/global-contents/mazars.com/multimedia/website-images/cyber-security-report-carousel/57633513-1-eng-GB/Cyber-security-report-carousel_home_slider.jpg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/jpeg content-length: 363354 served-by: www.mazars.com x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Wed, 19 Oct 2022 08:51:09 GMT etag: "1666169469-363354" cache-control: public, max-age=31536000, immutable x-varnish: 2982192 328317 age: 9295 x-cache: HIT x-cache-hits: 18 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	js-agent.newrelic.com/569.95d4308d-1222.js	151.101.2.137	200 OK	3.2 kB
URL HTTP/2 js-agent.newrelic.com/569.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (7513), with no line terminators Size 3.2 kB (3173 bytes) Hash 8d0953404ce6fdf0926ef6bf37d7e041 8cec9d9883f8b7720721bb33bffb4afe45193b1d 83966eef1899edd421692b78cda8df58dfb9b0b2b27a7485183c5b4cb44a336d HTTP Headers `GET /569.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: v+E2uK5EOShfz1aeDzYcwNWitGv9mKnF6hMwgfWjfoR/qfIZPK6AF+v3z+by8JUQg3fSUYcltK4= x-amz-request-id: WFNFJ5TESSHD3FE6 last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "e97726ab932639fed09971b1d682788c" x-amz-version-id: umZj.yHws5JPiBHG1j096ELWHEKx7rh0 content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 2093 x-timer: S1675226198.517158,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 3173 X-Firefox-Spdy: h2

	js-agent.newrelic.com/620.95d4308d-1222.js	151.101.2.137	200 OK	1.3 kB
URL HTTP/2 js-agent.newrelic.com/620.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (2989), with no line terminators Size 1.3 kB (1342 bytes) Hash 7094c3f93699a846fe91edd766391f01 25e8c79409acc2bb73a728c0768e1eda66019255 85eb01219e8aaa7c7968aa175c2421454f99615ae66350b15c60465f4616826f HTTP Headers `GET /620.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: QggJtv+14rx8wEd4C6ZTDmmxUSe6+8jiYhTGnWcIRu6DC5pRiaL5fPRx8/lgChduQ7GqRSlO6xY= x-amz-request-id: WFN5FXFSJTZYM7K6 last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "ca9b029ff66dd9146273984d16e20abc" x-amz-version-id: HYguQMwVKEHCmodKuQRUzW1qxlElK9Xr content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 2087 x-timer: S1675226198.517299,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 1342 X-Firefox-Spdy: h2

	js-agent.newrelic.com/457.95d4308d-1222.js	151.101.2.137	200 OK	2.0 kB
URL HTTP/2 js-agent.newrelic.com/457.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (4809), with no line terminators Size 2.0 kB (1953 bytes) Hash 09c0cca8d2a9fd69f1892a1c2d1319b9 b46f4fe3b0adc98785d22a092818b74145a91cc0 593022809e272793157f8280bae176bfa74a02f9f9a6d3269384e2dd434be046 HTTP Headers `GET /457.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: 6YLQBRWWkaavoi6QR5dS+9cRhXVrpaQK5v3G9/iqQ5oKPUxxFI0Uv2tN9ar51sQUG2xwVmTWBnY= x-amz-request-id: WFN1Z9NXJZGF8XE5 last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "c16abc7fa2e34cbb7baf3e290120ad5a" x-amz-version-id: qROfxBD9CF8WXmbywdhvCmImuu9HvRNA content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 2080 x-timer: S1675226198.517405,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 1953 X-Firefox-Spdy: h2

	js-agent.newrelic.com/41.95d4308d-1222.js	151.101.2.137	200 OK	439 B
URL HTTP/2 js-agent.newrelic.com/41.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (828), with no line terminators Size 439 B (439 bytes) Hash 46946da829a2257cd8bdeb75bc6f8ff9 bfb81d0ebb2c5a2c0fe666f6a9c4c09cc5a545b3 50e164f0b5274f88ecc28c833729663593b3380aed5a4ac3a06d29106332a544 HTTP Headers `GET /41.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: 2TG7kVMnt5x5EwbcjDgF/pAaH/jmgGXStlMFEbvOUPNYaRTe14pFRmwb0VQGFJQN7uXfEncHoqkNLs4TYWl92Q== x-amz-request-id: MFEHG5GPGK6ZYQVP last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "29dd8aef66100e4c69e07fd60fc88b12" x-amz-version-id: 6FOFyXAonMoqJqLGEMhx7HWIp32cv4MT content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 2094 x-timer: S1675226198.517581,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 439 X-Firefox-Spdy: h2

