www.icrc.org/pt/document/projeto-rio
51.103.133.178301 Moved Permanently 195 B URL HTTP/1.1 www.icrc.org/pt/document/projeto-rio
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e0d1a4a70b7864dd9ba22ff15341cfa0
32346cf022d83679b2f437eb9b02092168bafa8c
a76004959bdd8402fe10509e667dd20ad3e7390f6e8097cc44ef935c908e0e36
GET /pt/document/projeto-rio HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-Azure-Application-Gateway/v2
Date: Tue, 07 Feb 2023 22:37:47 GMT
Content-Type: text/html
Content-Length: 195
Connection: keep-alive
Location: https://www.icrc.org/pt/document/projeto-rio
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7178
Expires: Wed, 08 Feb 2023 00:37:25 GMT
Date: Tue, 07 Feb 2023 22:37:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5202
Expires: Wed, 08 Feb 2023 00:04:29 GMT
Date: Tue, 07 Feb 2023 22:37:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 22:36:32 GMT
content-type: application/json
age: 76
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2356
Expires: Tue, 07 Feb 2023 23:17:04 GMT
Date: Tue, 07 Feb 2023 22:37:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cwpUAQsEHWBhAFrzZOutk6gDTeOnR2Jyt+JmW0o7CdpqlBsllHK3SsqtTWUB+5Wo73mjuug9XJ0=
x-amz-request-id: DQVX1GH6AWYHHG1H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 22:35:41 GMT
age: 127
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60c1d79db28a3528c7807786d6e94cea
0b540d214113a30225950c57e5efb5888946ee96
5a18ba2a89133f923b50e0c4f8b5df3c240bdbcad0143b2e55c415795f4c415b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2712
Cache-Control: max-age=98810
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Etag: "63e1a71e-1d7"
Expires: Thu, 09 Feb 2023 02:04:38 GMT
Last-Modified: Tue, 07 Feb 2023 01:19:26 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
api.mapbox.com/mapbox-gl-js/v2.9.1/mapbox-gl.css
54.230.216.182200 OK 4.9 kB URL HTTP/1.1 api.mapbox.com/mapbox-gl-js/v2.9.1/mapbox-gl.css
IP 54.230.216.182:0
File type ASCII text, with very long lines (36640), with no line terminators
Hash 4158c57e4400c083f5fe5bb024ff6134
f399de887e3c94125cf0837c58676eaab59b102c
fdcfcb512658576121af524c5353ba0cee91dd5029f0bb16d7b82ecb41265914
GET /mapbox-gl-js/v2.9.1/mapbox-gl.css HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 13 Nov 2022 01:09:44 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: "f7fa162067a8f3951634bb90abbbe22c"
Last-Modified: Mon Jun 20 2022 19:57:45 GMT+0000 (Coordinated Universal Time)
Cache-Control: max-age=31536000
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pedZJc95VaY7CgWqjKZLRKgqA4MgS1iix3P0do91z9McBR2bC4E-0w==
Age: 7507684
api.mapbox.com/mapbox-gl-js/v2.9.1/mapbox-gl.js
54.230.216.182200 OK 260 kB URL HTTP/1.1 api.mapbox.com/mapbox-gl-js/v2.9.1/mapbox-gl.js
IP 54.230.216.182:0
File type Unicode text, UTF-8 text, with very long lines (64107)
Size 260 kB (260063 bytes)
Hash 014caf2452257617fd2a270b4ea10c8f
aae60402cc575011c059a4360d73790e4e102d7d
930f27a265f609cd19ffb773eba4fab9e10e6ad87b32489b2bd322e096dd2865
GET /mapbox-gl-js/v2.9.1/mapbox-gl.js HTTP/1.1
Host: api.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 28 Oct 2022 04:55:29 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: "3527badffc97c73709930dce19c9bcd9"
Last-Modified: Mon Jun 20 2022 19:57:41 GMT+0000 (Coordinated Universal Time)
Cache-Control: max-age=31536000
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U0YOMYfDe2OpQ9WRY6pWYS8Hg-Hp8tpFNRiDiVObCKJaZnv4fZ2mFg==
Age: 8876538
unpkg.com/@esri/arcgis-rest-feature-layer@3.0.0/dist/umd/feature-layer.umd.js
104.16.122.175200 OK 4.7 kB URL HTTP/2 unpkg.com/@esri/arcgis-rest-feature-layer@3.0.0/dist/umd/feature-layer.umd.js
IP 104.16.122.175:0
File type ASCII text, with CRLF, LF line terminators
Hash 81832d81c8f56aa83280f973508df9ad
15add1c87fb707d7913956d0070288b3d443da53
1e141021af746df1dfabd48a3abc19bb7ed931ca749e9120806c9cd87bed9e12
GET /@esri/arcgis-rest-feature-layer@3.0.0/dist/umd/feature-layer.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"5690-eiLBvy+Ss+Dt3oCotf9puOPjsJk"
via: 1.1 fly.io
fly-request-id: 01G4XKZ6EBJ629PA832YNFHMZK-fra
cf-cache-status: HIT
age: 21253136
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 795f9cb9bfd51c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_css/css__wsTBFL1LfMB119qMNr9C2FqSKHucuqUmQFgKmha6IVo__qfuZxGOMiYkyMKfUJ-hTsNki5tXR4KX7dMss4Z_-l24__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
51.103.133.178200 OK 8.2 kB URL HTTP/2 www.icrc.org/sites/default/files/advagg_css/css__wsTBFL1LfMB119qMNr9C2FqSKHucuqUmQFgKmha6IVo__qfuZxGOMiYkyMKfUJ-hTsNki5tXR4KX7dMss4Z_-l24__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (12288)
Hash e1350b3519311b8e36c5834526d4cbe6
9db2b13c8f152a79606bbe0e0332be06ab47d583
e5c29a2cfa5bf30b48a9cd9780b7b2193a948eac3be77abba8d3a1f016d08ad1
GET /sites/default/files/advagg_css/css__wsTBFL1LfMB119qMNr9C2FqSKHucuqUmQFgKmha6IVo__qfuZxGOMiYkyMKfUJ-hTsNki5tXR4KX7dMss4Z_-l24__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: text/css
content-length: 8169
server: ICRC PRD App Secured Gateway
last-modified: Tue, 16 Aug 2022 08:21:36 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_css/css__SgN8uTwYxEtO6A7Avut9EyzW0BkI9-u0Elt-Ok2cPzE__mTMMC9npq0_VTYuBUSjDmJSm0Awgh3orGNg5bRyfyPg__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
51.103.133.178200 OK 1.8 kB URL HTTP/2 www.icrc.org/sites/default/files/advagg_css/css__SgN8uTwYxEtO6A7Avut9EyzW0BkI9-u0Elt-Ok2cPzE__mTMMC9npq0_VTYuBUSjDmJSm0Awgh3orGNg5bRyfyPg__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (4075)
Hash 5ae735d9fbbe935c67e3fab4fed96351
17b1bad603de035eebcbb526a18e34495657c9db
c25f8db0e6108abd3a74ca880ccd08c7aaa2a3016c3e88755ad6b34950b9bbb5
GET /sites/default/files/advagg_css/css__SgN8uTwYxEtO6A7Avut9EyzW0BkI9-u0Elt-Ok2cPzE__mTMMC9npq0_VTYuBUSjDmJSm0Awgh3orGNg5bRyfyPg__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: text/css
content-length: 1802
server: ICRC PRD App Secured Gateway
last-modified: Tue, 16 Aug 2022 08:21:36 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/themes/icrc_theme/images/pt/logo.png
51.103.133.178200 OK 6.9 kB URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/images/pt/logo.png
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 97 x 115, 8-bit/color RGBA, non-interlaced\012- data
Hash 24dec0082a32be3af75709ff4f045f4f
5b24e062ec04b8fa76ec34646ff3bc5d65c14310
7c4fa8dbd5363825ed49f69924274090b72af866d9038ec581a96064402267d6
GET /sites/default/themes/icrc_theme/images/pt/logo.png HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: image/png
content-length: 6947
server: ICRC PRD App Secured Gateway
last-modified: Mon, 04 Feb 2019 09:19:49 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-TXDH7Z8
142.250.74.78200 OK 46 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-TXDH7Z8
IP 142.250.74.78:0
File type ASCII text, with very long lines (1759)
Hash 8078044967e5a8844cec73ef3222ad8b
9415fd606b5471b2fac9ce758333d46f9a7fd2fc
08feb8f8cb67ea035e0f60e11d3f48587f583c6404f7c98295b7af7480eaaf41
GET /optimize.js?id=GTM-TXDH7Z8 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Feb 2023 22:37:48 GMT
expires: Tue, 07 Feb 2023 22:37:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45462
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
51.103.133.178200 OK 70 kB URL HTTP/2 www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (6836)
Hash 864bbccfeee58a6fe570b658d3a291ed
23b59f5caf3dab870a6d7a022435a532c4652b3a
9a27a894163a7b43dbd103a2c6eb8597b257c7568dcbc3887ec9c8ed8dba2b39
GET /sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: text/css
content-length: 70213
server: ICRC PRD App Secured Gateway
last-modified: Wed, 25 Jan 2023 03:42:26 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_js/js__PFGe5Jbso6wYv7hi5EfbUqLavlbMX5LgLA1UdX9WgKI__VGYQ9ZAW5noq_P3p3XKq9H4lYFR-_YANHiM8nXgQjUs__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js
51.103.133.178200 OK 149 B URL HTTP/2 www.icrc.org/sites/default/files/advagg_js/js__PFGe5Jbso6wYv7hi5EfbUqLavlbMX5LgLA1UdX9WgKI__VGYQ9ZAW5noq_P3p3XKq9H4lYFR-_YANHiM8nXgQjUs__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash dfe67203d558406ad63d09591a76b1d4
57185152c6e6f4e2232b43a3a512616bf6f87c88
3dc6cd55671e35069700e98908811622ecf2d1d146f916bf393cc58a050d6569
GET /sites/default/files/advagg_js/js__PFGe5Jbso6wYv7hi5EfbUqLavlbMX5LgLA1UdX9WgKI__VGYQ9ZAW5noq_P3p3XKq9H4lYFR-_YANHiM8nXgQjUs__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/javascript
content-length: 149
server: ICRC PRD App Secured Gateway
last-modified: Mon, 23 Jan 2023 08:34:38 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_js/js__Jb9j6yQtaBoKO8Z4li-bUu7S3aSEfvZrFOxrpnMAEu8__bChAf5iI6uOnXElEChWVZRLqvJgCl5XR4i_SOVgnw7E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js
51.103.133.178200 OK 33 kB URL HTTP/2 www.icrc.org/sites/default/files/advagg_js/js__Jb9j6yQtaBoKO8Z4li-bUu7S3aSEfvZrFOxrpnMAEu8__bChAf5iI6uOnXElEChWVZRLqvJgCl5XR4i_SOVgnw7E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (32038), with CRLF line terminators
Hash 73483a06935d41e032f8e63ebe214c6b
e8347c050b9398575fa23c023eaeed1e246813c5
e3e2c41bd4818f048eef1be9a4c99d5b1ec34b9f1d373f5ffec8049af2b58db3
GET /sites/default/files/advagg_js/js__Jb9j6yQtaBoKO8Z4li-bUu7S3aSEfvZrFOxrpnMAEu8__bChAf5iI6uOnXElEChWVZRLqvJgCl5XR4i_SOVgnw7E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/javascript
content-length: 33240
server: ICRC PRD App Secured Gateway
last-modified: Tue, 16 Aug 2022 08:21:40 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/styles/document_sidebar_article/public/document_new/image/mirjana_visita_chifre_da_africa.jpg?itok=LMKVdsO6
51.103.133.178200 OK 8.8 kB URL HTTP/2 www.icrc.org/sites/default/files/styles/document_sidebar_article/public/document_new/image/mirjana_visita_chifre_da_africa.jpg?itok=LMKVdsO6
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 128x96, components 3\012- data
Hash a19f70392f6dc85aed8cf5225330ea42
5883d44c40479f53601d42a31d349a4a8f0e0baf
884cf7a4d2f50bf05e6251f8ff10aaf0e695d2174a3067d140614d3262af081f
GET /sites/default/files/styles/document_sidebar_article/public/document_new/image/mirjana_visita_chifre_da_africa.jpg?itok=LMKVdsO6 HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: image/jpeg
content-length: 8848
server: ICRC PRD App Secured Gateway
last-modified: Mon, 30 Jan 2023 15:02:18 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.icrc.org/sites/default/themes/icrc_theme/images/default-345x271.png
51.103.133.178200 OK 633 B URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/images/default-345x271.png