	js-agent.newrelic.com/244.95d4308d-1222.js	151.101.2.137	200 OK	2.6 kB
URL HTTP/2 js-agent.newrelic.com/244.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (6871), with no line terminators Size 2.6 kB (2607 bytes) Hash f3fa38d9e10cf246f158644ebd64b342 c2730a8b130475b903b30148ea5cf79eb7de1873 6aea0ff08f0ed145b42d52f81d167df30a300f3da22b687fa2de3be48df1badb HTTP Headers `GET /244.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: HqAuLbtc4kLXjp/HM/sZyPqsDbRk1eMZXQl1gAv0l9/yRrGf//JiuVcahDTT5bis4NqiPxfG4OQ= x-amz-request-id: D866GB1QGPTYVJ4R last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "a24fd7e602a6b44ab4c03cab69c843c6" x-amz-version-id: wm7C04ehQ1WMJgMW5R_.Vg0x6NJINoji content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 1120 x-timer: S1675226198.518831,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 2607 X-Firefox-Spdy: h2

	js-agent.newrelic.com/736.95d4308d-1222.js	151.101.2.137	200 OK	2.1 kB
URL HTTP/2 js-agent.newrelic.com/736.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (4688), with no line terminators Size 2.1 kB (2132 bytes) Hash a0dd1bd64e5912ed2b69ab00c181333c 9f4001e3f6c7fd3105972022cde6a67638ba8083 2ea47cc022696e899accbc531bbb7e3abc01f1598cedaa9f23e071d47ee510a0 HTTP Headers `GET /736.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: wZ5lT7Qk1E9hmsxWDncLcs+Ic+aBtWHWGPUcVxaeVym/k+6uixaPTXfOiP+keWUZ+GKP0xL2SDo= x-amz-request-id: MFESCF9VXQC5P35J last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "def1dc24974c16a4e78c08e349b92860" x-amz-version-id: i.8rfLhEckzO44oBXwNAK9an0lbXu.5p content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 1120 x-timer: S1675226198.519005,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 2132 X-Firefox-Spdy: h2

	js-agent.newrelic.com/142.95d4308d-1222.js	151.101.2.137	200 OK	880 B
URL HTTP/2 js-agent.newrelic.com/142.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (2014), with no line terminators Size 880 B (880 bytes) Hash c962fb555005bf74b5010cd5c748c721 5c7c22b348a994aad18e8162bb1f78b9fd49c491 077c18d946bf505b4efe75b1b3c3d9c6b3ad6af3e5b5d08a41fedf7aceb84233 HTTP Headers `GET /142.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: /ZtX43ynOvSaYlrJ/LhlDymHqsr4/Ext49IQ1RQZxLK2MPDMHv59yC5Li6+9oNRuTnKxUqkvJhI= x-amz-request-id: MFEMFHWSJ1CY7RPR last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "082c9f0a95ce6870ed4d9266fa0e41e5" x-amz-version-id: ed_.QNbbUDaLQJRSZtC0TghsoJcp2gVk content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 1122 x-timer: S1675226198.519190,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 880 X-Firefox-Spdy: h2