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 345 x 271, 8-bit/color RGB, non-interlaced\012- data
Hash e39f374ecc80a062413899fe6b06007d
012951a6733a659778315f94c16abf4cf142bd8f
37faf40e15661ceabf0c6c5a96f6b4df2e5e4859a6fa9decef4cabd31b39f4a2
GET /sites/default/themes/icrc_theme/images/default-345x271.png HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: image/png
content-length: 633
server: ICRC PRD App Secured Gateway
last-modified: Mon, 06 Jun 2016 12:30:48 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/styles/document_sidebar_article/public/document_new/image/lago_chade_mulheres_deslocadas.jpg?itok=0yj7nbiH
51.103.133.178200 OK 8.6 kB URL HTTP/2 www.icrc.org/sites/default/files/styles/document_sidebar_article/public/document_new/image/lago_chade_mulheres_deslocadas.jpg?itok=0yj7nbiH
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 128x96, components 3\012- data
Hash da7d368ed2377bc1787e735faec47fc0
3222cdedeaf35c11befa487c24284508f7d980a8
c7e7ea53b8b1c9e46cbd1c93845cf8c2df2c09999916975764931df954ccd98f
GET /sites/default/files/styles/document_sidebar_article/public/document_new/image/lago_chade_mulheres_deslocadas.jpg?itok=0yj7nbiH HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: image/jpeg
content-length: 8646
server: ICRC PRD App Secured Gateway
last-modified: Wed, 25 Jan 2023 14:33:24 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/styles/document_main/public/document/image/rio-project1_0.jpg?itok=hC9VuyC4
51.103.133.178200 OK 64 kB URL HTTP/2 www.icrc.org/sites/default/files/styles/document_main/public/document/image/rio-project1_0.jpg?itok=hC9VuyC4
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 730x410, components 3\012- data
Hash 91e338e409b5c7fdd4253abeb9884a39
ad30a30b63bd358808abf73cecaba5d809d8f10d
e76105a557bf5630821d68b0b02411ba5578778dab1f16acd3c3b17f780ba769
GET /sites/default/files/styles/document_main/public/document/image/rio-project1_0.jpg?itok=hC9VuyC4 HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: image/jpeg
content-length: 64037
server: ICRC PRD App Secured Gateway
last-modified: Thu, 10 Nov 2016 08:40:40 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 22:14:52 GMT
age: 1376
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_js/js__MvssoaSCFgolsKmvkGnKHy_AuHWO0GEM2AbV14GSZRU__rK0GMIUqIonFggwf3S3UNYouF6iPKBwP2rFjI4Ji_5M__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js
51.103.133.178200 OK 221 kB URL HTTP/2 www.icrc.org/sites/default/files/advagg_js/js__MvssoaSCFgolsKmvkGnKHy_AuHWO0GEM2AbV14GSZRU__rK0GMIUqIonFggwf3S3UNYouF6iPKBwP2rFjI4Ji_5M__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (32074), with CRLF line terminators
Size 221 kB (220812 bytes)
Hash 3298933673942bd8b463efb8f424991f
5ce474f83c6e92de9a42088a24a83eabc2910439
7d6a46e05c939aaeb6a3f15050628b4582f89a70398ce6d4a7b6632151f338f8
GET /sites/default/files/advagg_js/js__MvssoaSCFgolsKmvkGnKHy_AuHWO0GEM2AbV14GSZRU__rK0GMIUqIonFggwf3S3UNYouF6iPKBwP2rFjI4Ji_5M__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.js HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/javascript
content-length: 220812
server: ICRC PRD App Secured Gateway
last-modified: Tue, 10 Jan 2023 08:53:07 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/sites/default/files/advagg_css/css__6vWLF93MPZPEzBkdUa0jHvW1YG39ZyookmL3IGbEHhM__vTDp_zOqVmg6t-HVYFPVTvysqQpU81-VrH8xUNygTm4__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
51.103.133.178200 OK 1.2 kB URL HTTP/2 www.icrc.org/sites/default/files/advagg_css/css__6vWLF93MPZPEzBkdUa0jHvW1YG39ZyookmL3IGbEHhM__vTDp_zOqVmg6t-HVYFPVTvysqQpU81-VrH8xUNygTm4__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (8690), with no line terminators
Hash f6332e59922056dbd34a07037ba5dcbf
ca83a3ed37f782700c304432dd8d800c1cce57d8
5467a39b65d2b051ee5c502ad3096f4908b8c71331dbb5dbcb55106ae35035c4
GET /sites/default/files/advagg_css/css__6vWLF93MPZPEzBkdUa0jHvW1YG39ZyookmL3IGbEHhM__vTDp_zOqVmg6t-HVYFPVTvysqQpU81-VrH8xUNygTm4__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: text/css
content-length: 1196
server: ICRC PRD App Secured Gateway
last-modified: Tue, 16 Aug 2022 08:21:39 GMT
accept-ranges: bytes
cache-control: max-age=31449600, no-transform, public, immutable
expires: Tue, 06 Feb 2024 22:37:48 GMT
vary: User-Agent,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5043
Expires: Wed, 08 Feb 2023 00:01:51 GMT
Date: Tue, 07 Feb 2023 22:37:48 GMT
Connection: keep-alive
www.icrc.org/sites/default/themes/icrc_theme/fonts/icons/icons.woff
51.103.133.178200 OK 42 kB URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/fonts/icons/icons.woff
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format, TrueType, length 41932, version 1.0\012- data
Hash 643312124927f5054fc6073579a8cde0
9bd451ce9c2e56fbe79e1d33b9e59726d0600762
42a6727d6a259b6ca6923ad9694a5b860f0a5bab58e6471fa06d3a02f765923d
GET /sites/default/themes/icrc_theme/fonts/icons/icons.woff HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/font-woff
content-length: 41932
server: ICRC PRD App Secured Gateway
last-modified: Wed, 13 Apr 2022 10:29:22 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-FVTRGQ
142.250.74.72200 OK 92 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-FVTRGQ
IP 142.250.74.72:0
File type ASCII text, with very long lines (35772)
Hash 77de883c15da1b1ac4f62750f051c9e8
bd84e66936e9ce7d02e73f66d7c828c473ace775
c844a78df02bf989befa99bea6a645150eeeea6cfa59b21cd82e08a2863db4d2
GET /gtm.js?id=GTM-FVTRGQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Feb 2023 22:37:49 GMT
expires: Tue, 07 Feb 2023 22:37:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 Feb 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92136
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 1.3 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type JSON data\012- , ASCII text, with very long lines (4808), with no line terminators
Hash 1cec26635f9a3fe6512c34c47e1c02fd
a038b2be7d3ac1725caabc21277e9f362fca886b
532fb6c1231918b448d74846bca4020437d588764a58cb43eca61513253f87f1
GET /styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
X-Origin: mbx-styles
Timing-Allow-Origin: *
X-DNS-Prefetch-Control: off
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: origin
Content-Encoding: gzip
Date: Tue, 07 Feb 2023 22:28:10 GMT
Cache-Control: max-age=900
ETag: W/"12c8-4B9eKhZTTt8Nae6aXff87jZw0fg"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NFvU-ZznbUsLw6fJy9idUClzUhYuJOjMSbOJvkjT-OXCpHDysX9xdA==
Age: 579
push.services.mozilla.com/
52.37.106.154101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.106.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3574Csjtx61TlTp1vzCOKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sR14GDJkIkFGLM6MN71pkTQDLWg=
a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/0/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 8.5 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/0/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 4-bit colormap, non-interlaced\012- data
Hash 00b34f5267429b5eb77a38919fd3327e
8b5d91b749cab32a45d22d23e87eac6c000aa11c
eb055813f87ba91c64a72b9421bc797ba43b78b2b8d3d09c0092ac1f93392b3f
GET /styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/0/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 8487
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
Date: Tue, 07 Feb 2023 16:49:56 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "dd48fe1e93b65b9d3be38afa7b83a20d1e631abfa424a88845acf75c95a64dad"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yL1iLdwyOe_hRMXSmhdnKOXaBR7GBEgzGgp9xQIwk8JwYtfuQ72o4g==
Age: 20873
a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 468 B URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type JSON data\012- , ASCII text, with very long lines (820), with no line terminators
Hash 8fe5d7d372e30de637357e17c5834a94
b4083efc3fc7753a87ad80c1f4015f51aaf7cdf8
3cc6f481c5862ad69dffd523cd78225c74e4e0f2e08526ccc6a730555a5e80d7
GET /styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
X-Origin: mbx-styles
Timing-Allow-Origin: *
X-DNS-Prefetch-Control: off
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: origin
Content-Encoding: gzip
Date: Tue, 07 Feb 2023 22:28:10 GMT
Cache-Control: max-age=900
ETag: W/"334-jYASekwCW/2lhcY2tuSDQIIXQ6U"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kmVlDUhbyfRolu_mcD7kobVbFUWq2NyuhzE_TqHYD5lj3dl2LvCgGg==
Age: 579
a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/0/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 749 B URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/0/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 699f83dbe1d226f848f21ea07e045a6e
7e550907b7ad164b4497845b46732c1501b44ca8
71081cf9ff5b2f92bfd3ab59bc0a196490e0c7d71782ec7db9150f3a9e58e8de
GET /styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/0/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 749
Connection: keep-alive
Date: Tue, 07 Feb 2023 19:53:41 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Cache-Control: max-age=43200,s-maxage=43200
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
ETag: "3e2ee206f303a6671e7c7e18c4aebd88374dca6f530dfdab4ed7218c52ce8ee5"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ivTnEG1mO4LfqaWD-EF5C5l_g4HWowYG6_jWaw-gKdaNV_96dqaZoQ==
Age: 9847
a.tiles.mapbox.com/v4/icrc.a7bb8c6b,mapbox.mapbox-streets-v7,icrc.adytv5t0,icrc.5om45bd0,icrc.2uxqe5sn.json?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w&secure
54.230.216.182200 OK 3.4 kB URL HTTP/1.1 a.tiles.mapbox.com/v4/icrc.a7bb8c6b,mapbox.mapbox-streets-v7,icrc.adytv5t0,icrc.5om45bd0,icrc.2uxqe5sn.json?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w&secure
IP 54.230.216.182:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (15738), with no line terminators
Hash b945d7f8a516b80890234328ef0cf513
857a696d198c8ca8eb868d72e779fb6349e84069
189c791969857d23ee26ac99929d8a8e7177297ae02b220ccbee418b56cec26a
GET /v4/icrc.a7bb8c6b,mapbox.mapbox-streets-v7,icrc.adytv5t0,icrc.5om45bd0,icrc.2uxqe5sn.json?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w&secure HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
X-Rate-Limit-Limit: 100000
X-Rate-Limit-Interval: 60
X-Rate-Limit-Reset: 1675799633
Last-Modified: Thu, 13 Oct 2022 13:14:28 GMT
Timing-Allow-Origin: *
Content-Encoding: gzip
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: max-age=43200,s-maxage=300
ETag: "e9b5c05d6d9cd2b08fce7b76b96052fd"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WSOhrett8JFw4rNdC5g6n4rXJNkDF_3XYnI7XvIgdE4VAFQY0i9CWw==