	js-agent.newrelic.com/466.95d4308d-1222.js	151.101.2.137	200 OK	2.8 kB
URL HTTP/2 js-agent.newrelic.com/466.95d4308d-1222.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (6842), with no line terminators Size 2.8 kB (2760 bytes) Hash 0545743760ba9995e8efbe879105162f 889887ac56edaf2cfe41752ec0893a9ac5d23db0 91a431e85d69e797b8a8817bb15aee94a9fbe38355a6890f75e8947a55386ee0 HTTP Headers `GET /466.95d4308d-1222.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: Y3xfvlvSw36CE9GOKklvJeG0iBkCsl/ss+e4vNwZhrKvjIdjtQLayCw3yQPVxbIyEllIzLdCgUw= x-amz-request-id: MFEHC9QF926X2AZG last-modified: Wed, 18 Jan 2023 20:22:30 GMT etag: "2b339e4b3b0435de10496ee00de8446a" x-amz-version-id: joCLqMlafBXUuB094SKQ5Jhlrbz7F.ON content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 01 Feb 2023 04:36:37 GMT via: 1.1 varnish x-served-by: cache-bma1658-BMA x-cache: HIT x-cache-hits: 1123 x-timer: S1675226198.519320,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 2760 X-Firefox-Spdy: h2

	www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/multimedia/website-images/gdpr-carousel-image/57633103-1-eng-GB/GDPR-carousel-image_home_slider.jpg	20.216.153.181	200 OK	334 kB
URL HTTP/2 www.mazars.com/var/mazars/storage/images/media/global-contents/mazars.com/multimedia/website-images/gdpr-carousel-image/57633103-1-eng-GB/GDPR-carousel-image_home_slider.jpg IP 20.216.153.181:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 28x28, segment length 16, baseline, precision 8, 1600x900, components 3\012- data Size 334 kB (333495 bytes) Hash 1ce85f32da8539868319b17ecd88bd4c fed04455adfb2428a4c703ebb1c9f4b3d1b95a5d 64c3b4b6b1c4dd8c45d55f2e833c10441fd2b57542e5faa0786ea5118889183b HTTP Headers GET /var/mazars/storage/images/media/global-contents/mazars.com/multimedia/website-images/gdpr-carousel-image/57633103-1-eng-GB/GDPR-carousel-image_home_slider.jpg HTTP/1.1 Host: www.mazars.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Cookie: SimpleSAMLSessionID=d3953e303126dec6b262d634d417f49a Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK server: nginx date: Wed, 01 Feb 2023 04:36:36 GMT content-type: image/jpeg content-length: 333495 served-by: www.mazars.com x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN last-modified: Wed, 19 Oct 2022 08:28:11 GMT etag: "1666168091-333495" cache-control: public, max-age=31536000, immutable x-varnish: 2851915 753971 age: 9295 x-cache: HIT x-cache-hits: 18 x-front: front1 accept-ranges: bytes X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash d23184c7272f27eb369971c46e76ca8d 9caa5c7b53d8a400133fb54618dcdb1f0c5d0317 5700f07e3e6bdec87f5dbb80d2cffd5b39b4388fe6b25261e53b4b645cca4121 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5879 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 01 Feb 2023 04:36:37 GMT Last-Modified: Wed, 01 Feb 2023 02:58:38 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471`