Age: 262
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.tiles.mapbox.com/v4/icrc.i5si3pya.json?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w&secure
54.230.216.182200 OK 520 B URL HTTP/1.1 a.tiles.mapbox.com/v4/icrc.i5si3pya.json?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w&secure
IP 54.230.216.182:0
File type JSON data\012- , ASCII text, with very long lines (1112), with no line terminators
Hash 8ec4b88b8523fc491da37fa63c2f0c6f
90ae9fd1d0ed69804b3f519092ae0f0fc4d91633
8c5d5894a5a2c1c548ca4c9c7a6fac65b2add88ed3f8474d1a4dbf5326deeb9f
GET /v4/icrc.i5si3pya.json?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w&secure HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Tue, 07 Feb 2023 22:37:49 GMT
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
X-Rate-Limit-Limit: 100000
X-Rate-Limit-Interval: 60
X-Rate-Limit-Reset: 1675809529
Last-Modified: Mon, 12 Sep 2016 00:35:20 GMT
Timing-Allow-Origin: *
Cache-Control: max-age=43200,s-maxage=300
Content-Encoding: gzip
ETag: "6618067afafa7b5e5e93fe20f87ac45f"
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: F_VvOSbQr4rhbo4esIAwADWo7Uu5-NdubV0HojVXbfvZh1vjqq0azA==
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 17:20:45 GMT
expires: Tue, 06 Feb 2024 17:20:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 105424
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
services1.arcgis.com/HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/ICRC_ICRC_WD_Country_ReadOnly/FeatureServer/0/query?f=geojson&where=ISO2%20%3D%20%27BR%27&outFields=*&outSR=4326
54.230.111.22200 OK 488 kB URL HTTP/2 services1.arcgis.com/HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/ICRC_ICRC_WD_Country_ReadOnly/FeatureServer/0/query?f=geojson&where=ISO2%20%3D%20%27BR%27&outFields=*&outSR=4326
IP 54.230.111.22:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size 488 kB (488233 bytes)
Hash 97a5250396dcc6fb3614749deef462e6
80f70a35c668e51ce25688351fd51c21eaa97581
afa170ff89fbca465ef8068e6175d99f6317abf8c82548419d4feff9859b827e
GET /HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/ICRC_ICRC_WD_Country_ReadOnly/FeatureServer/0/query?f=geojson&where=ISO2%20%3D%20%27BR%27&outFields=*&outSR=4326 HTTP/1.1
Host: services1.arcgis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 488233
cache-control: public, max-age=30, s-maxage=30
content-encoding: br
last-modified: Tue, 01 Feb 2022 11:51:01 GMT
etag: sd22470_384123241
x-arcgis-trace-id: a5ce5d7ec59b5fc6aa8bcc783a6f0433
x-esri-query-request-units: 2
x-esri-tiles-basic-query-mode: true
x-esri-tiles-basic-query-type: Basic
x-esri-org-request-units-per-min: usage=6;max=6000
x-esri-query-max-vertex-count: 30836
x-esri-query-geometry-field-name: SHAPE
x-arcgis-correlation-id: 00-a5ce5d7ec59b5fc6aa8bcc783a6f0433-ef6cc14ea159d361-00
x-arcgis-instance: i7tdixsfq00000D
strict-transport-security: max-age=63072000
access-control-allow-origin: *
date: Tue, 07 Feb 2023 22:37:49 GMT
x-cache: RefreshHit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _adQlv_Fe3b0-rdOzzP9qfbth6l-csJFXqH1hOjFnzM6-tknHpjLYg==
X-Firefox-Spdy: h2
services1.arcgis.com/HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/ICRC_ICRC_SitesFromRadar_Public/FeatureServer/0/query?f=json&where=Statut_Code%20%3D%20%27A%27%20AND%20Version%20%3D%20%272022%27%20AND%20Site_Code%20NOT%20IN%20(%27BGD%27%2C%20%27VCO%27%2C%20%27BOL%27)%20AND%20Geo_Country_Code%20%3D%20%27BR%27%20AND%20Mapping_Symbol%20IN%20(%27Headquarters%27%2C%20%27Regional%20Delegation%27%2C%20%27Delegation%27)&outFields=Latitude%2C%20Longitude%2C%20Geo_Country_Code%2C%20Site_Name%2C%20Site_Code%2C%20Mapping_Symbol
54.230.111.22200 OK 430 B URL HTTP/2 services1.arcgis.com/HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/ICRC_ICRC_SitesFromRadar_Public/FeatureServer/0/query?f=json&where=Statut_Code%20%3D%20%27A%27%20AND%20Version%20%3D%20%272022%27%20AND%20Site_Code%20NOT%20IN%20(%27BGD%27%2C%20%27VCO%27%2C%20%27BOL%27)%20AND%20Geo_Country_Code%20%3D%20%27BR%27%20AND%20Mapping_Symbol%20IN%20(%27Headquarters%27%2C%20%27Regional%20Delegation%27%2C%20%27Delegation%27)&outFields=Latitude%2C%20Longitude%2C%20Geo_Country_Code%2C%20Site_Name%2C%20Site_Code%2C%20Mapping_Symbol
IP 54.230.111.22:0
File type JSON data\012- , ASCII text, with very long lines (1296), with no line terminators
Hash ab21759640432aea7eafb05f41563677
a50e5bc46d8e021c9925ac6a017c39ee46b8df20
1d23530747e462ec69b983f24e5bca1b69ae3355f83d2fc9651e2fff35a7dff3
GET /HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/ICRC_ICRC_SitesFromRadar_Public/FeatureServer/0/query?f=json&where=Statut_Code%20%3D%20%27A%27%20AND%20Version%20%3D%20%272022%27%20AND%20Site_Code%20NOT%20IN%20(%27BGD%27%2C%20%27VCO%27%2C%20%27BOL%27)%20AND%20Geo_Country_Code%20%3D%20%27BR%27%20AND%20Mapping_Symbol%20IN%20(%27Headquarters%27%2C%20%27Regional%20Delegation%27%2C%20%27Delegation%27)&outFields=Latitude%2C%20Longitude%2C%20Geo_Country_Code%2C%20Site_Name%2C%20Site_Code%2C%20Mapping_Symbol HTTP/1.1
Host: services1.arcgis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 430
cache-control: public, max-age=30, s-maxage=30
content-encoding: br
last-modified: Fri, 06 Jan 2023 12:28:45 GMT
etag: sd18158_-2030386559
x-arcgis-trace-id: e68cff9307a99c429d8b0cfabd47dd88
x-esri-query-request-units: 2
x-esri-tiles-basic-query-mode: true
x-esri-tiles-basic-query-type: Basic
x-esri-org-request-units-per-min: usage=2;max=6000
x-esri-query-geometry-field-name: SHAPE
x-arcgis-correlation-id: 00-e68cff9307a99c429d8b0cfabd47dd88-b5d2388e9fa70cff-00
x-arcgis-instance: i7tdixsfq00000L
strict-transport-security: max-age=63072000
access-control-allow-origin: *
date: Tue, 07 Feb 2023 22:37:49 GMT
x-cache: RefreshHit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0SLqC2QY2RJZt-v-iICEfXQp1nvhaWrKTet19JZy8R6cHny3kCUkZA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 207457de2bafb018790bc7c8ee1efce8
b2af4a4c0068f81ced26608bc457db8167fc2545
049b10884a649d5424b94322722caf3ce221dc137a4789b1056e664346d10d9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.recaptcha.net/recaptcha/api.js?hl=pt
142.250.74.131200 OK 558 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?hl=pt
IP 142.250.74.131:0
File type ASCII text, with very long lines (853), with no line terminators
Hash 069fa050fa5d0b292369092554ef3075
6a0edc04a894314132cc40b070948aa4adaa2f0c
38db68744976d2fc4c964473ee4d5d1cefdeecf46d5f8da2c380ab2fa2270257
GET /recaptcha/api.js?hl=pt HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 07 Feb 2023 22:37:49 GMT
date: Tue, 07 Feb 2023 22:37:49 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 558
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.icrc.org/icon-16.png
51.103.133.178200 OK 1.3 kB IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d3332bcb1174b5770f5b0fa8bd46168
4598eee193edf672870d2008350caa161add87d3
f48f9793ad853719951d0e2b33ee17833f4ba9889647718702843ca9c2204fb4
GET /icon-16.png HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:49 GMT
content-type: image/png
content-length: 1309
server: ICRC PRD App Secured Gateway
last-modified: Tue, 10 Jan 2023 07:10:10 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:49 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.icrc.org/icon-256.png
51.103.133.178200 OK 23 kB URL HTTP/2 www.icrc.org/icon-256.png
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash d3321a3cfe1012c69660fd3617c764f3
84f7f94d58aad1eb981b123d034d354584ee7d47
dfa666b5cade89610a13416daccf1c49df8efd55240e810ff9edc18db1da52d1
GET /icon-256.png HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:49 GMT
content-type: image/png
content-length: 23358
server: ICRC PRD App Secured Gateway
last-modified: Tue, 10 Jan 2023 07:10:12 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:49 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 207457de2bafb018790bc7c8ee1efce8
b2af4a4c0068f81ced26608bc457db8167fc2545
049b10884a649d5424b94322722caf3ce221dc137a4789b1056e664346d10d9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
services1.arcgis.com/HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/icrc_wd_special_boundingbox_epsg4326/FeatureServer/0/query?f=geojson&where=ISO2%20%3D%20%27BR%27&outFields=*&outSR=4326
54.230.111.22200 OK 539 B URL HTTP/2 services1.arcgis.com/HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/icrc_wd_special_boundingbox_epsg4326/FeatureServer/0/query?f=geojson&where=ISO2%20%3D%20%27BR%27&outFields=*&outSR=4326
IP 54.230.111.22:0
File type JSON data\012- , ASCII text, with very long lines (1022), with no line terminators
Hash 50006509aa4374612b370091122d1f77
0d2b8f5fb12d936a779281f09857f9ea1ff340a7
06595007e66a295d79014a0a57d325b0a8b41ac585d9fa3ed69b3f25db5ea909
GET /HCIJ2DmtdLnNlsE1/ArcGIS/rest/services/icrc_wd_special_boundingbox_epsg4326/FeatureServer/0/query?f=geojson&where=ISO2%20%3D%20%27BR%27&outFields=*&outSR=4326 HTTP/1.1
Host: services1.arcgis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 539
cache-control: public, max-age=30, s-maxage=30
content-encoding: br
last-modified: Tue, 21 Dec 2021 10:16:24 GMT
etag: sd24468_-112707078
x-arcgis-trace-id: 5a2fe895eecded70087ec5a59ba10c4b
x-esri-query-request-units: 2
x-esri-tiles-basic-query-mode: true
x-esri-tiles-basic-query-type: Basic
x-esri-org-request-units-per-min: usage=4;max=6000
x-esri-query-max-vertex-count: 5
x-esri-query-geometry-field-name: Shape
x-arcgis-correlation-id: 00-5a2fe895eecded70087ec5a59ba10c4b-a9aaee88761bb458-00
x-arcgis-instance: i7tdixsfq00000K
strict-transport-security: max-age=63072000
access-control-allow-origin: *
date: Tue, 07 Feb 2023 22:37:49 GMT
x-cache: RefreshHit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FAK993li4Xkg-VGdlQLosTALOsejWLxey8gyIo8nhPsFWToJG0Y68Q==
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__pt.js
142.250.74.99200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__pt.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (675)
Size 165 kB (164967 bytes)
Hash c42fcee7db44919a9d2fbc9def129e68
033d691700ae5f37636977ba3d4c2ce9a1c4aa07
b420a8f7172adb2f1a2896a2feb3aa8a02ac18cdff4ca5a1cba5a77c0d2d96f6
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__pt.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164967
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 17:11:25 GMT
expires: Wed, 07 Feb 2024 17:11:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 19585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8604
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 22:37:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8604
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 22:37:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8604
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 22:37:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de2fe3c9a2b091689a7213c4f781446
385fa88a857ba301f37ab56d72d11fb49abd8c6b
b64b11a68493fa304aa6102bf9b9ff11fab5e1536ecf768e4b0fa51470ae2293
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13714
x-amzn-requestid: 8f776dba-4e5d-46e5-a3ac-459d86852375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PFjGNHIAMFrMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c556-74429dc755cc37672c68b58b;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Cf-MbK2WIFs3foM-_Ou5OUg7IS8ovfw-dHJnIpVUvpeAbMi-TeC5SA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:34 GMT
etag: "385fa88a857ba301f37ab56d72d11fb49abd8c6b"
content-type: image/jpeg
age: 2596
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308abacb-8d5b-49bf-9e2b-59b6b40157cb.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308abacb-8d5b-49bf-9e2b-59b6b40157cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2bf626b824fefec1ecaceb9243f2e5ec
f222976d76d889a0cd767bfd73075ee114c531ce
3f981850c6e6628245be7f7e26418d8b945dbeaf45e06492d8e2ee9409245195
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308abacb-8d5b-49bf-9e2b-59b6b40157cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12772
x-amzn-requestid: a4603c5c-c842-4a1d-bf09-550f160e1082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7OEz8oAMFbOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-763b7ecf50411a4d13dd8a25;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ECAdRS7as57pL15HxK4Ep0YOho8Kba8RFhMVnXGdJuKYItQHNf2yHA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:53:57 GMT
age: 2633
etag: "f222976d76d889a0cd767bfd73075ee114c531ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7543be9bef0afb8f61344286b7136dd7
e1537aa408cde39d2a314cc2a14f7f7a04a84eb1
162f0898f88d84c8d06542e48e8ff6a903e638f2a837f32681ae1f5e28ae40d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7303
x-amzn-requestid: 081c79e9-2b23-47ad-8b7d-7197c5515c0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f58kdHMvIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a7b5-66fca524070e374310920915;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CV8Q0EwlleoBURF3IvwUGDm_ANrg_SINlUR3cl6OhqySJPejP6T0hg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:41:21 GMT
age: 53789
etag: "e1537aa408cde39d2a314cc2a14f7f7a04a84eb1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 55324
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b327816bc2c6fd7291c75c693685d54
771070be61d0724b1c90ca86ea34c804bd7e501a
d45188239cacc7b228bc75ccc95afb48914aaa434c418cd5b786533e8b9cb983
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6838
x-amzn-requestid: 54fc5ae9-d37a-46cf-97e0-d05de1417cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7QEsCoAMFY1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-40de6212468fcd0e78a93708;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mgfr5wO7Bj5BVjKYY7O0c4ogLognfq09QrA9khZROr2CVyOWgKTz1g==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:53:56 GMT
age: 2634
etag: "771070be61d0724b1c90ca86ea34c804bd7e501a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TCX7ZFhV73kN0UBshXeb0qdSkY-8qdeNN6EgioqOUmSAnraEhAohMQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:11 GMT
age: 3339
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c471b21d134490ae24442cdb78208a9d
bfa9c84e2ee28ac6fdc9d505fd00439d8792043b
d1b607c65d35a568c2b04ae86635d85bb84912cfe78f6e2915e325d659259b08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 22:35:53 GMT
expires: Tue, 07 Feb 2023 22:50:53 GMT
cache-control: public, max-age=900
age: 117
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
172.217.21.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 172.217.21.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 07 Feb 2023 22:37:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c471b21d134490ae24442cdb78208a9d
bfa9c84e2ee28ac6fdc9d505fd00439d8792043b
d1b607c65d35a568c2b04ae86635d85bb84912cfe78f6e2915e325d659259b08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash ddbcc8409304b59c7d2faa53ed360fb5
98746db490891a3e5aa21f3dff58438d0c7795d5
b0ffc1ea39f25451920b84f09d650c564bd412bca0e2db72d99e736e385a176d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
172.217.21.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 172.217.21.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 07 Feb 2023 22:37:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 07 Feb 2023 22:37:50 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 5bcb9125c18e4ed3562ceb950dc6eaad
a6c6944804b772de3a487723e3e866c0219de230
94947430d745a6648a2e87f163bf474b4fd4513519360bf4bfecfabc141e5ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/dmR7aMZhpUGxXU8vYsM9MYWlbSW0lxfxjbRhFsF7E9Q.js
216.58.207.228200 OK 14 kB URL HTTP/2 www.google.com/js/th/dmR7aMZhpUGxXU8vYsM9MYWlbSW0lxfxjbRhFsF7E9Q.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (35901)
Hash f48d26fa9ad0d03051b76570c1ceb3f4
c655b97693149f733e24548b380b652967720939
5f1167fdda70ef7585fcc20b8c7a0a371ceefa2b28ba80c4115e69e3f7a006c9
GET /js/th/dmR7aMZhpUGxXU8vYsM9MYWlbSW0lxfxjbRhFsF7E9Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14207
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 10:00:51 GMT
expires: Mon, 05 Feb 2024 10:00:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jan 2023 12:00:00 GMT
content-type: text/javascript
age: 218219
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a593987e81939a6644369f7676f9179c
9f2e57e0f9318e73ff826c1311a87007176e29ca
da67252d83b9af7bc6a8bdf9d54162e035eddbc0e84e61cdcbd200f0979b3e79
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 Feb 2023 22:37:50 GMT
server: ESF
cache-control: private
content-length: 30858
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 325a8a10ce2837a8c6820e30572d181c
195d6189f0f10fcb301fce3af4c27028bbcb9eaa
2f1a0e948582fa64266617acc77e9beb71c5031d9cffe1bed1393a554f259810
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 77efbbf5c5345e41a94ca812fca694d6
fc84a20a40c9535738ce273c47d3bfd74248c736
0c02c979151e3ae377b92dc95c6a7109242ab9e9accce175cff73fcb76f12223
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 Feb 2023 22:37:50 GMT
server: ESF
cache-control: private
content-length: 30759
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odepv=1&alr=yes&id=44101
172.217.21.174200 OK 237 B URL HTTP/2 redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odepv=1&alr=yes&id=44101
IP 172.217.21.174:0
File type ASCII text, with no line terminators
Hash 928fd7dc7bd5041ea495e17dfbd3a516
9979be97ae60c0b2e11f018bae1f131200f0a2d0
1bf09d162e1a9adcb312455ea6f69dc160cb2a8ecb844215835e4ad27bf24747
GET /initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odepv=1&alr=yes&id=44101 HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 237
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 07 Feb 2023 22:37:51 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d4055de8cb4c092bdb318234a791c3a1
0982e6927e934aee1c63e7ca531849220a400130
458609180872580ddb0b09c399657b06d80de741cdd818f32b49a8f06e351a19
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1118
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 Feb 2023 22:37:51 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 4fe8a46e4fe7c971a068b163b275e25a
5ca9fb282e652f18298c755e61c5e38665ddc7b1
c4639e8bacf773e2ad7c0256587dcabb3db19ceda949ffd365358091e1eef0f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 13370dcedeaf8987047cb7cfd4bfa25f
cc4b7e79c14104030a2faa6bd2ec18d5c9f50190
abdc10b39e3b64b79fbd1931fb74cdf2a91d9b65a6562575dda90193a744f73c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 13370dcedeaf8987047cb7cfd4bfa25f
cc4b7e79c14104030a2faa6bd2ec18d5c9f50190
abdc10b39e3b64b79fbd1931fb74cdf2a91d9b65a6562575dda90193a744f73c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AL5GRJXFElOk8j4adHyiRAKEvhTSL9LoY-3Sdp8lL25RsA=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 1.7 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJXFElOk8j4adHyiRAKEvhTSL9LoY-3Sdp8lL25RsA=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 5fc563514005529ce5ee9aed833bba28
0503471b9e30a851c82836abad4c323af60896e5
cbe4dcc03ff372c53318a8d45b3dff4e49a570b6456951932e65b3c8205bc53f
GET /ytc/AL5GRJXFElOk8j4adHyiRAKEvhTSL9LoY-3Sdp8lL25RsA=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1694
x-xss-protection: 0
date: Tue, 07 Feb 2023 19:19:41 GMT
expires: Tue, 24 Jan 2023 21:31:49 GMT
cache-control: public, max-age=86400, no-transform
age: 11890
etag: "v2188"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 4fe8a46e4fe7c971a068b163b275e25a
5ca9fb282e652f18298c755e61c5e38665ddc7b1
c4639e8bacf773e2ad7c0256587dcabb3db19ceda949ffd365358091e1eef0f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/tQ005pX4BAE/maxresdefault.webp
142.250.74.182200 OK 65 kB URL HTTP/2 i.ytimg.com/vi_webp/tQ005pX4BAE/maxresdefault.webp
IP 142.250.74.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8ce5b5bfe51a8b79ce6d185393e361cf
05c3f449b454d2d55f034b94f67b51f36a92be6a
98a73c66eecc5daff7dee18bd067e51950ea9a9209fdf74ddeb8221291e6a307
GET /vi_webp/tQ005pX4BAE/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 65422
date: Tue, 07 Feb 2023 22:37:51 GMT
expires: Wed, 08 Feb 2023 00:37:51 GMT
cache-control: public, max-age=7200
etag: "1476237621"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/LH4N73tiV48/sddefault.webp
142.250.74.182200 OK 32 kB URL HTTP/2 i.ytimg.com/vi_webp/LH4N73tiV48/sddefault.webp
IP 142.250.74.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 24952bf089423262b739db73423e223f
bcdc57a631961f61c1c47afa9e57bccfe3a6745c
7c019b80d308591930c3553cf4cbf7fa86edb27507ef6a2b2e0cc7810405de38
GET /vi_webp/LH4N73tiV48/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 32240
date: Tue, 07 Feb 2023 22:37:51 GMT
expires: Wed, 08 Feb 2023 00:37:51 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 13370dcedeaf8987047cb7cfd4bfa25f
cc4b7e79c14104030a2faa6bd2ec18d5c9f50190
abdc10b39e3b64b79fbd1931fb74cdf2a91d9b65a6562575dda90193a744f73c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.icrc.org/sites/default/themes/icrc_theme/images/maps/marker-regional-delegation.png
51.103.133.178200 OK 2.6 kB URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/images/maps/marker-regional-delegation.png
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 34 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash a4f58232d151425ebb2b0cead8446dd4
31f1e38c0a3c3c882ce9d1f61ffbb5d8d059735f
32e5c0b276eb802141d66350efd82651aaa50ae20519f9014d6fc69dcf33d71c
GET /sites/default/themes/icrc_theme/images/maps/marker-regional-delegation.png HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:51 GMT
content-type: image/png
content-length: 2630
server: ICRC PRD App Secured Gateway
last-modified: Wed, 11 Dec 2019 14:18:01 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:51 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 9.8 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 4-bit colormap, non-interlaced\012- data
Hash 19de8dd7c1eb5ddd33271acb1a236e2d
479d3075565510c7180ed0ebe09f795e4047df28
1796ac6cb99a2afa70fbc50ab69e3dcf0cd87d5c65397f206c4bc39b999bd5cc
GET /styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 9821
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "0f8d77ab7c18af76f69ebffe2e77d692fe26b410ddad6329e080539aec30ff2e"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OTAtGqXN0_aJOHB5t9v9UmvQ-Pyeps1bq3hv9aA_tuEmZHrBrwF_8Q==
Age: 5874
a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/1/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 8.2 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/1/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 4-bit colormap, non-interlaced\012- data
Hash cb855d843abcdeab81e9fd119c6398a9
a86e1e414af9b1c892c79eaf94536c3340cf8e9d
046bfd91a0a50c3eb106b3beba6c2366bb9f7652e48b5ef7f2ee8d5988dcd7e9
GET /styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/1/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 8222
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
Date: Tue, 07 Feb 2023 22:37:51 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "2f1d90838d2b150b9dbbc44e85736676dfc620202abdd87926dab5bad27a7b2c"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pIWjiNIuKtMGzdjbcSplpxuugnMvYn9K8SjU_6d7yUvsY9hHSf0hNw==
Age: 5874
a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/0/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 2.3 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/0/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 4-bit colormap, non-interlaced\012- data
Hash 164862bcf32018b7756d29a5c3f00602
433afea6c40bbde861a3d7b71538c5947019fa2e
cd6187cfccd306ac8a444b60383800ed795b0d543bac151122327b52b7f39daa
GET /styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/0/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2261
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
Date: Tue, 07 Feb 2023 17:02:18 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "c5ab790246e49f39de5985dfb5ff391f3664d8b24522d30efc7b49c91ce88004"
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dvuMmYRBH1Wu_kgYvm3Oi_pTHDLflQRruqoNlWonsC1aFvjczy0E7w==
Age: 20133
a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/1/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 3.4 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/1/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 4-bit colormap, non-interlaced\012- data
Hash 2a399e796709cc8e357c92f76e441137
5c675fe5106758d2c59e5f66ff34ebcb04046fdd
8d5903c2b6bdee1fab011a76a244f28ba16974265692a2626432c77d8eab1e4b
GET /styles/v1/icrc/cj1g8f1xh000y2rp1qkctr5id/tiles/1/1/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3427
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
Date: Tue, 07 Feb 2023 17:02:18 GMT
Cache-Control: max-age=43200,s-maxage=43200
ETag: "03c3e0fe8270bba08d95e67127bc9079b6d65c0ce7ff6257886614fc8b952242"
X-Cache: Hit from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fXt7-83_qeOuy7DQ42NVPL0ljsPAOOuz-lmGYefivL9QmaJgv0iCbQ==
Age: 20133
www.youtube.com/embed/8eQM7ySIUuo
142.250.74.78200 OK 28 kB URL HTTP/2 www.youtube.com/embed/8eQM7ySIUuo
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58598)
Hash c27966ee067d7354b5364c05f88009ac
f553a4d06fd1f685f41b90e2cac2fc76d5583ac1
dddd8ec8884ca9805463b01908ffed55c6f6b6b54f91a55a3ddbf5d6e0f72c41
GET /embed/8eQM7ySIUuo HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 Feb 2023 22:37:48 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=vmFtuiCK284; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpVME5qZzJNRE15TXpRME56SXdOUT09ELyli58GGLyli58G; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=D0xRFL0u9BE; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+857; expires=Thu, 06-Feb-2025 22:37:48 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
extend.vimeocdn.com/ga/45687980.js
151.101.246.109200 OK 5.6 kB URL HTTP/2 extend.vimeocdn.com/ga/45687980.js
IP 151.101.246.109:0
File type Unicode text, UTF-8 text, with very long lines (16858)
Hash 83eba8b0e75ce00d93d7044d0c3a9851
37daa8e5ded997f29c16bfe8fee8bf22ce7ab563
9216d6f8c1b56658ddb12c7e3ea1003b81aead850e2a8c99c014a2bcf5112d34
GET /ga/45687980.js HTTP/1.1
Host: extend.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Sep 2022 18:23:26 GMT
etag: "421e-5e7a1b598e380-gzip"
expires: Sun, 29 Aug 2032 19:32:02 GMT
content-encoding: gzip
x-bapp-server: assets-67ff759c65-v5tqh
x-vimeo-dc: ge
timing-allow-origin: *
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
date: Tue, 07 Feb 2023 22:37:51 GMT
via: 1.1 varnish
age: 13748749
x-served-by: cache-hel1410027-HEL
x-cache: HIT
x-cache-hits: 21711
x-timer: S1675809472.990854,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=86400
content-length: 5579
X-Firefox-Spdy: h2
secure.adnxs.com/px?id=1573242&seg=29701953&t=1
185.83.142.19307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/px?id=1573242&seg=29701953&t=1
IP 185.83.142.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px?id=1573242&seg=29701953&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Tue, 07 Feb 2023 22:37:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fpx%3Fid%3D1573242%26seg%3D29701953%26t%3D1
AN-X-Request-Uuid: 79c27404-a301-4091-add2-4b317c49c417
Set-Cookie: uuid2=3418037032312029906; SameSite=None; Path=/; Max-Age=7776000; Expires=Mon, 08-May-2023 22:37:52 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/1/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 27 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/1/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 49d31161463ef776fde17add24a7f11e
c3baad8a73737c1da39261dc909fd71762ed146a
e56369572ffd802b16fe5cfb411cc0952a4436769c5fe2b15ae45c7639f083a5
GET /styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/1/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 27077
Connection: keep-alive
Date: Tue, 07 Feb 2023 22:37:52 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Cache-Control: max-age=43200,s-maxage=43200
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
ETag: "7e9822eaad371d9871914db8081dfc24567f77187930046e574b7e7c787a2d92"
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -Jh1p4t30Ev4KeMBF9Izzk4-3X1pVLcFZ9wmzlGIxns6HX27B6tNCg==
secure.adnxs.com/bounce?%2Fpx%3Fid%3D1573242%26seg%3D29701953%26t%3D1
185.83.142.19200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fpx%3Fid%3D1573242%26seg%3D29701953%26t%3D1
IP 185.83.142.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fpx%3Fid%3D1573242%26seg%3D29701953%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 07 Feb 2023 22:37:52 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 9a95735d-c496-4a84-a450-0659bab71e01
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 26 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash 377760a1bba659edd08e331bde39e17b
e55473e05d75a786bbf0ce28b13d34fabcdb2d2d
5155190d967d2ad3e8baf8e602627b44251839e8b8d97a13b157c529335fa8cd
GET /styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/0/0?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 26140
Connection: keep-alive
Date: Tue, 07 Feb 2023 22:37:52 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Cache-Control: max-age=43200,s-maxage=43200
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
ETag: "01ee7b3a22a0fb3643f62e43a6ead519dac1893452e417c4d913b4cc34efc080"
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 98Swu_0qVsEGoX9L6fOOrOs9kY5NYU1S4Wg-CIWxpy6lqOA2Tt4EWw==
a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/0/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 5.2 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/0/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash a378c4069259e5afde9625cf96678fb6
bce91dc399d0f07c254a0de04031a63b07558cff
0710be20f467d5252ab2d07b95ecd08911a0803ab056abed69797209e17b3f1b
GET /styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/0/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 5246
Connection: keep-alive
Date: Tue, 07 Feb 2023 22:37:52 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Cache-Control: max-age=43200,s-maxage=43200
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
ETag: "a11723b1221166f3c183979c5bc260aef7f51f6e4a9f7b38968c736b383122a3"
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LVUhbjlEMAuav6-CxgJ9qLhIyIlWHUNzwrsfOQmTxHJ1w65fv_17wA==
a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/1/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
54.230.216.182200 OK 9.1 kB URL HTTP/1.1 a.tiles.mapbox.com/styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/1/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w
IP 54.230.216.182:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash b96a4a1120832e09ed865a8e26de2bdf
11aea5ef49b93cb2a1e71c2f8f1526b475643486
fc368770b9712861558f31c351fe5bb957b9415d6cfcade2e33c3b08f2bf8ef0
GET /styles/v1/icrc/cjore44uz2qwg2rn0y7l0vbzl/tiles/1/1/1?access_token=pk.eyJ1IjoiaWNyYyIsImEiOiJ5dlNMaUhnIn0.QG1pZIPyfyekyHFAS6vb2w HTTP/1.1
Host: a.tiles.mapbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 9097
Connection: keep-alive
Date: Tue, 07 Feb 2023 22:37:52 GMT
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Cache-Control: max-age=43200,s-maxage=43200
X-Rate-Limit-Limit: 6000
X-Rate-Limit-Interval: 60
ETag: "becbea539880bbc23daea01401e96648b59270a37dd51de8fb2fca2c8f6cd0f8"
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1ThLOH2nDL13gQia-fqO8bMZiXwfwocjxC0xSAUVGTWxbzugbP2esg==
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0ef48efc9397425d18a571f08bde2f98
4f62146c32277c9055ee55b10d582e7360f600fb
63a0a11ca8b361fb6b31a458a3efa8b5fec88eccbe0485738015648540b9e48d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5780
Cache-Control: max-age=92868
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Etag: "63e183f0-117"
Expires: Thu, 09 Feb 2023 00:25:40 GMT
Last-Modified: Mon, 06 Feb 2023 22:49:20 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Tue, 07 Feb 2023 22:37:52 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4306
Cache-Control: max-age=147503
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Etag: "63e25f1d-1d7"
Expires: Thu, 09 Feb 2023 15:36:15 GMT
Last-Modified: Tue, 07 Feb 2023 14:24:29 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
acdn.adnxs.com/dmp/up/pixie.js
151.101.65.108200 OK 3.3 kB URL HTTP/1.1 acdn.adnxs.com/dmp/up/pixie.js
IP 151.101.65.108:0
File type ASCII text, with very long lines (9139), with no line terminators
Hash 75b9af81e30e45403e6856566e888545
d013e9a47331447f32c2bdf6f35b286e711788f0
dd26e2e55783f6174ceea7c7a3b10e5af1c7fca56fc2543956a38b848f32a151
GET /dmp/up/pixie.js HTTP/1.1
Host: acdn.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3340
Server: nginx/1.18.0 (Ubuntu)
Content-Type: application/javascript
Last-Modified: Wed, 02 Jun 2021 15:04:00 GMT
ETag: W/"60b79de0-23b3"
Expires: Mon, 31 Oct 2022 05:58:51 GMT
Cache-Control: max-age=86402
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 07 Feb 2023 22:37:52 GMT
Age: 73588
X-Served-By: cache-lga21930-LGA, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 13, 14912
X-Timer: S1675809473.507075,VS0,VE0
Vary: Accept-Encoding
i.ytimg.com/vi_webp/8eQM7ySIUuo/maxresdefault.webp
142.250.74.182200 OK 12 kB URL HTTP/2 i.ytimg.com/vi_webp/8eQM7ySIUuo/maxresdefault.webp
IP 142.250.74.182:0
File type gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /vi_webp/8eQM7ySIUuo/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 60692
date: Tue, 07 Feb 2023 22:37:51 GMT
expires: Wed, 08 Feb 2023 00:37:51 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/779809802/?random=1675809523686&cv=11&fst=1675807200000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tiba=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2688164742&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/779809802/?random=1675809523686&cv=11&fst=1675807200000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tiba=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2688164742&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/779809802/?random=1675809523686&cv=11&fst=1675807200000&bg=ffffff&guid=ON&async=1>m=45be3260&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tiba=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2688164742&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 22:37:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Rv/oHyY8sIhWpFRQpyyM70m1hF+I+/zS8dKTSB1GLImgIvO7uhWgsVHeWkUz0iKc1Un/OzvENjyt8PAj6c8USg==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 07 Feb 2023 22:37:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/987909199/?random=1675809523492&cv=11&fst=1675809523492&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=CHGtCN7t__kCEM-YidcD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tiba=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&value=0&bttype=purchase&auid=278588851.1675809523&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.67200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/987909199/?random=1675809523492&cv=11&fst=1675809523492&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=CHGtCN7t__kCEM-YidcD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tiba=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&value=0&bttype=purchase&auid=278588851.1675809523&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.67:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/987909199/?random=1675809523492&cv=11&fst=1675809523492&bg=ffffff&guid=ON&async=1>m=45He3260&u_w=1280&u_h=1024&label=CHGtCN7t__kCEM-YidcD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tiba=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&value=0&bttype=purchase&auid=278588851.1675809523&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 22:37:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4306
Cache-Control: max-age=147503
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Etag: "63e25f1d-1d7"
Expires: Thu, 09 Feb 2023 15:36:15 GMT
Last-Modified: Tue, 07 Feb 2023 14:24:29 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.icrc.org/sites/default/themes/icrc_theme/fonts/merriweather/Merriweather-Regular.ttf
51.103.133.178200 OK 20 kB URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/fonts/merriweather/Merriweather-Regular.ttf
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 733b760f3eb82d03a5fea2abe988c611
f4d8e9eccb7980b6018834ac2de288e8ec67b035
37d7a0d72c2a0207c27699536fe0a4542bf8eecdba1b5a041c6da166da6048c7
GET /sites/default/themes/icrc_theme/fonts/merriweather/Merriweather-Regular.ttf HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/font-sfnt
server: ICRC PRD App Secured Gateway
last-modified: Thu, 20 May 2021 06:26:39 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40697345-5&cid=1077510437.1675809524&jid=860170808&gjid=1127849396&_gid=235595111.1675809524&_u=YGBAgUABAAAAAEAAo~&z=1956677036
142.250.150.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40697345-5&cid=1077510437.1675809524&jid=860170808&gjid=1127849396&_gid=235595111.1675809524&_u=YGBAgUABAAAAAEAAo~&z=1956677036
IP 142.250.150.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-40697345-5&cid=1077510437.1675809524&jid=860170808&gjid=1127849396&_gid=235595111.1675809524&_u=YGBAgUABAAAAAEAAo~&z=1956677036 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.icrc.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 07 Feb 2023 22:37:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 54d649dc77722e12f2c9d165fbcf6608
e92dff115a46cd6f4dbab7cac74429aaa2d9c9ff
a9721eb4f4df631abe0bd13017c77d2384747f33e89c199bc7cd3d1109b37772
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5073
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Last-Modified: Tue, 07 Feb 2023 21:13:19 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 313
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1ddff93af323edd1426775c7949f93d3
d97fa9ee27fd711e8090ce539f35ce64f90a4cd1
9d6f627a3a5c33f984e8121c74dc11e34ccc3cb9881257a9ab3d515282657ae1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2303
Cache-Control: max-age=112405
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:52 GMT
Etag: "63e1ddd6-117"
Expires: Thu, 09 Feb 2023 05:51:17 GMT
Last-Modified: Tue, 07 Feb 2023 05:12:54 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
bat.bing.com/action/0?ti=15336844&Ver=2&mid=a170cf94-e0d3-4b51-8ffe-fb8f8e3b517b&sid=2d8cea70a73811ed92d1892f518584e8&vid=2d8d5160a73811edafaa39b43ca3bc1e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&p=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&r=<=3305&evt=pageLoad&sv=1&rn=716142
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15336844&Ver=2&mid=a170cf94-e0d3-4b51-8ffe-fb8f8e3b517b&sid=2d8cea70a73811ed92d1892f518584e8&vid=2d8d5160a73811edafaa39b43ca3bc1e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&p=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&r=<=3305&evt=pageLoad&sv=1&rn=716142
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15336844&Ver=2&mid=a170cf94-e0d3-4b51-8ffe-fb8f8e3b517b&sid=2d8cea70a73811ed92d1892f518584e8&vid=2d8d5160a73811edafaa39b43ca3bc1e&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Projeto%20Rio%3A%20Programas%20ajudaram%20a%20reduzir%20as%20consequ%C3%AAncias%20humanit%C3%A1rias%20da%20viol%C3%AAncia%20no%20Rio%20de%20Janeiro%20%7C%20Comit%C3%AA%20Internacional%20da%20Cruz%20Vermelha&p=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&r=<=3305&evt=pageLoad&sv=1&rn=716142 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=10F5BD61DF7B699F2084AFD0DE8E687F; domain=.bing.com; expires=Sun, 03-Mar-2024 22:37:52 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8041E748353341CB8ED18E65143A60D6 Ref B: OSL30EDGE0517 Ref C: 2023-02-07T22:37:52Z
date: Tue, 07 Feb 2023 22:37:52 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 912dbdfd52f101d5fff4e445f67aaafe
bb02da32f3fd94f89d29dd5712142a6c63eb11a6
31c1af8e7bf33123c5f93104b9b0b9780712824dfe3636f80d8c4a5af6573816
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6338
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:53 GMT
Last-Modified: Tue, 07 Feb 2023 20:52:15 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 314
ib.adnxs.com/pixie?e=PageView&pi=5df6da43-bf6a-40fd-834a-93981c7df1ef&it=1675809524249&v=0.0.20&u=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&st=1675809524249&et=1675809524249&if=0
185.89.210.101200 OK 42 B URL HTTP/1.1 ib.adnxs.com/pixie?e=PageView&pi=5df6da43-bf6a-40fd-834a-93981c7df1ef&it=1675809524249&v=0.0.20&u=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&st=1675809524249&et=1675809524249&if=0
IP 185.89.210.101:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixie?e=PageView&pi=5df6da43-bf6a-40fd-834a-93981c7df1ef&it=1675809524249&v=0.0.20&u=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&st=1675809524249&et=1675809524249&if=0 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Tue, 07 Feb 2023 22:37:53 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 953.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
bat.bing.com/p/action/15336844.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/15336844.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/15336844.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: E205CBB74B6F47E6B85098307FD76C32 Ref B: OSL30EDGE0517 Ref C: 2023-02-07T22:37:52Z
date: Tue, 07 Feb 2023 22:37:52 GMT
X-Firefox-Spdy: h2
track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=2537822&rcu=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&pu=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&t=Projeto+Rio%3A+Programas+ajudaram+a+reduzir+as+consequ%C3%AAncias+humanit%C3%A1rias+da+viol%C3%AAncia+no+Rio+de+Janeiro+%7C+Comit%C3%AA+Internacional+da+Cruz+Vermelha&cts=1675809524340&vi=e6644fcb63a13f99e94fe0020be0dcdc&nc=true&ce=false&cc=0
104.19.155.83200 OK 45 B URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=2537822&rcu=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&pu=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&t=Projeto+Rio%3A+Programas+ajudaram+a+reduzir+as+consequ%C3%AAncias+humanit%C3%A1rias+da+viol%C3%AAncia+no+Rio+de+Janeiro+%7C+Comit%C3%AA+Internacional+da+Cruz+Vermelha&cts=1675809524340&vi=e6644fcb63a13f99e94fe0020be0dcdc&nc=true&ce=false&cc=0
IP 104.19.155.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=2537822&rcu=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&pu=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&t=Projeto+Rio%3A+Programas+ajudaram+a+reduzir+as+consequ%C3%AAncias+humanit%C3%A1rias+da+viol%C3%AAncia+no+Rio+de+Janeiro+%7C+Comit%C3%AA+Internacional+da+Cruz+Vermelha&cts=1675809524340&vi=e6644fcb63a13f99e94fe0020be0dcdc&nc=true&ce=false&cc=0 HTTP/1.1
Host: track.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:53 GMT
content-type: image/gif
content-length: 45
cf-ray: 795f9cd63e8bb51e-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: 7028c0e2-e6e8-4e3e-ab65-04bed8b6226a
x-robots-tag: none
set-cookie: __cf_bm=LVzrZHkNK9CP5Gob5XqdihjYYve_SIB0L4RvHMX1tBI-1675809473-0-ASIGmsZuE1Yk+XlLSgwnF5rQyCXtXtJPLRpTAMYOWT4qHjqy6e6isv3xA6/Dym5vX4qGSMw4DFlNfky/uLqVwmY=; path=/; expires=Tue, 07-Feb-23 23:07:53 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIbMM0jx0rH6zyG5yQCKwF3wfdi0WTci74Mq%2BR%2BATrTuT07Zj0zolBLgCU2ZmJL5DRZJjVQgXadE2fcIEEhZMBnhPmWcK%2Fi3dUzW9Z%2FjAxUC9OV7T0o4gICd%2Bqi2k2Si1sev"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1ddff93af323edd1426775c7949f93d3
d97fa9ee27fd711e8090ce539f35ce64f90a4cd1
9d6f627a3a5c33f984e8121c74dc11e34ccc3cb9881257a9ab3d515282657ae1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2304
Cache-Control: max-age=112405
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:53 GMT
Etag: "63e1ddd6-117"
Expires: Thu, 09 Feb 2023 05:51:18 GMT
Last-Modified: Tue, 07 Feb 2023 05:12:54 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1a0f0b1284326395d349facb020c90eb
c3d973c941f03667dd3819cca5e34927284722e1
444afac7a98d63651f1f02af67c0669ffa19714d819b62130668891472c0fdb4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5134
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:53 GMT
Last-Modified: Tue, 07 Feb 2023 21:12:19 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 264cf2aed8b8db8e4dc07106d56352b8
e5fc3f0b640202fc3ef546077fd9926f876eefc4
c31c7cad01870e40982d413f8341185de7daa7c9bde97f8388ddacd2f7f0191b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5711
Cache-Control: max-age=120881
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:53 GMT
Etag: "63e1f1a3-117"
Expires: Thu, 09 Feb 2023 08:12:34 GMT
Last-Modified: Tue, 07 Feb 2023 06:37:23 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
js.hsadspixel.net/fb.js
104.17.113.176200 OK 2.8 kB IP 104.17.113.176:0
File type ASCII text, with very long lines (5795)
Hash cfd4f88bb45796fc2c8712ebf775946d
dd7539352056723fefa24c80ed542cda3b1b35b3
667b50ee004abf6ba68546d4b95a132c7ba2fcd83e127bb6cd6538adabfb12aa
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:53 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 31 Jan 2023 04:09:31 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: voeLZ8jD1qAOp4h9t0pVQ2YHSdN3ebgQ
etag: W/"bde7af4ffd2c05ea8423271f767ebc69"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3d4bfc42e9575ee1f9559241c9e3f464.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: fb00K5U7n7881TJbLs1w-BQ7ShyNmjgLrBCAfn7u6pO7cvXS0IX9XQ==
age: 28
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.317/bundles/pixels-release.js&cfRay=79498ab988730b51-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.317/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 795f9cd74dc31c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 28 kB IP 93.184.220.29:0
Hash 98ec3be6a6ee9a8668dbb9d4512d9e3c
ab04a23bfddf601171713d2232641efa08a47e19
9f1204afa93e9dcc658aa0565bddb3f9cf1aec5e78a2a2948f7277199768ba75
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5475
Cache-Control: max-age=163069
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:53 GMT
Etag: "63e2975b-116"
Expires: Thu, 09 Feb 2023 19:55:42 GMT
Last-Modified: Tue, 07 Feb 2023 18:24:27 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=6e3d1b7f-f303-4bc7-a893-17447d48a91c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=73a2fbf8-3b3a-4db5-8123-75ddb17876b6&tw_document_href=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nzlxi&type=javascript&version=2.3.29
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=6e3d1b7f-f303-4bc7-a893-17447d48a91c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=73a2fbf8-3b3a-4db5-8123-75ddb17876b6&tw_document_href=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nzlxi&type=javascript&version=2.3.29
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=6e3d1b7f-f303-4bc7-a893-17447d48a91c&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=73a2fbf8-3b3a-4db5-8123-75ddb17876b6&tw_document_href=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nzlxi&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:52 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_itOoG9LVlnx0ySrgbRlwhw=="; Max-Age=63072000; Expires=Thu, 06 Feb 2025 22:37:53 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 28170a791dabe28e
strict-transport-security: max-age=631138519
x-response-time: 102
x-connection-hash: 93e83aad826762acc3ef15cf3bf8e2efded50d9859c61e3d0a775320574b43e2
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
104.17.233.204200 OK 88 kB URL HTTP/2 js.hsleadflows.net/leadflows.js
IP 104.17.233.204:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash cf04ca6a5495a98678e071f3b391eb9d
d4863db45f300ba564c1bfaed339c02889bb085f
9a3a419f600ecdd81bdfe77115fec17b803261f1396174fea71da522d7acabc5
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:53 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 02 Feb 2023 01:26:06 UTC
etag: W/"998dfd36d3c4078a3a05a1a77e61963c"
x-amz-server-side-encryption: AES256
x-amz-version-id: 9g41IgVIr3w9wyiFOHn4rgapkQc72OJD
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 66b6cd04ec22251498906e833eb08668.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: Utz8Kk8KUtLE3JI8aYzPp7K8pINykRnhR5vE3hZYwXI7kgCDceg_uA==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1134/bundle/main/lead-flows-release.js&cfRay=793b87771e6d737f-ARN
x-hs-target-asset: lead-flows-js/static-1.1134/bundle/main/lead-flows-release.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 28694
server: cloudflare
cf-ray: 795f9cd788e5b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1152626968150232&ev=PageView&dl=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&rl=&if=false&ts=1675809524922&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675809524920.1202062408&it=1675809524362&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1152626968150232&ev=PageView&dl=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&rl=&if=false&ts=1675809524922&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675809524920.1202062408&it=1675809524362&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1152626968150232&ev=PageView&dl=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio&rl=&if=false&ts=1675809524922&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675809524920.1202062408&it=1675809524362&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 07 Feb 2023 22:37:53 GMT
X-Firefox-Spdy: h2
www.youtube.com/embed/HTBZK-pbhtY
142.250.74.78200 OK 138 kB URL HTTP/2 www.youtube.com/embed/HTBZK-pbhtY
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58608)
Size 138 kB (137781 bytes)
Hash 4eaa3c609b3ea372a8a54b0fe8dd27e7
cea5494ebf4c5ac5e43dd7d4f43b982163ad9b7c
82be43298cf04afe4ae4dbbc0fb8dbb6ab46562b703148e4f8438b7e620037c7
GET /embed/HTBZK-pbhtY HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 Feb 2023 22:37:48 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=qqUwT7bQU4o; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=W9CXcC82uhc; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpVME5qZzJNREV3TURFMU5qVXlNdz09ELyli58GGLyli58G; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+314; expires=Thu, 06-Feb-2025 22:37:48 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=2537822&conversations-embed=static-1.12048&mobile=false&messagesUtk=28eb01e7d7d14647a4ed7804eb15e4c4&traceId=28eb01e7d7d14647a4ed7804eb15e4c4
104.19.154.83200 OK 221 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=2537822&conversations-embed=static-1.12048&mobile=false&messagesUtk=28eb01e7d7d14647a4ed7804eb15e4c4&traceId=28eb01e7d7d14647a4ed7804eb15e4c4
IP 104.19.154.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2a3115583730e6a9ed097515d1be6225
a0a9c47d25032674448ab39bcfa5efe9fdeff4a0
4a07653b43ce96d81ee510bb24b241198e6dccf1df9f01125e19f1092f7c503a
GET /livechat-public/v1/message/public?portalId=2537822&conversations-embed=static-1.12048&mobile=false&messagesUtk=28eb01e7d7d14647a4ed7804eb15e4c4&traceId=28eb01e7d7d14647a4ed7804eb15e4c4 HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.icrc.org/pt/document/projeto-rio
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:53 GMT
content-type: application/json;charset=utf-8
content-length: 221
cf-ray: 795f9cd99eb20b31-OSL
access-control-allow-origin: https://www.icrc.org
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 765ff3db-77d7-4a70-b823-68467d3671cc
x-trace: 2B6227CD47D4F9F935C008BD7F24F480C48261FEB4000000000000000000
set-cookie: __cf_bm=tHy4XxOmaenwpZ2d3bWW7qFLfgvtUN_z3Dupcp8hOPk-1675809473-0-Aece6s5dyPgl/qkusMKLaUv34jHxyNdBwVPIn7cICJbzHL1v8uDUm/xuXv08fVw+/tSW2gtmDJqZ+m7Dhg4TYEs=; path=/; expires=Tue, 07-Feb-23 23:07:53 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lEU%2B1ZFaaVt5ihYHt4A1bzmnL7GLnwiVV8Y0O%2FuTox7Qh9DkEs8BMfM%2BSOP1oXux4EyFUog2Mk1kFyLpN13m3mFATPdAd7HRW9K%2BaNsF4WuAiW%2FLBi7KT17vU%2Bv2%2BpPupQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bc63c301fd039fc758daf41518cf06c1
9cb3bde0447e63e94fa38723e46233054e789860
7ccd25f33242fcd3382c53b2157ac2a148f5d97dd96a01ed97be6f1ce3b1ad23
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2318
Cache-Control: max-age=155246
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 22:37:54 GMT
Etag: "63e28523-117"
Expires: Thu, 09 Feb 2023 17:45:20 GMT
Last-Modified: Tue, 07 Feb 2023 17:06:43 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=2537822
104.17.204.204200 OK 383 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=2537822
IP 104.17.204.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d7294e504971f731b4c1095c83b6c612
ae2b8ef3e08726451f47493d3976fc5d5822d380
3bc00c14dd0bb2079da0e4eba8d8e96dc4156a90d1de747ca86b643f59ad21bc
GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=2537822 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:54 GMT
content-type: application/json;charset=utf-8
cf-ray: 795f9cdd3a17b4e8-OSL
access-control-allow-origin: https://www.icrc.org
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: d648ef5a-ad7b-43ec-9ed3-2b90f282fea4
x-trace: 2B9B6A93966AAB424C7729C8D894DBDE12CDA4DBB6000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iTVYO%2BQYvLhVMiEXmpiZcINsfgFFaJSL1JAEhcSK9tSh72T85Ai2at5fEz02iL%2F6hg64uqvIDB76xhYf%2FEX1vs14aqGy5z3o3FPlsMu0SUTQ2lZwplpvaUoWGaCg5fn2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
forms.hubspot.com/lead-flows-config/v1/config/json?portalId=2537822&utk=e6644fcb63a13f99e94fe0020be0dcdc&__hstc=246532443.e6644fcb63a13f99e94fe0020be0dcdc.1675809524339.1675809524339.1675809524339.1&__hssc=246532443.1.1675809524339¤tUrl=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio
104.19.154.83200 OK 481 B URL HTTP/2 forms.hubspot.com/lead-flows-config/v1/config/json?portalId=2537822&utk=e6644fcb63a13f99e94fe0020be0dcdc&__hstc=246532443.e6644fcb63a13f99e94fe0020be0dcdc.1675809524339.1675809524339.1675809524339.1&__hssc=246532443.1.1675809524339¤tUrl=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio
IP 104.19.154.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4b3eff0a9cd0aeead672c0b5f4191a28
712ad321703226dc79cf89960220d303d711e08c
ce5f0bf6ff3143c96a88424f1172fc0fea7b371c49b7f8171ecf3de5fcdac8a2
GET /lead-flows-config/v1/config/json?portalId=2537822&utk=e6644fcb63a13f99e94fe0020be0dcdc&__hstc=246532443.e6644fcb63a13f99e94fe0020be0dcdc.1675809524339.1675809524339.1675809524339.1&__hssc=246532443.1.1675809524339¤tUrl=https%3A%2F%2Fwww.icrc.org%2Fpt%2Fdocument%2Fprojeto-rio HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.icrc.org
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:54 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: c6008e96-ed1c-4ec9-be9b-21fd5dcfdc84
access-control-allow-credentials: false
access-control-allow-origin: https://www.icrc.org
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=GIOXjqMel41UFD1eCPIMCsGA9KZXD5zUuyHZa10L2go-1675809474-0-AaI8fVcc2UzsycdhU3WTrtRVqH+MhZlzpgOzMhno7OIvt+MFcQxT3Go/MZ4E7EjG3IX3lPpAry4dyGpC1qSR72k=; path=/; expires=Tue, 07-Feb-23 23:07:54 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=doNsPHsWIuL3pBn%2FcRZIzUuhrtG%2F61ARvy15uRcIm8VbErvvbbz26aEob2pdLIbMzJpc57VV9YtV9KCrLp41Uo7WdKmMg4twtElQ%2FmHGCszS0xV5EWqM8wcxv6q2m%2FxbeqGM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 795f9ce02b810b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.icrc.org/pt/document/projeto-rio
51.103.133.178200 OK 0 B URL HTTP/2 www.icrc.org/pt/document/projeto-rio
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /pt/document/projeto-rio HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: text/html; charset=utf-8
set-cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; Path=/; SameSite=None; Secure
ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949; Path=/
server: ICRC PRD App Secured Gateway
x-powered-by: PHP/8.1.14
x-drupal-cache: HIT
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer
feature-policy: autoplay 'none'; camera 'none'; geolocation 'none'; microphone 'none'; vr 'none'; xr-spatial-tracking 'none'
x-frame-options: SAMEORIGIN
x-content-security-policy: frame-ancestors 'self' icrc.org *.icrc.org
content-security-policy: frame-ancestors 'self' icrc.org *.icrc.org
content-language: pt
x-content-type-options: nosniff
link: <https://www.icrc.org/pt/document/projeto-rio>; rel="canonical"
cache-control: public, max-age=1800
expires: Sun, 19 Nov 1978 05:00:00 GMT
vary: Cookie,Accept-Encoding
content-encoding: gzip
last-modified: Tue, 07 Feb 2023 22:21:46 GMT
X-Firefox-Spdy: h2
www.icrc.org/sites/default/themes/icrc_theme/fonts/opensans/open-sans-italic.ttf
51.103.133.178200 OK 0 B URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/fonts/opensans/open-sans-italic.ttf
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /sites/default/themes/icrc_theme/fonts/opensans/open-sans-italic.ttf HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/font-sfnt
server: ICRC PRD App Secured Gateway
last-modified: Tue, 10 May 2022 09:05:35 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.icrc.org/sites/default/themes/icrc_theme/fonts/merriweather/Merriweather-Bold.ttf
51.103.133.178200 OK 0 B URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/fonts/merriweather/Merriweather-Bold.ttf
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /sites/default/themes/icrc_theme/fonts/merriweather/Merriweather-Bold.ttf HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/font-sfnt
server: ICRC PRD App Secured Gateway
last-modified: Thu, 20 May 2021 06:26:33 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
104.17.235.204200 OK 0 B URL HTTP/2 js.usemessages.com/conversations-embed.js
IP 104.17.235.204:0
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:53 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 03 Feb 2023 11:03:30 UTC
etag: W/"4235774fb72246d66209ed3872079491"
x-amz-server-side-encryption: AES256
x-amz-version-id: J0wnkRCkj94Ay74FvdN415rBCXbQPrOY
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6b29c936420d116b13807604a0e67044.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: ype3-UTxOGlKuUGA7ad0t4cjqlnbAv8t9MqbKay5-9siL5R4gU2mdQ==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.12048/bundles/project.js&cfRay=793edc062aacb4f9-IAD
x-hs-target-asset: conversations-embed/static-1.12048/bundles/project.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 196
server: cloudflare
cf-ray: 795f9cd78ae3b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/@esri/arcgis-rest-request@3.0.0/dist/umd/request.umd.js
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/@esri/arcgis-rest-request@3.0.0/dist/umd/request.umd.js
IP 104.16.122.175:0
GET /@esri/arcgis-rest-request@3.0.0/dist/umd/request.umd.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"7c36-B5uMrI2vojojUUC57B6Fo3lwcaM"
via: 1.1 fly.io
fly-request-id: 01GRCQE551X1TXKVSDX1XPTMRD-fra
cf-cache-status: HIT
age: 344986
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 795f9cb9bfd31c06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/LH4N73tiV48
142.250.74.78200 OK 0 B URL HTTP/2 www.youtube.com/embed/LH4N73tiV48
IP 142.250.74.78:0
GET /embed/LH4N73tiV48 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 Feb 2023 22:37:48 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=w5oxJCOwXXA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpVME5qZzJNREl3TURZeU16TTFNZz09ELyli58GGLyli58G; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=7J3Nvi25N4k; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+088; expires=Thu, 06-Feb-2025 22:37:48 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hs-banner.com/2537822.js
104.18.33.171200 OK 0 B URL HTTP/2 js.hs-banner.com/2537822.js
IP 104.18.33.171:0
GET /2537822.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:53 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: 4Zzwv9tPGIoGe2uA3B1+qyYnsK/ngn1cpHHCxXKr9/g1bR1OQ9oJ8148oweSgQkv37d+2SF+mkw=
x-amz-request-id: ACN4ZA9NP8ZXKDQX
last-modified: Tue, 25 Oct 2022 20:05:02 GMT
etag: W/"09921c99099ee760d917358401ce4b85"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: h6kTJLxPmFN4eU1nJxhMXMkzPzdqTBxy
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Tue, 07 Feb 2023 22:42:53 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 795f9cd75a48b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
js-na1.hs-scripts.com/2537822.js
104.17.214.204200 OK 0 B URL HTTP/2 js-na1.hs-scripts.com/2537822.js
IP 104.17.214.204:0
GET /2537822.js HTTP/1.1
Host: js-na1.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:52 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B433DBC84A98A7160DF7A5A82DB5699D297F11DB2000000000000000000
cache-control: public, max-age=30
vary: origin, Accept-Encoding
x-hubspot-correlation-id: bee7e56c-31f5-4d51-b932-de55941eb84b
access-control-allow-credentials: true
access-control-max-age: 3600
last-modified: Tue, 07 Feb 2023 22:35:40 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 795f9cd4afcdfab4-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/go5LBK1kPVs
142.250.74.78200 OK 0 B URL HTTP/2 www.youtube.com/embed/go5LBK1kPVs
IP 142.250.74.78:0
GET /embed/go5LBK1kPVs HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 Feb 2023 22:37:48 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=KYu78sI2sVU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=OggSeowNueQ; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpVME5qZzJNREV4TVRnd05EUTBNQT09ELyli58GGLyli58G; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+869; expires=Thu, 06-Feb-2025 22:37:48 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.icrc.org/sites/default/themes/icrc_theme/fonts/opensans/open-sans-regular.ttf
51.103.133.178200 OK 0 B URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/fonts/opensans/open-sans-regular.ttf
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /sites/default/themes/icrc_theme/fonts/opensans/open-sans-regular.ttf HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/font-sfnt
server: ICRC PRD App Secured Gateway
last-modified: Tue, 10 May 2022 09:05:38 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.icrc.org/sites/default/themes/icrc_theme/fonts/opensans/open-sans-700.ttf
51.103.133.178200 OK 0 B URL HTTP/2 www.icrc.org/sites/default/themes/icrc_theme/fonts/opensans/open-sans-700.ttf
IP 51.103.133.178:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /sites/default/themes/icrc_theme/fonts/opensans/open-sans-700.ttf HTTP/1.1
Host: www.icrc.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.icrc.org/sites/default/files/advagg_css/css__FfVzDZ3h4jZyhy0sFurb4H3bxJ5cep2wZ8c2kIPTg5Q__WczlroYhH4P2HyxHEqiOwXNTzcAnyLtrU5gGIOutg8E__VvMjkkKWzerjmKZ-zx1yAsv-fzWBZZkwdWXpxDSQj5c.css
Cookie: ICRCAppGwAffinityCORS=9cef14c67fda5b64db30fca411560949; ICRCAppGwAffinity=9cef14c67fda5b64db30fca411560949
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 22:37:48 GMT
content-type: application/font-sfnt
server: ICRC PRD App Secured Gateway
last-modified: Tue, 10 May 2022 09:05:28 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Tue, 14 Feb 2023 22:37:48 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.youtube.com/embed/tQ005pX4BAE
142.250.74.78200 OK 0 B URL HTTP/2 www.youtube.com/embed/tQ005pX4BAE
IP 142.250.74.78:0
GET /embed/tQ005pX4BAE HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 Feb 2023 22:37:48 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=6XgaHyoUzQg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=ALbXLOfgbqk; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TnpVME5qZzFPVFl4TkRVM056WTBNdz09ELyli58GGLyli58G; Domain=.youtube.com; Expires=Sun, 06-Aug-2023 22:37:48 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+912; expires=Thu, 06-Feb-2025 22:37:48 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2