	bam.nr-data.net/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=3126&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&ap=37&be=819&fe=1122&dc=832&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1675226214277,%22n%22:0,%22f%22:410,%22dn%22:413,%22dne%22:540,%22c%22:540,%22s%22:579,%22ce%22:688,%22rq%22:688,%22rp%22:760,%22rpe%22:762,%22dl%22:798,%22di%22:1613,%22ds%22:1650,%22de%22:1657,%22dc%22:1940,%22l%22:1940,%22le%22:1951%7D,%22navigation%22:%7B%7D%7D&fcp=1600&at=TxJVQFgYSU0%3D&jsonp=NREUM.setToken	162.247.241.14	200 OK	73 B
URL HTTP/1.1 bam.nr-data.net/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=3126&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&ap=37&be=819&fe=1122&dc=832&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1675226214277,%22n%22:0,%22f%22:410,%22dn%22:413,%22dne%22:540,%22c%22:540,%22s%22:579,%22ce%22:688,%22rq%22:688,%22rp%22:760,%22rpe%22:762,%22dl%22:798,%22di%22:1613,%22ds%22:1650,%22de%22:1657,%22dc%22:1940,%22l%22:1940,%22le%22:1951%7D,%22navigation%22:%7B%7D%7D&fcp=1600&at=TxJVQFgYSU0%3D&jsonp=NREUM.setToken IP 162.247.241.14:0 ASN #23467 NEWRELIC-AS-1 File type ASCII text, with no line terminators Size 73 B (73 bytes) Hash 814f8120cdf5a972bdb0fd5521a92a5d 47f7b3cd340d1fe91766ff27602e319a79bcd14c 5f520e553ae6a634e84b7c8c8d36908d2efa441d716834fd98c012c402b1c3c8 HTTP Headers GET /1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=3126&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&ap=37&be=819&fe=1122&dc=832&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1675226214277,%22n%22:0,%22f%22:410,%22dn%22:413,%22dne%22:540,%22c%22:540,%22s%22:579,%22ce%22:688,%22rq%22:688,%22rp%22:760,%22rpe%22:762,%22dl%22:798,%22di%22:1613,%22ds%22:1650,%22de%22:1657,%22dc%22:1940,%22l%22:1940,%22le%22:1951%7D,%22navigation%22:%7B%7D%7D&fcp=1600&at=TxJVQFgYSU0%3D&jsonp=NREUM.setToken HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Date: Wed, 01 Feb 2023 04:36:38 GMT Content-Type: text/javascript Transfer-Encoding: chunked Connection: keep-alive CF-Ray: 7927fcb76d58b4fd-OSL Access-Control-Allow-Origin: * CF-Cache-Status: DYNAMIC access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS Cross-Origin-Resource-Policy: cross-origin Vary: Accept-Encoding Server: cloudflare Content-Encoding: gzip`

	bam.nr-data.net/resources/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=4483&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&st=1675226215096&at=TxJVQFgYSU0%3D	162.247.241.14	200 OK	36 B
URL HTTP/1.1 bam.nr-data.net/resources/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=4483&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&st=1675226215096&at=TxJVQFgYSU0%3D IP 162.247.241.14:0 ASN #23467 NEWRELIC-AS-1 File type ASCII text, with no line terminators Size 36 B (36 bytes) Hash 452da841b4fc1d96ac391b7122e8c983 d10c0494c39f8399b1c7d8b85dd3d637b5d2118e cf16e5223fc2df305501195a0f0d8a83575c1be21e85a594cf38528813aaf9f8 HTTP Headers POST /resources/1/f389eee989?a=6192562&v=1222.PROD&to=Y1VWNhACWkMABhAMXFofYRALTBtGABdLEkRDH1kDGAJGQ04MCgFWTB5EChI%3D&rst=4483&ck=0&s=f222216e2131a4ed&ref=https://www.mazars.com/&st=1675226215096&at=TxJVQFgYSU0%3D HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: text/plain Content-Length: 1179 Origin: https://www.mazars.com Connection: keep-alive Referer: https://www.mazars.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Date: Wed, 01 Feb 2023 04:36:39 GMT Content-Type: text/plain Content-Length: 36 Connection: keep-alive CF-Ray: 7927fcbf289cb4fd-OSL Access-Control-Allow-Origin: https://www.mazars.com CF-Cache-Status: DYNAMIC access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS Vary: Accept-Encoding Server: cloudflare`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55af221f-e2a5-4ea0-ba8f-1f045ea1cbb7.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55af221f-e2a5-4ea0-ba8f-1f045ea1cbb7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8812 bytes) Hash 7d09523ece9b6da85a1a007c7e2abcb6 a637b08e2fbba31ef60103b2d9fd3c6f96d84b27 811bbd2e85b83dcaa8743a1d7e513fd76b81d4ced2b8aa99c62f9590f20e85a8 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55af221f-e2a5-4ea0-ba8f-1f045ea1cbb7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 8812 x-amzn-requestid: 8c568658-2708-4031-93ff-1654cc17a311 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: foeeZGjKIAMFyUA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9aac2-4587a6e43c1430ed03d0e69b;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 23:56:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: SN1t3ynbcYOqHlv7bgBwzUTdZLjPAEq8bmRuIJaKHGA-4AkcMyBJkg== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 00:16:28 GMT age: 15615 etag: "a637b08e2fbba31ef60103b2d9fd3c6f96d84b27" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML