web-verificationbr.dns.army/
20.56.131.2301 Moved Permanently 337 B URL HTTP/1.1 web-verificationbr.dns.army/
IP 20.56.131.2:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dbc6e197ec7cb86b5ca23ed0ba21f5bb
b9d47542fe3e0b301e6542e9c81a3a39763714c6
f8549afdaa10eda364df005424e03c5233627d086e3aab1e2f063c169c1e3723
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET / HTTP/1.1
Host: web-verificationbr.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 22 Nov 2022 19:41:03 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://web-verificationbr.dns.army/
Content-Length: 337
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8557
Expires: Tue, 22 Nov 2022 22:03:40 GMT
Date: Tue, 22 Nov 2022 19:41:03 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6050
Cache-Control: max-age=145862
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:03 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:12:05 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8330
Expires: Tue, 22 Nov 2022 21:59:53 GMT
Date: Tue, 22 Nov 2022 19:41:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 19:09:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1904
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 81t92YNaBoWOBHFryWZ6rvdoFLrIbq/ell1xRdkwOBEaTTOxfFiXJgszPJlOxrQ0e4TaG7k1A/A=
x-amz-request-id: H6ZX3SSFV6HPXACM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 18:42:41 GMT
age: 3502
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:41:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6ade95f2a5e4394791ee3b292f812335
8e87904b62895231d3158f6b0d4d02a0cb4853de
b9e74506c36d34d3cfbc7c8344fb2b87cfe24ed1b246dfb940e1467df10b46ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9E74506C36D34D3CFBC7C8344FB2B87CFE24ED1B246DFB940E1467DF10B46FF"
Last-Modified: Mon, 21 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21494
Expires: Wed, 23 Nov 2022 01:39:18 GMT
Date: Tue, 22 Nov 2022 19:41:04 GMT
Connection: keep-alive
web-verificationbr.dns.army/
20.56.131.2200 OK 120 kB URL HTTP/1.1 web-verificationbr.dns.army/
IP 20.56.131.2:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23360)
Size 120 kB (119964 bytes)
Hash 6f95e2a3f10a330d770400e2280bb2f1
c2b9b4e2cef80f75b37e0f4d7ce16687d0d0daee
37e310a4a50404f2a5972ed9b7c1ac824393f56bea7ca2d15e0a07716c96e764
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET / HTTP/1.1
Host: web-verificationbr.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 19:41:04 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 08 Nov 2022 12:53:30 GMT
ETag: "1200da-5ecf506df6680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ad60897e149f308b98f935dde0fee5ad
99a41856983b57f3c1065d5848309c51bb9acefd
dcca1e5b84e06d345dcc3f713b2c03b33daff6ec2fd906a1cfb6b6eeaf534e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2137
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Etag: "637cbb5e-118"
Last-Modified: Tue, 22 Nov 2022 19:05:27 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ad60897e149f308b98f935dde0fee5ad
99a41856983b57f3c1065d5848309c51bb9acefd
dcca1e5b84e06d345dcc3f713b2c03b33daff6ec2fd906a1cfb6b6eeaf534e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2137
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Etag: "637cbb5e-118"
Last-Modified: Tue, 22 Nov 2022 19:05:27 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 769b2df2143b29ba0e4c713da0d29965
3e85b0acc7c0895203fe65ce39ecae54a025497e
1e1753c7f00170ac03cd268bc403c063078177159010ebeeda58ecb0abecf38c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4755
Cache-Control: max-age=135226
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Etag: "637c8077-118"
Expires: Thu, 24 Nov 2022 09:14:50 GMT
Last-Modified: Tue, 22 Nov 2022 07:55:35 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-49TPHE05FN
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-49TPHE05FN
IP 142.250.74.168:0
File type ASCII text, with very long lines (21484)
Hash 02562d9f2d9e7838dbcf58ff0b32f0d3
8890efb2f9a8995e21320b29bc3dd24140508cf1
77cf780ce298715cb171ad0d72bcba8dfa56ce6546cee3d8c05646cbeef41d76
GET /gtag/js?id=G-49TPHE05FN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:04 GMT
expires: Tue, 22 Nov 2022 19:41:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77535
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 769b2df2143b29ba0e4c713da0d29965
3e85b0acc7c0895203fe65ce39ecae54a025497e
1e1753c7f00170ac03cd268bc403c063078177159010ebeeda58ecb0abecf38c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4756
Cache-Control: max-age=135226
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:05 GMT
Etag: "637c8077-118"
Expires: Thu, 24 Nov 2022 09:14:51 GMT
Last-Modified: Tue, 22 Nov 2022 07:55:35 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ad60897e149f308b98f935dde0fee5ad
99a41856983b57f3c1065d5848309c51bb9acefd
dcca1e5b84e06d345dcc3f713b2c03b33daff6ec2fd906a1cfb6b6eeaf534e79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2138
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:05 GMT
Etag: "637cbb5e-118"
Last-Modified: Tue, 22 Nov 2022 19:05:27 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4816
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:05 GMT
Last-Modified: Tue, 22 Nov 2022 18:20:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9618b209c0e12cdf929f202abe2befeb
dd24a31328b7f33bb35c1b593160b3c7c962bc20
f4e53089c4c9f3fee9504c491834f711cfaf3a295aa67415f74742a931874598
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4E53089C4C9F3FEE9504C491834F711CFAF3A295AA67415F74742A931874598"
Last-Modified: Sun, 20 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Wed, 23 Nov 2022 01:40:21 GMT
Date: Tue, 22 Nov 2022 19:41:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 19:34:50 GMT
cache-control: public,max-age=3600
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
age: 375
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9618b209c0e12cdf929f202abe2befeb
dd24a31328b7f33bb35c1b593160b3c7c962bc20
f4e53089c4c9f3fee9504c491834f711cfaf3a295aa67415f74742a931874598
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4E53089C4C9F3FEE9504C491834F711CFAF3A295AA67415F74742A931874598"
Last-Modified: Sun, 20 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Wed, 23 Nov 2022 01:40:10 GMT
Date: Tue, 22 Nov 2022 19:41:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9618b209c0e12cdf929f202abe2befeb
dd24a31328b7f33bb35c1b593160b3c7c962bc20
f4e53089c4c9f3fee9504c491834f711cfaf3a295aa67415f74742a931874598
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4E53089C4C9F3FEE9504C491834F711CFAF3A295AA67415F74742A931874598"
Last-Modified: Sun, 20 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Wed, 23 Nov 2022 01:41:04 GMT
Date: Tue, 22 Nov 2022 19:41:05 GMT
Connection: keep-alive
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hU3uYhZyps+gBMRDfelgZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lxKDOP+CXUYZr5TDeefYZTdWEOw=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9618b209c0e12cdf929f202abe2befeb
dd24a31328b7f33bb35c1b593160b3c7c962bc20
f4e53089c4c9f3fee9504c491834f711cfaf3a295aa67415f74742a931874598
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4E53089C4C9F3FEE9504C491834F711CFAF3A295AA67415F74742A931874598"
Last-Modified: Sun, 20 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21539
Expires: Wed, 23 Nov 2022 01:40:04 GMT
Date: Tue, 22 Nov 2022 19:41:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9618b209c0e12cdf929f202abe2befeb
dd24a31328b7f33bb35c1b593160b3c7c962bc20
f4e53089c4c9f3fee9504c491834f711cfaf3a295aa67415f74742a931874598
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4E53089C4C9F3FEE9504C491834F711CFAF3A295AA67415F74742A931874598"
Last-Modified: Sun, 20 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21518
Expires: Wed, 23 Nov 2022 01:39:43 GMT
Date: Tue, 22 Nov 2022 19:41:05 GMT
Connection: keep-alive
romanews.com.br/wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=1656683765
34.95.218.219200 OK 952 B URL HTTP/2 romanews.com.br/wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=1656683765
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (3561)
Hash 23d61448c64b7814076d5f1a42ac8170
320caf122ce415519ef886f24971317e211137ca
3d8772545e5b1a6b449085464f27c48afdebeb5e9c2b2e4cb73d3089defbff3c
GET /wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=1656683765 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "e03-62befcf5-2f5ecb;br"
last-modified: Fri, 01 Jul 2022 13:56:05 GMT
content-type: text/css
content-length: 952
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.2
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (482)
Hash ed4b37fdbbdd5ece3ea044585d4c0078
9e8b2e0933e7671a3fffd4852dbe71574b49425f
63a3b9c474e8ab58862ca2292210d4ddfa2defcb3d5562c73e40c174dcebc6a2
GET /wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "10020-628e48e5-1b94e7;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: text/css
content-length: 11151
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65497)
Hash 8162f89047ca684320086e594e22c113
f924d6d7ecde0cc983d1a83aa9e5ed8e36c21d7f
3b4017e679ade23f58a235230eca14c109545e233108ddb33834589b468a1d6f
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "18204-621d7b83-be99f;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 11166
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
34.95.218.219200 OK 3.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19004)
Hash cbbd32ed066b077c696bcf74c2de28f5
0f45a5cd0362cd8890965397ebcebf07a5bc23eb
b4032ae7d7589a2b69e2b50f0609921f6ae56b9f2e24aa31bde03c0fdded6508
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "4a6a-621d7b83-bea02;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 3589
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/post-6.css?ver=1655843246
34.95.218.219200 OK 372 B URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/post-6.css?ver=1655843246
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1064), with no line terminators
Hash 596c56345ef9122f62ac8665b8020273
5e48657755fd854ae7040ffc1257573029ca2a51
4fa4acf0ed153208420174d223d3fcd4fa73560587bcb8bcba249786110f4b6f
GET /wp-content/uploads/elementor/css/post-6.css?ver=1655843246 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "428-62b229ae-bd003;br"
last-modified: Tue, 21 Jun 2022 20:27:26 GMT
content-type: text/css
content-length: 372
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.6.3
34.95.218.219200 OK 1.5 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11362)
Hash bb57bbeb73fd9a81be763e70a8c60821
308bc895e179ae65b4f9ece34641d2b76a316f02
6557e6291def6ac22134594454f8aad6410fae0f5475ca78ce022b7094aa5c27
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "2c8d-621e4b0f-bf0f1;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: text/css
content-length: 1489
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/global.css?ver=1657913292
34.95.218.219200 OK 6.7 kB URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/global.css?ver=1657913292
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (55131)
Hash c4a1aca385e7c1341bc318dedf73c090
da7989ee07593d89d1fa7df544b3a988a32d0193
7409932cd7143c9ce9c147de240bb3b1e4dabaa372e3d701fa85f47ed375c61e
GET /wp-content/uploads/elementor/css/global.css?ver=1657913292 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "20241-62d1bfcc-bd005;br"
last-modified: Fri, 15 Jul 2022 19:28:12 GMT
content-type: text/css
content-length: 6722
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/post-50.css?ver=1663788259
34.95.218.219200 OK 3.7 kB URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/post-50.css?ver=1663788259
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (27092), with CRLF, LF line terminators
Hash 136e9e1d3c38c50baa4b693d5283c9cc
8883f503caad4099fd7111c10e4f6e633f859ad0
45bd478be0fe1bd66edc8caf829ef53d10557a43ae00763d17f79bc9a0dfcc50
GET /wp-content/uploads/elementor/css/post-50.css?ver=1663788259 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "9506-636a5b4a-c7a40;br"
last-modified: Tue, 08 Nov 2022 13:36:10 GMT
content-type: text/css
content-length: 3678
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
34.95.218.219200 OK 6.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (30837)
Hash e99e647b2bcbac735756f147437cd30d
a7feff175eb69bc219a4915f56213eb8177116ac
d942ce1121b2caa437ff304808a9079b017b83c77d36e08852cab601efd17b73
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "7917-621d7b83-bea71;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 6644
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/jegicon.css?ver=10.6.3
34.95.218.219200 OK 569 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/jegicon.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2815), with no line terminators
Hash 75b080bdc92041956b86da50fb980729
1795252d5f53737f9d7b51018b1f8316bae83790
f6b2586de442a3b0ffbec22e964705a5d40dd2e35dc48efbd312eec8f164b275
GET /wp-content/themes/jnews/assets/fonts/jegicon/jegicon.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "aff-627d7ff6-be7aa;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 569
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/jquery.jscrollpane.css?ver=10.6.3
34.95.218.219200 OK 383 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/jquery.jscrollpane.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1073), with no line terminators
Hash b9a83df39de6040921093244f8a89d65
3b6c744d2202f083d266bb5e9cb9aa5fa688c8c9
2c37c86945636b242d91fcca99ab50880c81bb2e05f3f3d82ca400b8d055d955
GET /wp-content/themes/jnews/assets/css/jquery.jscrollpane.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "431-627d7ff6-be704;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 383
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/okayNav.css?ver=10.6.3
34.95.218.219200 OK 709 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/okayNav.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2745), with no line terminators
Hash ac3fe61e8a36c0abf6abf708cd0f9626
61c5cddd27724ced68baac959a515a30f59f75e2
686a9f75bf912a3d3b24d1d28ac66ac6ba7fc5c7b97e9f24c4c5c8b1eb6e87ac
GET /wp-content/themes/jnews/assets/css/okayNav.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "ab9-627d7ff6-be701;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 709
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/library/magnific-popup/magnific-popup.min.css?ver=1.8.0
34.95.218.219200 OK 1.4 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/library/magnific-popup/magnific-popup.min.css?ver=1.8.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5235), with no line terminators
Hash 53e0efcec429926c359d61e7bf94ce7b
88dede7a960823e486815d7816eed3e1868632a9
ff74d07f19afb089a66fd19cb02f88798fb71eb9e873ed1115ac8c8d91ac7267
GET /wp-content/plugins/gutentor/assets/library/magnific-popup/magnific-popup.min.css?ver=1.8.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "1473-62bf05f7-2f6473;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: text/css
content-length: 1396
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/chosen/chosen.css?ver=10.6.3
34.95.218.219200 OK 2.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/chosen/chosen.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10582)
Hash 81e6b0229651ec48d564c917b0a4b962
2c86a662ae2ab8e02c1f7b24bec9a79c3c3fb8cd
3b4b8509a01ab0d8bca31acb14b2414f660ee5bec98c02bac51a11bf53ec643f
GET /wp-content/themes/jnews/assets/css/chosen/chosen.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "2ac8-627d7ff6-be70f;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 2121
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/main.css?ver=10.6.3
34.95.218.219200 OK 37 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/main.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 91ae68f942675412a9433d39d03a3439
6390e86621ac603a3405e99295498982d22776ff
d2b9c583ed511d58dd55eed7b6799503d5a3809e652d7f8690a93fc5c871c7fb
GET /wp-content/themes/jnews/assets/css/main.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "3b4c0-627d7ff6-be73a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 36643
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/responsive.css?ver=10.6.3
34.95.218.219200 OK 2.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/responsive.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12058), with no line terminators
Hash e6d2812ceebee33aef79660c7c40a6dc
124fc994a3b677964571dd0266113e5e32ef06d0
b7f15f6626e8cf8b38cc2a46d4644992d4681aed6336709c62417600674632f2
GET /wp-content/themes/jnews/assets/css/responsive.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "2f1a-627d7ff6-be708;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 2571
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/pb-temp.css?ver=10.6.3
34.95.218.219200 OK 3.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/pb-temp.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (29381), with no line terminators
Hash 08cbcc8850e16ab7277f44ef269e1d7f
0bdec3dea7797e572c2b1a26314f57347bee6a0f
d60dc5ddd979b389e518c93c6d060516d14d8139873c3386eac19f02cf252d9b
GET /wp-content/themes/jnews/assets/css/pb-temp.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "72c5-627d7ff6-be702;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 3334
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/elementor-frontend.css?ver=10.6.3
34.95.218.219200 OK 152 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/elementor-frontend.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (681), with no line terminators
Hash c4eb1ed2f5cca880edebe77849ab0843
744511833d8228e62d11cfbe0df171849c2fc368
6f40a3b83e02e3fc06c4c1955d0a06b5b1e973e8fefbaa289cb7117cb1d97f9d
GET /wp-content/themes/jnews/assets/css/elementor-frontend.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "2a9-627d7ff6-be729;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 152
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/style.css?ver=10.6.3
34.95.218.219200 OK 222 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/style.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 6744727c535c597f43882b18612d4c02
95fab2bf052147c8ba27c83067fb4bced47223e3
4b05b01345e8e2639c8343a30027b89a072580318db83418c9c48656013cb507
GET /wp-content/themes/jnews/style.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "1ab-627d7ff6-be608;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 222
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/darkmode.css?ver=10.6.3
34.95.218.219200 OK 6.5 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/darkmode.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (46766), with no line terminators
Hash 77c4d5932d7fa75af6438cfda3462424
99c0809b85d43051cf80d6d684e60b97b7101a9f
39c0b8d5813bb14eabcf17ae15671ed1aab35642be52187e39fc1d32f41b4381
GET /wp-content/themes/jnews/assets/css/darkmode.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "b6ae-627d7ff6-be714;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 6549
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/components/style.min.css?ver=6.0.2
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/components/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (64759)
Hash bdb9d10af1938b64c7c1d543a2b890d3
306955af6f73ece84504bab38687a9a589d574ac
c33b8a15557a680bf8fdd37f5dc7073ec228b6bdf1f0b87c402ad39012d9dc91
GET /wp-includes/css/dist/components/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "141f9-6361d51a-81135;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: text/css
content-length: 11082
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
34.95.218.219200 OK 15 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 31b3e683e8d569447a16789bfc3d4a93
13ef7d390ad3d3d1813b95a4abe6c09e167abf23
f2e0f7a39435103247aa6e9bcbb417d4a6fc1465763d14adfc6f8d65500f4e0e
GET /wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "1c86c-63744a16-8114a;br"
last-modified: Wed, 16 Nov 2022 02:25:26 GMT
content-type: text/css
content-length: 14606
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
34.95.218.219200 OK 682 B URL HTTP/2 romanews.com.br/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2210)
Hash fc4207c73b822b937709e5ac0bc08bb4
2e098a00a6af5e3716b2ed16017f4364288e114e
2176e75a1cf2329e16f6e69f2aa6ba455e2d29d9c6e27635bb449071d848a1f7
GET /wp-includes/css/dist/nux/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "ab4-6361d519-81118;br"
last-modified: Wed, 02 Nov 2022 02:25:29 GMT
content-type: text/css
content-length: 682
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
34.95.218.219200 OK 214 B URL HTTP/2 romanews.com.br/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (522), with no line terminators
Hash ec4b8518f9c3402348b6667216310173
d8ad84f3e584116fadfa798c117e479f5ae85968
242c4d7b3b7d6d8e097e64c51c0fef5ede3608a257041a1bad514a47e2aa8a05
GET /wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "20a-61f8cd0b-81130;br"
last-modified: Tue, 01 Feb 2022 06:02:51 GMT
content-type: text/css
content-length: 214
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
34.95.218.219200 OK 3.4 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (18793), with no line terminators
Hash 3980ba929452588e3517e54040d23ef6
84490b6676186a502b56577facd143bced2ceb28
839393b8156fda87cdfa8027f57956a4cfa5b919d18a65de5a63845b1ca7f48b
GET /wp-includes/css/dist/editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "4989-6361d51a-8113a;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: text/css
content-length: 3412
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/jnews-instagram/assets/css/plugin.css?ver=10.0.0
34.95.218.219200 OK 1.0 kB URL HTTP/2 romanews.com.br/wp-content/plugins/jnews-instagram/assets/css/plugin.css?ver=10.0.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d1cb322ef3f1aee7e3d96d0eadb9c7ea
eb0a212641d4df7ae6bf08020f1399cce0bd3b5b
6ac977917d3517373667f957c95f26229f35e1bb557b18d84b7fd5fc1af6b476
GET /wp-content/plugins/jnews-instagram/assets/css/plugin.css?ver=10.0.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "155e-621d7b8c-bd708;br"
last-modified: Tue, 01 Mar 2022 01:49:00 GMT
content-type: text/css
content-length: 1018
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
34.95.218.219200 OK 4.0 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11126)
Hash e32c5db077b45cddc36bbdec187ba4c4
dfdbe8e2f28238b3a218785514a452884aa789a8
51bd9696f8c91a26501c40b40842e759b5cbcd352b3ce7d1f6875996abec46f6
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "2bd8-61f8cd0b-81270;br"
last-modified: Tue, 01 Feb 2022 06:02:51 GMT
content-type: application/x-javascript
content-length: 3992
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.2
34.95.218.219200 OK 7.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (21084)
Hash 0990c7924f54c6c0fbb3acda6cc8bebe
5a00c4285108150d5d9a7742552e5d4c0621c48a
7a2ff3113aff00170908d8fe6191b915a3f46cd1cf06edc937f53aad19439ee7
GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "52e2-628e48e5-1b94f7;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-javascript
content-length: 7186
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2
34.95.218.219200 OK 15 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (62161)
Hash b0e55194eb76df7034c3cccb93dc7660
e247bcd3265f20b1b169777f6b4242a5b0fc8929
c1c7bc8d154c9bea9ba36a96b003fe049438fbe41b9d33d0a8597b446a0a44c4
GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "f3e8-628e48e5-1b94f8;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-javascript
content-length: 14577
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.41
34.95.218.219200 OK 10 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.41
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4122)
Hash c4da4266640e58e065b9b0878f17234a
cd91d5a4df3c990eb86e60565b06bf0fd39a8a0f
d43d676010a566655bc715b25af7601297c5dab2966c48af9a5bb0f2b440c8db
GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.41 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "9cd0-628e48e5-1b9505;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-javascript
content-length: 10148
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
34.95.218.219200 OK 4.6 kB URL HTTP/2 romanews.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15660)
Hash 8b21827e4cc06ac9d6c686e463be1fb2
395e1545d76868371b3110d48179027eadef1b39
bf023dff36bcaa1d34063e0804ebfc1598550f64915890b39a2afbe95b8aed8a
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "48b9-628d9390-813ed;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 4584
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/dist/blocks.style.build.css?ver=3.2.3
34.95.218.219200 OK 23 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/dist/blocks.style.build.css?ver=3.2.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash ad2885549eedfbda8def81a24943d76e
28ca9087050936486d9973cd6bb0d1626d5b036e
1920dd32b24fd3d2350a2baf446692cc9d6e62cdd830d8df5d2761ff2d0b7075
GET /wp-content/plugins/gutentor/dist/blocks.style.build.css?ver=3.2.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "44630-62bf05f7-2f6494;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: text/css
content-length: 23302
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1
34.95.218.219200 OK 1.3 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 46ca4b44a87384162596acc72af1f483
3da5b8b6dc1e4164da90f6f13d6c88c4688deb3e
532e57eaaff0cb31d032839766d09ee8c8b76443ab679fca49e2bade83e86105
GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "13c6-627297ee-bd06a;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: text/css
content-length: 1336
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0
34.95.218.219200 OK 1.9 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash d847cd4722c859c5ca4e7867012cf1fc
ee1d129b6dad4541f8be5fc9ea6cb8215e7f9b6c
88ef2bd9f1445f09f98244fafcf2f3425b7bc970e43facebe97798a4a2e9795d
GET /wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "38b3-627297ee-bd06b;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: text/css
content-length: 1909
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0
34.95.218.219200 OK 3.7 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (55728), with CRLF, CR line terminators
Hash 1f160eadf41077c91975f46ea73a02f4
8fad802b2005f45428528707950e545d5457eaf1
33bab9396ba442624b72f8aad9a8d1452720abab0d5e06c0b18112cef5f33331
GET /wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "da7a-627297ee-bd069;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: text/css
content-length: 3701
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.css?ver=10.6.3
34.95.218.219200 OK 573 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2058), with no line terminators
Hash ac57c2a6726cc63eabfa7c1b186bec20
545a973c675d637f9e2e53a330a960b381f7997d
47ce891583180ac115932d7c9b5dbc82dce195204ae3236182d63332ecedbfc6
GET /wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "80a-627d7ff6-be765;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 573
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/slider/jnewsglobalslider.css?ver=10.6.3
34.95.218.219200 OK 926 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/slider/jnewsglobalslider.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3681), with no line terminators
Hash e7797587aca5ac022028533910756be3
f43c84da4042be29b637b55cbb3bb8c683db7b36
1c6e718896d9b6e9af1a911d57e1a77ae6862e1e48f23db00e364423d0a42b72
GET /wp-content/themes/jnews/assets/css/slider/jnewsglobalslider.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "e61-627d7ff6-be700;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 926
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 19:41:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 19:41:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 19:41:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 19:41:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 804755c7e438531c9ba2e781947e1640
7a93c31638ee89a561bac2174482a5d12aa62d63
aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7493
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 19:41:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ab62c5a7c3296600de924eb0b283bc1
bc4a2dc43898e3fb78ba7301d8b09b280991d221
f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eHLf2DFK-3yN5dEG22XItPxRzmODRdThIYJI2oZqDJpgTGQGSQnGzQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:46:07 GMT
age: 78899
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed6b76d15fc8d6295acdb6fb47461d3
b8c928f93a8d82b48491448d811a95ad99dc6aef
de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:46 GMT
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
age: 77900
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 472ceca597feefba355fbd65998977b7
f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a
e201f706ba38f04ef07d74a67eec187ad8b882027b96b0e4e700162f96da422f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55f882f4-a410-42f1-919d-e59d9058875d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7751
x-amzn-requestid: 577947ab-4fbe-4b07-944a-2b65cf5ed6d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b4UE9GJ9IAMFVtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63799a1f-1a26961e20c88cd54a613ddb;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 03:08:15 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QB2RJo7NR7FMDRC7fC9eLMW99KR7andopIeu4qi0yp_tihE0vtpkXw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 03:41:51 GMT
age: 57555
etag: "f3f2e5a8d14e009d0eaa3d7637730c4c525e3a9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f3fad7453f45dfa617243c8beac64e1
56414a905340e1b1478a0a40a52b25365a724524
7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: StZ9dxgY8W0WwUUqsxyeISFnbm_WGGcm_AMuo9dzfhF9Yp7wM0TMMg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 08:17:57 GMT
age: 40989
etag: "56414a905340e1b1478a0a40a52b25365a724524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dafd9e17dc0023e71ae513c6025e4b80
12e2654db1f384bb04f5c5042848b25dda86b710
e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z_LKFsiB_s81UenxBOVg9_qX_7vBHUZix7XF8YguDCytRn5opLkLRA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:01:10 GMT
age: 77996
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:48:43 GMT
age: 78743
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/jnewshero.css?ver=10.6.3
34.95.218.219200 OK 6.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/jnewshero.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 576814fae53d17caae2d8198791ad4d6
70687c81d21ff78101f9534292827dd17692e642
122e67b9c472d3c0067a11671a8fb545dfdd4e581a6f91a8b03d50159ad28a14
GET /wp-content/themes/jnews/assets/css/jnewshero.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "10038-627d7ff6-be72b;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 6103
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/data/import/evnews/scheme.css?ver=10.6.3
34.95.218.219200 OK 708 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/data/import/evnews/scheme.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a8bc6579854afabd4aed4199542c40b1
d09f6a69782826df310bebaf74a9e665bbe2b63c
e96c59e1e02967a86d49f383e31519445299c1f1cbe49111ae1b9553e17f0046
GET /wp-content/themes/jnews/data/import/evnews/scheme.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "897-627d7ff6-be13f;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 708
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/post-2415.css?ver=1663345449
34.95.218.219200 OK 589 B URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/post-2415.css?ver=1663345449
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3241)
Hash 3500b61e30e42e07a1d8762c71eff145
c9426b4ffb9edd5bac36ecb5b18e86d3574652ff
b891598b133f16e7319eadbb8e3a929e8b8972d595819a45e7ee7c85485df641
GET /wp-content/uploads/elementor/css/post-2415.css?ver=1663345449 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "ded-6324a329-bd05c;br"
last-modified: Fri, 16 Sep 2022 16:24:09 GMT
content-type: text/css
content-length: 589
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
34.95.218.219200 OK 12 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (57726)
Hash 594e0ac7fbfbfc2268446eb6fb1eee15
7e98779f6f45e8144bef72224aba30d2e5194f4b
e7a80c2dd5a7e71d3534e09cca1ec0596cff902a703adfef4c45d16c96b62060
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "e238-621d7b83-bea73;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 12116
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
34.95.218.219200 OK 286 B URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (489)
Hash dbfdb3d3cf3eb8df70f82b4ee60b10b6
45709b86dff74d84e516bb895f6c1a543114e4d0
24d0b02886c79c3444f8d74eddd9229c3c906af2dfa543f60ccb7120a49b9289
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "2a3-621d7b83-bea74;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 286
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
34.95.218.219200 OK 2.4 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6475), with no line terminators
Hash 6fc7f6a64943fb700809729d3bd733b4
5f794ac00a49aa543c1f9c3eb7b1d20bc797e6f2
3101fde9e69cf266ba9486abd29a0f82fa43e6d3bebd43218b6d3f9c0fd903bc
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "194b-628d9390-81392;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 2356
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
34.95.218.219200 OK 6.3 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 3c6659fbb66ea33733c0f42ba480920b
324c2181a146a348ec1a7ef99a7746f669bfefa0
bb68c0faf97a89bbf27bdf885d2625163133ec25df932577fa31d3438bff5633
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "459f-6361d51a-81397;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 6323
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
34.95.218.219200 OK 1.6 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4875)
Hash 334c10434c5114c1b6a896a4bfb97762
3141a7c37d1d5775dd56e0a971420aa95e952eed
4bc9855c90cecf283f832865270bd1a718c3d5cf3054e2df60cecbbb6fdd51e0
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "132e-628d9390-813a0;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 1575
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
34.95.218.219200 OK 3.7 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 3f471ffad1090960396e523f26e756e5
b441e2050b1a4afe445c2f7cd1e354f511d5d755
7293b4d7d6a360e036b268be2586c313d702353ae7cea1c5e8024b005440148d
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "27f6-6361d51a-8139e;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 3718
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
34.95.218.219200 OK 5.7 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15977), with no line terminators
Hash 87ec575fb21c8b3c34430b84f09a6661
b1f0efb165e231894464be09198c3fe415386f91
118e1b03455c0eadd9511b58b142a03d34e7e800a9843acf1c800c92f6d853f6
GET /wp-includes/js/jquery/jquery.form.min.js?ver=4.3.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "3e69-6361d51a-8127e;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 5680
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/comment-reply.min.js?ver=6.0.2
34.95.218.219200 OK 1.2 kB URL HTTP/2 romanews.com.br/wp-includes/js/comment-reply.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2946)
Hash cbc3c0f6616346775e35b4948ceb86d4
d6cd8396a0976de4346fa44e5e85eda4ef8a235e
e8a519cede026b65039516d72dd8b761a55990bff6cbbb6c1733b348e60d2d80
GET /wp-includes/js/comment-reply.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "ba5-628d9390-81330;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 1229
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/hoverIntent.min.js?ver=1.10.2
34.95.218.219200 OK 669 B URL HTTP/2 romanews.com.br/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1464)
Hash 28e2c5bc3240ea6352fa08c118639748
0f3ce3fac80cefc0220eeae7eaa10e99871b1588
cd63ebd74665f3c1adfb647ea7ab426b0354fe9bd8fc44937eae9365b6324cb4
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "5db-628d9390-81307;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 669
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
34.95.218.219200 OK 1.7 kB URL HTTP/2 romanews.com.br/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5477)
Hash d0ceb085376662c320bdbb0cf7c3ed10
5c80f8c6ddb1b47b405cb82d12114ebed597da95
bdc9263efbc9671cecb00ff969b64973a9644532425b3f0ccf65f770ee9b80b9
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "15fd-61f8cd0b-81308;br"
last-modified: Tue, 01 Feb 2022 06:02:51 GMT
content-type: application/x-javascript
content-length: 1726
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/library/isotope/isotope.pkgd.min.js?ver=3.0.6
34.95.218.219200 OK 9.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/library/isotope/isotope.pkgd.min.js?ver=3.0.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash f16d18dd8145bb5991bb3b2e957eb337
3592f7e4c5b2501aef92f761fc16e1d7b0a84999
4c7a6e9b7c12958f095a003bda68f45ed93a33eb6829c96debd7d8bdd345b7ae
GET /wp-content/plugins/gutentor/assets/library/isotope/isotope.pkgd.min.js?ver=3.0.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "8a80-62bf05f7-2f6471;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: application/x-javascript
content-length: 9553
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/lazysizes.js?ver=10.6.3
34.95.218.219200 OK 3.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/lazysizes.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6926), with no line terminators
Hash 9a9bfd36e9e5f8d46df6c8b8492b4f08
3241305fadce666af676b6605c2976edc1052bf8
fc132850f3cfba0e6165f1f7a0b3a82fe63bb78f4a6e05626e3e0b3204d5c305
GET /wp-content/themes/jnews/assets/js/lazysizes.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "1b0e-627d7ff6-be75c;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 3069
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/ls.bgset.js?ver=10.6.3
34.95.218.219200 OK 1.0 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/ls.bgset.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2799), with no line terminators
Hash 35c7cf365b4e3b8d956e6e6624f7a78c
98e853451ff796e7e6ee95865d1e48e9b42773a9
bc0fb67ea59dd31aafdd291eebf9a342a2dad9e7e565881ad83fc0cf595c4388
GET /wp-content/themes/jnews/assets/js/ls.bgset.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "aef-627d7ff6-be79a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1039
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/superfish.js?ver=10.6.3
34.95.218.219200 OK 1.8 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/superfish.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5281), with no line terminators
Hash 13f2992078ccd0a42bc2f383393a0a99
255ce08c10ed05c5cced4ebfb551782498f292cf
f2b792ebd835e1c89dc6b69820012830a1c9a8f3e1ec5aa12ba2edc7ab6cd9de
GET /wp-content/themes/jnews/assets/js/superfish.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "14a1-627d7ff6-be78e;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1802
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1
34.95.218.219200 OK 1.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (5370), with no line terminators
Hash e98cb490e785ffa712ace73b1195cf82
8c5d829d1126d388410ec53e7d30861545a3e392
d94e27ec010bcc5a4d24590bb604a7ec2ec5a9119ffa080708abf8723a878d00
GET /wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "14fa-62bf05f7-2f646d;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: application/x-javascript
content-length: 1594
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.waypoints.js?ver=10.6.3
34.95.218.219200 OK 2.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.waypoints.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (8798)
Hash 65c067b42ce35e5f728c17275e85bf66
3720cf1b06b7f0e0b1929fae9fb04ac6f6e164db
362ca50affd135da96319fc7cf9d539f91db00cae37238e8754ebf842968ba73
GET /wp-content/themes/jnews/assets/js/jquery.waypoints.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "2308-627d7ff6-be768;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2577
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.scrollTo.js?ver=10.6.3
34.95.218.219200 OK 1.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.scrollTo.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (2275)
Hash dd4d7fb14e02d2b5b4e8d266b432c185
00fddda6acdefdcc2b8e456b67ee4bb5c0890896
32e4c53e6bb66ccad9dbad0518546cd77861843a45e6ede10c43ffc74e26a874
GET /wp-content/themes/jnews/assets/js/jquery.scrollTo.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "a47-627d7ff6-be741;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1285
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.parallax.js?ver=10.6.3
34.95.218.219200 OK 280 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.parallax.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (564), with no line terminators
Hash d8fc3b6fef2b250e1798e53438348a76
9cd62097ae725d5490d7b071831c7f0856271f4b
addefb518fbec1bfabf450a1fe96564c079f1c83c35db4570f6ebfefb3dd0669
GET /wp-content/themes/jnews/assets/js/jquery.parallax.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "234-627d7ff6-be794;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 280
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.okayNav.js?ver=10.6.3
34.95.218.219200 OK 2.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.okayNav.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (7545)
Hash f38bf1df3b8a64a664acd72a3d7381fe
393648d7f704db27287733b2e1db1396eaeca375
f6e78ae5d2e77ed839bc61a8190b9798ed93c18b01bcf815e1e676c40b2a1927
GET /wp-content/themes/jnews/assets/js/jquery.okayNav.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "1e29-627d7ff6-be791;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2277
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.mousewheel.js?ver=10.6.3
34.95.218.219200 OK 1.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.mousewheel.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2608)
Hash 0823d371a220e4d862ad01df2d44a85f
ebaab31dba0d223d5aff07237036882602571c29
46415532931f2eb4a28ea1f40a5ab46db93d4ad4fe738318e27fdd7f51ccf438
GET /wp-content/themes/jnews/assets/js/jquery.mousewheel.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "ad2-627d7ff6-be790;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1123
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/modernizr-custom.js?ver=10.6.3
34.95.218.219200 OK 6.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/modernizr-custom.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (16397)
Hash f9dfefcb8c32d9331fa74d82d5b2df9d
4c86e976fa26683d75c0c7b5d3cc07a94e8dd8e6
dd36deda247325194397e45fc093f99a7c82653766056ee4cd1aa3b1e10cf9ec
GET /wp-content/themes/jnews/assets/js/modernizr-custom.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "427e-627d7ff6-be743;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 6317
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/chosen.jquery.js?ver=10.6.3
34.95.218.219200 OK 6.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/chosen.jquery.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (28545)
Hash d540dc3d1e9d3bebbc9b872e8ca108f0
6b648b6b1dc516eb54627baf8906feaf2d0e52bd
27b7da1873bda696ec418043a78dd1ecb4ec8b2d7904afdce6450bb7bf00a248
GET /wp-content/themes/jnews/assets/js/chosen.jquery.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "70f6-627d7ff6-be79e;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 6556
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.magnific-popup.js?ver=10.6.3
34.95.218.219200 OK 6.9 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.magnific-popup.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20025)
Hash 822594034e6436a1d601a120c53b9700
3a814c2250730ac48c1991b170b8abe5deded023
ca6670c9f53b55556ac1cc4e754208376390e1e5bd79e2dc93f2676ed25c6c8a
GET /wp-content/themes/jnews/assets/js/jquery.magnific-popup.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "4ebc-627d7ff6-be7a5;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 6942
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jnewsgif.js?ver=10.6.3
34.95.218.219200 OK 470 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jnewsgif.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1143), with no line terminators
Hash cfe5570aa0677220f7bc1f49dd068688
8991b712e847380c459ec6d59b811aff41e85cc1
82d10695c2ef9885366507a6e7eade6b676191f6ea2a52a1c220ce19c29cbd9a
GET /wp-content/themes/jnews/assets/js/jquery.jnewsgif.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "477-627d7ff6-be740;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 470
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jsticky.js?ver=10.6.3
34.95.218.219200 OK 680 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jsticky.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1664), with no line terminators
Hash ee83c51386f942bfee14b4f126abbc03
f00a2ccc31836deac68cfad093e9fd43e3154fb6
914767d6ae11b07607a3fc351b99a87e72dfed75a8b6fea74690d3f9611e51f7
GET /wp-content/themes/jnews/assets/js/jquery.jsticky.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "680-627d7ff6-be7a7;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 680
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.transit.min.js?ver=10.6.3
34.95.218.219200 OK 2.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.transit.min.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (7830), with no line terminators
Hash 79cc7e3061dc53db190ca04b6191b114
3a2e2e8841081f9c07667d71d5ac9567f68af484
e9a4b07ce0c227a07b1224bd7f7dada794df3634123c963df6e9b78fcede3348
GET /wp-content/themes/jnews/assets/js/jquery.transit.min.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "1e96-627d7ff6-be74a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2620
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/darkmode.js?ver=10.6.3
34.95.218.219200 OK 1.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/darkmode.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5811), with no line terminators
Hash 7ed870e5edce49c29c92c6dee945bc3f
24d65fef688b791993e60c418ea388a845bfadfc
aed7fe1da4bc1233ae0360bb678ce47110995c660e3f491dd734b82d5f1d179c
GET /wp-content/themes/jnews/assets/js/darkmode.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "16b3-627d7ff6-be76a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1137
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/js/gutentor.min.js?ver=3.2.3
34.95.218.219200 OK 7.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/js/gutentor.min.js?ver=3.2.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (31643), with no line terminators
Hash 3287acc5a2ffe823526a7af1a0f52448
e985a443e4d72e04706f2f6c7b40fd9cad07c308
1193b6241fb6310ca08a90d2bd5013fc0ea68aad773cd8cde05772b09d3b9cc9
GET /wp-content/plugins/gutentor/assets/js/gutentor.min.js?ver=3.2.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "7b9b-62bf05f7-2f6442;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: application/x-javascript
content-length: 7237
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (31997)
Hash 6bb5a7de8ff493a639de2bacc5bed31d
c20bc62107b79671b5dd0399d9eafa78b5914401
3b5011a6474104144e2af85dbd2dee636edadd3d0f001cda2b2e8e7b8e9247a4
GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "ad36-627297ee-bd06d;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: application/x-javascript
content-length: 11052
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13
34.95.218.219200 OK 1.1 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2584)
Hash 8e95364bb41f1853d600fbdd0cf53352
f177efb63bdabf53bd6603e57ddeb259cb77d093
5575351103cb3c5d3cccd9ff3f9ede16c92839226b11f8867db8992492bfdc54
GET /wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "a72-627297ee-bd075;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: application/x-javascript
content-length: 1076
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.js?ver=10.6.3
34.95.218.219200 OK 13 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32438), with no line terminators
Hash e012e8fb952910c58b08034ca637fc8a
9dc27b3ae109b70d5909f0d36c2e613be1977a9f
a34e42c821bcb02a692fc25e398db17a5a33ae4644764ae8e83d2b5afecf738e
GET /wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "7eb6-627d7ff6-be767;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 12563
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jnewshero.js?ver=10.6.3
34.95.218.219200 OK 977 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jnewshero.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3417), with no line terminators
Hash e16cdb3f9c5be4b2565aab34c91876a1
48b4f05179dd0c727bc4fba9be73cf854ea78936
34ece6dcf28be26af957a01c754172818f436ab5c605edf91fca0c044c8576a3
GET /wp-content/themes/jnews/assets/js/jnewshero.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "d59-627d7ff6-be793;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 977
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.3
34.95.218.219200 OK 2.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5082)
Hash e476a7dfc8a105fcfd99ff754d963a39
ba48a7dce72fb6fcb2b73c6ace9d505fd81b2162
218686e2a19b1383e506d82e216b6d26e9347dac1361a3e3567f581f6aa82365
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "1405-621e4b0f-bf163;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: application/x-javascript
content-length: 2176
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
34.95.218.219200 OK 2.0 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4866)
Hash ca0d281f5b1029cbbc060698bfc74499
23ab8a5c89fe51ad3428f19771bb378959909ead
7be83bc83f45abf36813248fce832f9e48bfed8076b74a580b5c959b1a57ddb1
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "1329-621d7b83-beaad;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 2019
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
34.95.218.219200 OK 4.4 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (14196)
Hash 98ed878201526bdba302eaf34ed71a64
7345b0fe264a57dbf2340976c308840a9c72b798
57888c882a73055142af07e8edb2d9dc445263734b72da9e8a24a06dfb47f8bf
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "379b-621d7b83-beac6;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 4435
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.3
34.95.218.219200 OK 5.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20343)
Hash e9036cf35a6e5e1e1406a1dda9d67130
7abb983e301c187e7b93c10e87c05a9b3ce774b4
805360a40eeafb7214a69dc168df6ef672bcd0c316ab0275ece9766056ac722f
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "4fa2-621e4b0f-bf16a;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: application/x-javascript
content-length: 5240
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
34.95.218.219200 OK 2.8 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12198), with no line terminators
Hash fac362f53042ae00149855f961e3cd28
20ba41d9525cf54e3d25f4ac3a4170fb2bd04ef9
b98fe6e763ac9aa31a71af5fa8ec27c9121360080b817d279b6a23814c2bfc86
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "2fa6-621d7b83-be9f9;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 2843
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
34.95.218.219200 OK 6.8 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 35479cbcd227f62c265d4913801e1e6e
7f912dc7889d6e8476b8013e558a92d6c69a4dff
5f58a746823c6fd35e340a56576b4ed27206c76ecd1d7ed3e7e183ced3c39039
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "53c0-6361d51a-81234;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 6787
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
34.95.218.219200 OK 10 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (36994)
Hash 39b41c3851acd7f5848a83a834bd91f8
1f715bbdd611785612d5ec4b3d53ef17cc954c74
72d0c60a690c858a8cf5352df97202d7de1c55c50f515e403e49dff45951527e
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "90a9-621d7b83-bea99;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 10457
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.6.3
34.95.218.219200 OK 5.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (24170)
Hash 59de6d52b4ed4eaae8e68fbb53848aee
b5713115aa2fb1e551c41acbcca045c2b9829a1d
6b02e84a6b17d9f376f1facc011505cd2ad75b43ba8efcfeef11c8e7e6f446fc
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "5e95-621e4b0f-bf171;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: application/x-javascript
content-length: 5230
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2
34.95.218.219200 OK 8.9 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (57835), with no line terminators
Hash cfc48d28df66fdb28882aa1261558c90
83636644f41ad0552f0ff72d4e4c101595719895
8dd1cbef3bd4b5d4d4ff57557b527773bcbb4243b7249ec86275370bf68aa26c
GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "e1eb-628e48e5-1b94f3;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: text/css
content-length: 8903
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.2
34.95.218.219200 OK 9.5 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (45507)
Hash 9978d9df0d8532c1714dc491b95fa578
f7127b9da017122505229f50ca15b453e137207e
80d4a5c82b9ecbce9a572f28e00c1e0868038eb7eaca9a0508ae46311fe1e222
GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "b277-628e48e5-1b9442;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: text/css
content-length: 9514
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (47826)
Hash d3ace4cbc063a11d234150959032387f
4ada9de5e0c401161e54c16bcc4e15c97359964c
2d8e9b203216ba2817705c3a8a33498b8e95728b35f9453951ca1c1ee70c4823
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "172a9-63744a16-8115f;br"
last-modified: Wed, 16 Nov 2022 02:25:26 GMT
content-type: text/css
content-length: 11434
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/24liveblog/dist/blocks.style.build.css
34.95.218.219200 OK 173 B URL HTTP/2 romanews.com.br/wp-content/plugins/24liveblog/dist/blocks.style.build.css
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 4d918a9d7ef2036ed7513fe40d4a459c
3b3a5f5e1887384a307db01f43ad54f9be6e016c
136cf7e0d9d35b112b1519e512a12767a73e2fe2d73875eedc65a74844332332
GET /wp-content/plugins/24liveblog/dist/blocks.style.build.css HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "ad-62a8dc5a-c272c;;;"
last-modified: Tue, 14 Jun 2022 19:07:06 GMT
content-type: text/css
content-length: 173
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1656683765
34.95.218.219200 OK 188 B URL HTTP/2 romanews.com.br/wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1656683765
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (748)
Hash 0aac5ef3369e068a973289c5f3904c81
e9087061ba07862624f8c2f8331d77fa69a05a80
4128215c1e1fbcd8c2d259c6349d9e605bd03363f28ea09643f4a8d73a2395bd
GET /wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1656683765 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "2ed-62befcf5-2f5ec5;br"
last-modified: Fri, 01 Jul 2022 13:56:05 GMT
content-type: text/css
content-length: 188
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
34.95.218.219200 OK 30 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65447)
Hash b40fb9fe7e58ef64962baf56f90a40ab
cce116673633bf6862f084fdd8fb7840aa0545fe
34166ef654e1cadd20263c5bf7d770c40848f13652487a46e85feec43e5bf0a3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:05 GMT
etag: "15e54-6361d51a-81277;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 30176
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/logo.png
34.95.218.219200 OK 38 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/logo.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 464 x 118, 8-bit/color RGBA, non-interlaced\012- data
Hash 491e72e83345604ded3cee6ef369c99c
e64927e0165e40091717423f2a0698b910229d18
a95e9b869f5a1930ab0e50dcd4c15f8ad7512c812094ecc1ba9ffc57e1c02a8c
GET /wp-content/uploads/2022/05/logo.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "9591-627a5a67-26f1;;;"
last-modified: Tue, 10 May 2022 12:28:23 GMT
content-type: image/png
content-length: 38289
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
web-verificationbr.dns.army/wp-content/uploads/2022/05/Grupo-29-1.png
20.56.131.2404 Not Found 290 B URL HTTP/1.1 web-verificationbr.dns.army/wp-content/uploads/2022/05/Grupo-29-1.png
IP 20.56.131.2:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ba8f77f3a0283b7f2ffef855952aa9f
9f9b5244cc1e74cbd4e0cadd0357dd47201b7493
1fc9ea50e3bfa8b844c6ddce1a4f6622df9e28cabca2c997e8e94a4eb7d379ab
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET /wp-content/uploads/2022/05/Grupo-29-1.png HTTP/1.1
Host: web-verificationbr.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 22 Nov 2022 19:41:06 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 290
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web-verificationbr.dns.army/wp-content/uploads/2022/05/radio.png
20.56.131.2404 Not Found 290 B URL HTTP/1.1 web-verificationbr.dns.army/wp-content/uploads/2022/05/radio.png
IP 20.56.131.2:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ba8f77f3a0283b7f2ffef855952aa9f
9f9b5244cc1e74cbd4e0cadd0357dd47201b7493
1fc9ea50e3bfa8b844c6ddce1a4f6622df9e28cabca2c997e8e94a4eb7d379ab
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET /wp-content/uploads/2022/05/radio.png HTTP/1.1
Host: web-verificationbr.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 22 Nov 2022 19:41:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 290
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web-verificationbr.dns.army/wp-content/uploads/2022/05/radio.png
20.56.131.2404 Not Found 290 B URL HTTP/1.1 web-verificationbr.dns.army/wp-content/uploads/2022/05/radio.png
IP 20.56.131.2:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ba8f77f3a0283b7f2ffef855952aa9f
9f9b5244cc1e74cbd4e0cadd0357dd47201b7493
1fc9ea50e3bfa8b844c6ddce1a4f6622df9e28cabca2c997e8e94a4eb7d379ab
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET /wp-content/uploads/2022/05/radio.png HTTP/1.1
Host: web-verificationbr.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 22 Nov 2022 19:41:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 290
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
web-verificationbr.dns.army/wp-content/uploads/2022/05/Grupo-29-1.png
20.56.131.2404 Not Found 290 B URL HTTP/1.1 web-verificationbr.dns.army/wp-content/uploads/2022/05/Grupo-29-1.png
IP 20.56.131.2:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ba8f77f3a0283b7f2ffef855952aa9f
9f9b5244cc1e74cbd4e0cadd0357dd47201b7493
1fc9ea50e3bfa8b844c6ddce1a4f6622df9e28cabca2c997e8e94a4eb7d379ab
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET /wp-content/uploads/2022/05/Grupo-29-1.png HTTP/1.1
Host: web-verificationbr.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Tue, 22 Nov 2022 19:41:07 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 290
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b85e630b07e96590056baefd1e0a7582
7b84ca631a467f27fd336f6444b5a22820e4c106
b805e495d2d545af4da2c6f1f6c0607d24d30e4513c35f153ee45cf249070d4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4477
Cache-Control: max-age=88819
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:07 GMT
Etag: "637bcc49-117"
Expires: Wed, 23 Nov 2022 20:21:26 GMT
Last-Modified: Mon, 21 Nov 2022 19:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b85e630b07e96590056baefd1e0a7582
7b84ca631a467f27fd336f6444b5a22820e4c106
b805e495d2d545af4da2c6f1f6c0607d24d30e4513c35f153ee45cf249070d4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4477
Cache-Control: max-age=88819
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:07 GMT
Etag: "637bcc49-117"
Expires: Wed, 23 Nov 2022 20:21:26 GMT
Last-Modified: Mon, 21 Nov 2022 19:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 442849
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.15.4/webfonts/fa-regular-400.woff2
172.64.132.15200 OK 13 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-regular-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196\012- data
Hash b91d376b8d7646d671cd820950d5f7f1
13517529affa39e2585c591acae6dc336b6aa917
e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca
GET /releases/v5.15.4/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:07 GMT
content-type: font/woff2
content-length: 13224
x-amz-id-2: XgF+HiA/jKfY6+HDIP5uyY2/IRuWrHpvVh71iwVwz9nmIgfcJUMBHhMrXWoY0NrYYi9j5PJMpaY=
x-amz-request-id: W21MHXEKBBACPA51
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: "b91d376b8d7646d671cd820950d5f7f1"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rjgwfbTABCA470sKjMyaiP0CkWq2wvIuTZUoIKCqz1DDpbToMIjuBigE4SD35yt%2F89oFZAz45xD70E%2FW6xv70NUUlykx1xiHgzNYlPAEOMGj%2Fac4%2BQLke6aD2nFaibtpPFqnuEvC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e42408ca7171e6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/banner-roma-news-gv-bel.jpg
34.95.218.219200 OK 246 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/banner-roma-news-gv-bel.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.3 (Windows), datetime=2022:09:26 19:06:24], baseline, precision 8, 970x240, components 3\012- data
Size 246 kB (246396 bytes)
Hash 1e1616e1a1ce5443de1c9580cadb39a3
4c7a4e742a63f0165ab001dd5f86bd1fa1b50b76
80525acc7d1c15e0a95f5d217b033184c7665a751463af8b1534382d9ac2dd1b
GET /wp-content/uploads/2022/05/banner-roma-news-gv-bel.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "3c27c-63323b3d-1561a;;;"
last-modified: Mon, 26 Sep 2022 23:52:29 GMT
content-type: image/jpeg
content-length: 246396
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/26.09-Ebanner-970X250.gif
34.95.218.219200 OK 169 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/26.09-Ebanner-970X250.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 169 kB (168836 bytes)
Hash be1fead7a0be22fd7370340e745dca7f
040ea921fbe68af6ad465470a4163208cc5068ff
a323077f5c356ff9b33e860c6c82897571b78494a859858db149033707512c6a
GET /wp-content/uploads/2022/05/26.09-Ebanner-970X250.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "29384-63331225-15655;;;"
last-modified: Tue, 27 Sep 2022 15:09:25 GMT
content-type: image/gif
content-length: 168836
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash aa6d8a0e067b0c7922887719ad3b1581
96631c63cc62505af0e497db00e7191f9144b738
8ed936adf54dcc0460122c17d1560c0fba973aea626e162fefc3c4320f303402
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6237
Cache-Control: max-age=160411
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:07 GMT
Etag: "637cdd11-116"
Expires: Thu, 24 Nov 2022 16:14:38 GMT
Last-Modified: Tue, 22 Nov 2022 14:30:41 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
s.w.org/images/core/emoji/14.0.0/svg/25b6.svg
192.0.77.48200 OK 231 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/25b6.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 9fa9d42fbc4405fdca021e2fe9e5c4e2
ddc7d76a620e89affd881c33d019c20a4633bdd6
68596af11fc8972afb0ae7a3651cee7ea872da5db4dd918cc3237a8a53d18cda
GET /images/core/emoji/14.0.0/svg/25b6.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 19:41:07 GMT
content-type: image/svg+xml
content-length: 231
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ui.cleverwebserver.com/legacy?id=47309
104.18.24.246200 OK 38 kB URL HTTP/2 ui.cleverwebserver.com/legacy?id=47309
IP 104.18.24.246:0
Hash 3b246a469987afee50b24b411bdcc245
f4211c49981a6d83a4048b05c95bac26622f4ed4
8b936aa0873e25580f267625ac373e0aac2b8af669ffd934e5f50c4c1434ffef
GET /legacy?id=47309 HTTP/1.1
Host: ui.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:07 GMT
content-type: application/javascript
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76e4240badc2b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/06.09-Prefe_Belem_AcaoLimpeza_Ebanner_970x250px-01.gif
34.95.218.219200 OK 308 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/06.09-Prefe_Belem_AcaoLimpeza_Ebanner_970x250px-01.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 308 kB (308411 bytes)
Hash 2f4642b804b1fecfabf682a2817438c0
bf514600aa2177ffb9062f81cc88c3da5d4793c8
541580c8a2438d2d23e56a7fa9ece326ade27b5a1c2c456610fa70770a39dcab
GET /wp-content/uploads/2022/05/06.09-Prefe_Belem_AcaoLimpeza_Ebanner_970x250px-01.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "4b4bb-63176856-14d8a;;;"
last-modified: Tue, 06 Sep 2022 15:33:42 GMT
content-type: image/gif
content-length: 308411
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/BNA-0006-22-UNAMA-VESTIB-2022.2-BANNER-SITE-PREMIO-ROMA-970-x-250.png
34.95.218.219200 OK 154 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/BNA-0006-22-UNAMA-VESTIB-2022.2-BANNER-SITE-PREMIO-ROMA-970-x-250.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 970 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 154 kB (154407 bytes)
Hash 30dfd9b00229d374254917b9189ede89
24196b4d4d6bba9e1a20e037ee0d04ee876d2467
9b5375739b5f7aa3a04dd7eca4f77a2cc04f02e5a9721854706afc183e9b8d08
GET /wp-content/uploads/2022/05/BNA-0006-22-UNAMA-VESTIB-2022.2-BANNER-SITE-PREMIO-ROMA-970-x-250.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "25b27-62a35bcb-11d51;;;"
last-modified: Fri, 10 Jun 2022 14:57:15 GMT
content-type: image/png
content-length: 154407
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/cresol_cooperativismo_banner_roma-news_940x300px.jpg
34.95.218.219200 OK 43 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/cresol_cooperativismo_banner_roma-news_940x300px.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 940x300, components 3\012- data
Hash 918700bf37caae4c440aa67583c6a3a2
1ee0d57a25616d9c7c375eec09a9e96e579694e7
fa8a9a3612a1dea8b0b79b2f6dee4d93c62ef8d029d0d763af3fc2c205c5b830
GET /wp-content/uploads/2022/05/cresol_cooperativismo_banner_roma-news_940x300px.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "a95d-631b5991-14ef5;;;"
last-modified: Fri, 09 Sep 2022 15:19:45 GMT
content-type: image/jpeg
content-length: 43357
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/Banner-de-Internet-Portal-Roma-News-940x230-px.png
34.95.218.219200 OK 264 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/Banner-de-Internet-Portal-Roma-News-940x230-px.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 940 x 230, 8-bit/color RGB, interlaced\012- data
Size 264 kB (263625 bytes)
Hash 813fd5009330336626f193fe8fd1045f
8692c55af33cc154041e5a0358bf6080140e8ad8
cdc22390dd38b3fef713daee617f2843b841d7e2c279e08af54a9f70138ea822
GET /wp-content/uploads/2022/05/Banner-de-Internet-Portal-Roma-News-940x230-px.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "405c9-632b1a53-1533b;;;"
last-modified: Wed, 21 Sep 2022 14:06:11 GMT
content-type: image/png
content-length: 263625
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/28.09-V2_940x230_ROMANEWS_MULHERES_ENG.gif
34.95.218.219200 OK 77 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/28.09-V2_940x230_ROMANEWS_MULHERES_ENG.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 940 x 230\012- data
Hash f5a60001d3870196b793b656b89b0ad2
beb94767adf2e4245ff08d3c058991afea674885
084c737145a755e6dee03b804581d399f3da21178e65b50b5ea98041466d9569
GET /wp-content/uploads/2022/05/28.09-V2_940x230_ROMANEWS_MULHERES_ENG.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "12b09-63343b16-156ba;;;"
last-modified: Wed, 28 Sep 2022 12:16:22 GMT
content-type: image/gif
content-length: 76553
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.woff
34.95.218.219200 OK 7.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.woff
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format, CFF, length 7144, version 1.0\012- data
Hash 80f6e7a7a6eb44255aeb06a2d5b5ea41
4ded570e00c9c96cc3cf18e770903cb60e360ce4
e2d3127da85763e024971c6192f78becbdf85db231b3d088c9f8b3777d444ede
GET /wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.woff HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1be8-627d7ff6-be7ae;;;"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/font-woff
content-length: 7144
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
34.95.218.219200 OK 77 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "12bdc-621d7b83-bea5e;;;"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: font/woff2
content-length: 76764
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/VALE_BANNERBanner-970x250-Roma-News.gif
34.95.218.219200 OK 267 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/VALE_BANNERBanner-970x250-Roma-News.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 267 kB (266552 bytes)
Hash 7fdfb3f78ee8326f1169a79784bf4f75
728e9971a92e6c7329e18ce6250d33b60693283d
2e390312be67e1fb2978e7b3b2455de40585c4c872d2d84bf0cfeafed04057b1
GET /wp-content/uploads/2022/05/VALE_BANNERBanner-970x250-Roma-News.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "41138-63111868-13aac;;;"
last-modified: Thu, 01 Sep 2022 20:39:04 GMT
content-type: image/gif
content-length: 266552
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/DEFIC.jpeg
34.95.218.219200 OK 40 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/DEFIC.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 70", baseline, precision 8, 750x375, components 3\012- data
Hash ecd18f33f551be94885a6cea982982a2
bbe38fb317a81fb255d30066712139854a4a08c6
7f2bce6c9ec0e8531625480998f783b8f7060bd6ab25a5c16b8b56497abd5e60
GET /wp-content/uploads/2022/09/DEFIC.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "9b4b-6334e242-1540c;;;"
last-modified: Thu, 29 Sep 2022 00:09:38 GMT
content-type: image/jpeg
content-length: 39755
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/img/preloader.gif
34.95.218.219200 OK 4.4 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/img/preloader.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 100 x 75\012- data
Hash c9d5e0caa6894712e1fe34cc559ca47f
fca00e1a8ac564cb5dd327f13b1461ddd84220f4
d64e383dfb28ce7e37cba7ddf8dc33b90802fb1840a887c030f1af0b0047715a
GET /wp-content/themes/jnews/assets/img/preloader.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://romanews.com.br/wp-content/themes/jnews/assets/css/main.css?ver=10.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "112f-627d7ff6-be6b2;;;"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: image/gif
content-length: 4399
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/28.09-CIRIO-WEB-BANNER-PORTAIS-970x250-1.jpg
34.95.218.219200 OK 143 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/28.09-CIRIO-WEB-BANNER-PORTAIS-970x250-1.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 970x250, components 3\012- data
Size 143 kB (143146 bytes)
Hash 16f7fee749890e755e27e0c143d78417
b9e98f4b4113ce269e38fc2e48b154d67ae97806
e7071389dfde9690cb2411212976c711d4794945e3d44b3e9d9316790257d618
GET /wp-content/uploads/2022/05/28.09-CIRIO-WEB-BANNER-PORTAIS-970x250-1.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "22f2a-63345317-156c9;;;"
last-modified: Wed, 28 Sep 2022 13:58:47 GMT
content-type: image/jpeg
content-length: 143146
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
clevernt.com/scripts/d4df7c8540d51db388db8e38830b58c1.min.js?20210511=1669146066908
104.26.10.117200 OK 125 kB URL HTTP/2 clevernt.com/scripts/d4df7c8540d51db388db8e38830b58c1.min.js?20210511=1669146066908
IP 104.26.10.117:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 125 kB (124563 bytes)
Hash 837704a88a1d67e4655f2a7a9e3e8746
d9a2af6dde54ddf8f37fbefcb8aeeb4f07b7a9d6
f157bc6ce8f6930415db2afa1797a6110f84c2ebf302d9e1ee1264cfbe8eb7ba
GET /scripts/d4df7c8540d51db388db8e38830b58c1.min.js?20210511=1669146066908 HTTP/1.1
Host: clevernt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:07 GMT
content-type: text/javascript
x-amz-id-2: Yac4gfqtHfcHZCWmD6GExOJ0rt4JFShODL75Y778XxPvcQ2+YRrH1+WJYpALY0mJzF8CmKFx1xY=
x-amz-request-id: 1J881AHCMWJPN09V
last-modified: Mon, 14 Nov 2022 23:29:11 GMT
etag: W/"36dc42531763e8eda3ea7cb6c7931732"
cache-control: max-age=1800
cf-cache-status: HIT
age: 624
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NxsPOdD%2Fq7HqzBXUrzQN3b1LfP9OwpRx3L37wN%2FvTTKrCy3aUvy293dZt9lhli3VW5B2MXtxwvHMZWynjMCZYSZkVrKXzl8N4lmups7dfdNkZ%2F4gtIfSpGQye%2Fhggw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e424084d62b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/porto-dias-anuncio-01.jpg
34.95.218.219200 OK 101 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/porto-dias-anuncio-01.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Macintosh), datetime=2019:10:10 18:49:10], baseline, precision 8, 940x230, components 3\012- data
Size 101 kB (101215 bytes)
Hash b285d975a03ec86dcc42c31963be0dea
b57c20d208750664526d26561b6327ae512908ae
1ddf266f70e4dbdda31108a07d59058777ca95f4c066ea8761a4090f711102be
GET /wp-content/uploads/2022/05/porto-dias-anuncio-01.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "18b5f-62fe3298-133f3;;;"
last-modified: Thu, 18 Aug 2022 12:37:44 GMT
content-type: image/jpeg
content-length: 101215
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/NOITE-DE-NUPCIAS-img-20220125-wa0079.jpg
34.95.218.219200 OK 106 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/NOITE-DE-NUPCIAS-img-20220125-wa0079.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x329, components 3\012- data
Size 106 kB (106154 bytes)
Hash 518274fb85d460204860bdc8302523a0
b95a1b5e4d7f2a65495bd8266546613186165677
f50572741063d1ce5a92ff0f49e294eea51b6531b38a6a09aa345264955746f6
GET /wp-content/uploads/2022/05/NOITE-DE-NUPCIAS-img-20220125-wa0079.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "19eaa-628fc24d-105c6;;;"
last-modified: Thu, 26 May 2022 18:09:17 GMT
content-type: image/jpeg
content-length: 106154
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.smartresize.js?ver=10.6.3
34.95.218.219200 OK 180 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.smartresize.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Size 180 kB (179908 bytes)
Hash ce6937e2462cdd5ec4cada46a6347ea4
008bfdc877477af6a94f4c6f5527e5e982658382
15822610549acc9d615757e5829228fb0df15b598e95ac2a79b3f46f84d4e011
GET /wp-content/themes/jnews/assets/js/jquery.smartresize.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "10b-627d7ff6-be758;gz"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/BA_BANNER-PORTAIS_CIRIO_ROMA_970X250PX_AGO22.png
34.95.218.219200 OK 221 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/BA_BANNER-PORTAIS_CIRIO_ROMA_970X250PX_AGO22.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 970 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 221 kB (221257 bytes)
Hash 1cf470f7c5c8b0d4be467affc9bb7e6e
6a100d12b141f01100d140b807f62c6d9e6d7f9f
9bdf5b6709554e1c8921a919769853c3b5dc629321c6600c33730abba37a5ac6
GET /wp-content/uploads/2022/05/BA_BANNER-PORTAIS_CIRIO_ROMA_970X250PX_AGO22.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "36049-6324bdcb-14fb7;;;"
last-modified: Fri, 16 Sep 2022 18:17:47 GMT
content-type: image/png
content-length: 221257
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/ECO_BANNER_ROMA_970x250px_AGO22.png
34.95.218.219200 OK 287 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/ECO_BANNER_ROMA_970x250px_AGO22.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 970 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 287 kB (287153 bytes)
Hash 258bdade03832ba5b5a02cecb2714460
cc4c14ac0ba3093c9740b0e65dd7341cff39b55f
a1b987b6ef8166a7b0433153594c8fd70dd4fa9e0dbd706be649fc38ad1bcb68
GET /wp-content/uploads/2022/05/ECO_BANNER_ROMA_970x250px_AGO22.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "461b1-632a2771-15308;;;"
last-modified: Tue, 20 Sep 2022 20:49:53 GMT
content-type: image/png
content-length: 287153
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/BANNER-CIRIO-RADISSON-f0a374da-d1a1-4855-9ebb-e325e82d0a67.jpg
34.95.218.219200 OK 119 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/BANNER-CIRIO-RADISSON-f0a374da-d1a1-4855-9ebb-e325e82d0a67.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x329, components 3\012- data
Size 119 kB (119056 bytes)
Hash cb3695bb0dd7d57194fbb7212d827984
6a521f5dc820806072c5c140dc412d4fdabeb48b
362d9c8f922284239b84d5811a3b88c07dfccbffffe471c36d6c1cfc39742f11
GET /wp-content/uploads/2022/05/BANNER-CIRIO-RADISSON-f0a374da-d1a1-4855-9ebb-e325e82d0a67.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "1d110-62e82b0a-12a99;;;"
last-modified: Mon, 01 Aug 2022 19:35:38 GMT
content-type: image/jpeg
content-length: 119056
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/940x230-px-1.gif
34.95.218.219200 OK 223 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/940x230-px-1.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 940 x 230\012- data
Size 223 kB (222965 bytes)
Hash b398db89973ec64206a02ed39b4189f3
8acfba1e58f7ace84907bfcdfdf745c0cfc7eb10
c4416f1ba7d5d805c7dd57e839ea422b4381f3388a31cd6cdc99d09ced23f025
GET /wp-content/uploads/2022/05/940x230-px-1.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "366f5-62e81e34-1107f;;;"
last-modified: Mon, 01 Aug 2022 18:40:52 GMT
content-type: image/gif
content-length: 222965
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 78 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Hash d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
GET /releases/v5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:08 GMT
content-type: font/woff2
content-length: 78268
x-amz-id-2: 5PsBSw4UaWiztUNyvbO6Etu1vmhcS8jlZ+eRygNbAbS5WGGpu3AQ257TUtvXugC/uNZt0fW5T0M=
x-amz-request-id: QQXQKF2GX2KG1F3H
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: "d824df7eb2e268626a2dd9a6a741ac4e"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p7D8YoDDlHcWmzWE9YxK1umrmmL2yt2D7VWRetceyxPl0PR4Awmk84%2BKh4Xy1%2BekTlpCuAd8ozVZsYwXiK6xkz9bwQCf6FHQ4G3I4fT591c209JgzcQBN38kRUfDNVqYWw92T4aB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e4240cf9b971e6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/MAFRA-TUR-BANNER.jpg
34.95.218.219200 OK 1.1 MB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/MAFRA-TUR-BANNER.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 970x240, components 4\012- data
Size 1.1 MB (1108797 bytes)
Hash ca34c8f9b182e19de8af05cd0da2adbb
569c2fbb77a19c02be2bafbcc50f60b0728d6769
7707f7504bd6d0df6f5e77201ef72ece39fd0ea605ad99d2d7d72db6f4d330cb
GET /wp-content/uploads/2022/05/MAFRA-TUR-BANNER.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:07 GMT
etag: "10eb3d-6334950f-15704;;;"
last-modified: Wed, 28 Sep 2022 18:40:15 GMT
content-type: image/jpeg
content-length: 1108797
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:07 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/06/prf-foto-Luca-_Gebara-Ag__ncia-AL-768x512-1-350x250.jpg
34.95.218.219200 OK 14 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/06/prf-foto-Luca-_Gebara-Ag__ncia-AL-768x512-1-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 350x250, components 3\012- data
Hash acb1d92bc8ab4043cba5fc7b98fec683
f1437aef89a4048668ad5cefc38438450820c6a2
520d7cb5f95bbaa78aebcea69c4d2ce898450312a6a77e1f6f845336dbe17fd7
GET /wp-content/uploads/2022/06/prf-foto-Luca-_Gebara-Ag__ncia-AL-768x512-1-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "38a0-62be33b2-182ff3;;;"
last-modified: Thu, 30 Jun 2022 23:37:22 GMT
content-type: image/jpeg
content-length: 14496
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/acidente-augusto2-350x250.jpg
34.95.218.219200 OK 15 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/acidente-augusto2-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 51126f869b1fc4fa03b44cd1400b45e0
ea1dc7e91feb2381fb6f2b4ab80d235ea73984c3
dce87207c4a969900342df38f3103f2ae89944cebf9b581e57a6f05aa4954e31
GET /wp-content/uploads/2022/09/acidente-augusto2-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "39b9-6334dbb1-248fcd;;;"
last-modified: Wed, 28 Sep 2022 23:41:37 GMT
content-type: image/jpeg
content-length: 14777
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-20.33.36-350x250.jpeg
34.95.218.219200 OK 31 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-20.33.36-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 98accd6721c4eb0f097a511c8ccba996
347f4169b8a852c5211793be36dda1d501ed70af
d7e881250a13fd39749b79a75f73cb82a99e0a1346689fa2fac7e32f3cbaed22
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-20.33.36-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "79de-6334dd6f-248fd9;;;"
last-modified: Wed, 28 Sep 2022 23:49:03 GMT
content-type: image/jpeg
content-length: 31198
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-19.03.15-350x250.jpeg
34.95.218.219200 OK 12 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-19.03.15-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 2f706bc16ae512ff5219a28003fb4a93
3c76d744f8af5be61fa7330fad3751392e452ffb
75f5d0c34612851e7b3c0a27a7523c341323847309d944396e71630c3d5aed7a
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-19.03.15-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "30e8-6334c4f4-248fb9;;;"
last-modified: Wed, 28 Sep 2022 22:04:36 GMT
content-type: image/jpeg
content-length: 12520
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-17.51.24-350x250.jpeg
34.95.218.219200 OK 20 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-17.51.24-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash ed2683d42e722fdc5aaa17c9579f0844
5d8c3e9d57f982761c3a61791a674900cf12cfbc
cd3b6c1f4a64f2e0855accce98120fa3dde6dda2457219946fd99a9628316b65
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-17.51.24-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "4d38-6334b3fc-248f13;;;"
last-modified: Wed, 28 Sep 2022 20:52:12 GMT
content-type: image/jpeg
content-length: 19768
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-18.03.11-350x250.jpeg
34.95.218.219200 OK 19 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-18.03.11-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 18f9503c7011d4b68b6763ee62431672
bcd85fa9da14519a63a554ec187c13c7f62df70c
37cb8beaf8d60f9e08a95ce471afe2fcafd443486239061ac97885c500b707be
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-18.03.11-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "489d-6334b6eb-248f2f;;;"
last-modified: Wed, 28 Sep 2022 21:04:43 GMT
content-type: image/jpeg
content-length: 18589
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-11.55.55-350x250.jpeg
34.95.218.219200 OK 21 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-11.55.55-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 4e66329640620f1706ceed36dafdfc7e
84a8bea2a85e15729f29061117b9eed188dd8626
12454c55b65ae48b0f2a26c0e68479c21ee0a67ac540eeabb9a1cc137da24af8
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-11.55.55-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "524c-63346107-248c4d;;;"
last-modified: Wed, 28 Sep 2022 14:58:15 GMT
content-type: image/jpeg
content-length: 21068
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/img_40a9bc57a89ba0451a5780feb92d7d4b1000590-350x250.jpg
34.95.218.219200 OK 19 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/img_40a9bc57a89ba0451a5780feb92d7d4b1000590-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x250, components 3\012- data
Hash 99719673ea145d53656b43081aabf3d9
b4cae2fbe7305e5f747442ad7dd0dc811acd51ab
bddb1f846335abc8a7720923a1c8dcf235a26abdfc41b7c1ed347a7357b436f1
GET /wp-content/uploads/2022/09/img_40a9bc57a89ba0451a5780feb92d7d4b1000590-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "48b6-6334bc47-248f79;;;"
last-modified: Wed, 28 Sep 2022 21:27:35 GMT
content-type: image/jpeg
content-length: 18614
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-16.51.01-350x250.jpeg
34.95.218.219200 OK 14 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-16.51.01-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash bd6a89627590f8a72a37c7ae4e43d48b
03bbcf007014b4aa779281a32896fa8fff4484ae
3bea02ffa04013233c8a6d1ccf864fa846fd1404976e0717333816f8cac5faa4
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-16.51.01-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "38c2-6334a78c-248ed3;;;"
last-modified: Wed, 28 Sep 2022 19:59:08 GMT
content-type: image/jpeg
content-length: 14530
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/Sem-titulo-6-350x250.jpg
34.95.218.219200 OK 18 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/Sem-titulo-6-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash ec602c0c402aaee7e65b0170200fe5c5
9275dcd6dea7237f28ba87490f5794cab67d30d0
e6b8582bd5a7a95e49e819a91ee95d763a2a62faa04c85cbed1c9fa0c4f36b0d
GET /wp-content/uploads/2022/09/Sem-titulo-6-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "4487-63347c0f-248ce8;;;"
last-modified: Wed, 28 Sep 2022 16:53:35 GMT
content-type: image/jpeg
content-length: 17543
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-14.35.58-350x250.jpeg
34.95.218.219200 OK 16 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-14.35.58-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash ce6f287e0551a6baf297795be1abbf8f
ba1d59099e8e997b7eb143e69c8a59af4f38ee1a
85ea901ad25c6a072b5e1e712aa95a60dbbb5fdd76165076852b34705f9b3cb7
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-14.35.58-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "3ca7-63348631-248dbb;;;"
last-modified: Wed, 28 Sep 2022 17:36:49 GMT
content-type: image/jpeg
content-length: 15527
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.ttf
34.95.218.219200 OK 7.9 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.ttf
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3402), with no line terminators
Hash 1e5d04fdab0cbe8e640cd5c0225974c5
e1cb19f501bfda6c0a3a59711760b5ab0971e2e0
c06b4f617b07a635ba4d5518738b677c3cefc26a52c37538b8d78e7195adb11b
GET /wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.ttf HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "329c-627d7ff6-be7ad;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-font-ttf
content-length: 6383
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.eot
172.64.132.15200 OK 192 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.eot
IP 172.64.132.15:0
File type Embedded OpenType (EOT), Font Awesome 5 Free Solid family\012- data
Size 192 kB (192350 bytes)
Hash 41075ae84124c8fb2e702447c856f647
9229613f8a0c14704d9b51eb61dbca9e6116dca1
c70c55db11522659067d1ee73478f8f239855da76d51ff8eae606515c193c342
GET /releases/v5.15.4/webfonts/fa-solid-900.eot HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:07 GMT
content-type: application/vnd.ms-fontobject
x-amz-id-2: Xk+3+GRUtifpslBLton4UbAfatMy9OMFzuYMBFBNdgMIaTd4scdTZIE+HOkWV/pGJcuw4s2t2j0=
x-amz-request-id: W21MX9GSVAHWM21K
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: W/"0c6bfc668a72935760178f91327aed3a"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qehpIN3G4POkzr2TP4KY3bKvLs0%2BxI169%2Fh5RJF2m03dkQv7VEiZFzzLO2OyRNd46jaTvuw3ZuBs0NZeti19mHEEbE7Ctf1Iw6xpjWNiuvVLBX%2BLbQFILoED3afcwCK6lvLff8VL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e42408ba5a71e6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
34.95.218.219200 OK 89 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Hash 027334f271052f851e49c90fb235e62d
2fc56bc35ef491258509d66561e15b29d31cce48
2a78cbfe5120fb788772ca7cd64cb6dc97e7c56159044e87bbc1543942b85841
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "20b98-621d7b83-bea5d;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-font-ttf
content-length: 88561
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
call.cleverwebserver.com/?id=47309&c=NO&r=03&l=187&b=Firefox&os=Win10&mob=0&v=1.0.0-legacy&ref=aHR0cHM6Ly93ZWItdmVyaWZpY2F0aW9uYnIuZG5zLmFybXkv&ruri=&iv=-1&ctr=NO&sz=939
104.18.24.246200 OK 43 B URL HTTP/2 call.cleverwebserver.com/?id=47309&c=NO&r=03&l=187&b=Firefox&os=Win10&mob=0&v=1.0.0-legacy&ref=aHR0cHM6Ly93ZWItdmVyaWZpY2F0aW9uYnIuZG5zLmFybXkv&ruri=&iv=-1&ctr=NO&sz=939
IP 104.18.24.246:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /?id=47309&c=NO&r=03&l=187&b=Firefox&os=Win10&mob=0&v=1.0.0-legacy&ref=aHR0cHM6Ly93ZWItdmVyaWZpY2F0aW9uYnIuZG5zLmFybXkv&ruri=&iv=-1&ctr=NO&sz=939 HTTP/1.1
Host: call.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:08 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76e42411ba03b506-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-49TPHE05FN>m=2oeb90&_p=476101098&_gaz=1&cid=861233395.1669146068&ul=en-us&sr=1280x1024&_s=1&sid=1669146067&sct=1&seg=0&dl=https%3A%2F%2Fweb-verificationbr.dns.army%2F&dt=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-49TPHE05FN>m=2oeb90&_p=476101098&_gaz=1&cid=861233395.1669146068&ul=en-us&sr=1280x1024&_s=1&sid=1669146067&sct=1&seg=0&dl=https%3A%2F%2Fweb-verificationbr.dns.army%2F&dt=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-49TPHE05FN>m=2oeb90&_p=476101098&_gaz=1&cid=861233395.1669146068&ul=en-us&sr=1280x1024&_s=1&sid=1669146067&sct=1&seg=0&dl=https%3A%2F%2Fweb-verificationbr.dns.army%2F&dt=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://web-verificationbr.dns.army
date: Tue, 22 Nov 2022 19:41:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/video.1a44ef088849d6949ada.bundle.min.js
34.95.218.219200 OK 1.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/video.1a44ef088849d6949ada.bundle.min.js
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3285)
Hash ecd391b1c09662c79d02803d3aa10ae2
c79735c6f4fda0e9f320d8e4f18ee95d98e80366
1bc5704409620bffe270e3d1df2b56f0b1791fb60157f2ce9389a5141d835904
GET /wp-content/plugins/elementor/assets/js/video.1a44ef088849d6949ada.bundle.min.js HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "cfc-621d7b83-bea88;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 1222
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-49TPHE05FN&cid=861233395.1669146068>m=2oeb90&aip=1
142.250.150.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-49TPHE05FN&cid=861233395.1669146068>m=2oeb90&aip=1
IP 142.250.150.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-49TPHE05FN&cid=861233395.1669146068>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://web-verificationbr.dns.army
date: Tue, 22 Nov 2022 19:41:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff2
34.95.218.219200 OK 63 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 63376, version 1.0\012- data
Hash f319eac1c755f9929fd856720ce1695e
0a885a5dbd97bd9f4fb1821eb82f2135471faff9
62b5e7ae9e2ed60dcd7cb2e0823dd0884575f2176aff629f2df1e912dfae20e1
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:08 GMT
etag: "f790-628e48e5-1b9438;;;"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: font/woff2
content-length: 63376
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:08 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/webfonts/fa-brands-400.woff2
172.64.132.15200 OK 77 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-brands-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 76736, version 331.-31196\012- data
Hash ed311c7a0ade9a75bb3ebf5a7670f31d
0613c7ebba55ee47ef302c0f7766324692f899a7
8ea8791754915a898a3100e63e32978a6d1763be6df8e73a39d3a90d691cdeef
GET /releases/v5.15.4/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:09 GMT
content-type: font/woff2
content-length: 76736
x-amz-id-2: 8DaSjOJcHXapSzPk6WRadRRuBKS/KuhbbyFAhtKg7kl9cOuMeM2UBKg5fk6GI35KDn2WtrimSvU=
x-amz-request-id: QQXVPJKAKJHW0W4T
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: "ed311c7a0ade9a75bb3ebf5a7670f31d"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6qNCvdS9veP2Tc5mrJZxvg7z1VOZyr9LmApJTuHYGaNvbzA1SZ5t%2BDkiAPCp7bM3r1WLDBKkQGgLwM5wxk0QSgWKAWkAcCGT%2FEnWo9aFwAjo0RFdvWIMiEIy3Bn7QLxnUZrql8nF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e424120a3071e6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.ttf
34.95.218.219200 OK 73 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.ttf
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type TrueType Font data, 11 tables, 1st "GSUB", 18 names, Macintosh, Font AwesomeFont Awesome 5 BrandsRegularFont Awesome 5 Brands RegularFont Awesome 5 Brands Regul\012- data
Hash 027f222abb22f1fd497a054fb0fbdcec
e3feb57863ee6e18f97fcbf4ec58bb10d04105f7
1f12c1f2602d5fcdd09378508b17479b90ec9118cf9a1ab22663d2c20a1fb02f
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:09 GMT
etag: "1c080-628e48e5-1b9437;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-font-ttf
content-length: 72775
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:09 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 22 Nov 2022 18:41:08 GMT
expires: Tue, 22 Nov 2022 20:41:08 GMT
cache-control: public, max-age=7200
age: 3601
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9ef11a2d1e232b4b45e40ff0c29fa8b0
0966963f13e3b149e3e3c8c2c81e7986d1d8a07b
9ce8b9ab5f1dfdc0686d1660ed64c6eff5cc3d1492d82aa769ac58e3a159dd1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6202167740899584
142.250.74.98200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6202167740899584
IP 142.250.74.98:0
File type ASCII text, with very long lines (4885)
Hash fa130cb4981db828fd982fe9e54c3090
b1b144f75ca62d05187bf35931062924fdef8ed2
100663b33f532646b71b9a6940a205c90f85d2739ac145240ee872d9c18ea59e
GET /pagead/js/adsbygoogle.js?client=ca-pub-6202167740899584 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:09 GMT
expires: Tue, 22 Nov 2022 19:41:09 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6511418515039722493
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49150
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash dc18476a17e787dc0700f3ee8dc99bcf
4db3ef7edb2683d8141280b9dd780ce4375e3c0f
4082538731e62eb96bd62690e973875ef9e3048432a3a849d7bedd37872b79ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 185c0456d7a0265cb879f48b395151bb
eb6f7759e1ffa35daa93e3f9241d2b62d294003e
2820ee5de347f686ea4e9302c187ce423d274d3f706b2c1c3d01eb4f0888cc72
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff
34.95.218.219200 OK 115 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format, TrueType, length 73920, version 1.0\012- data
Size 115 kB (114672 bytes)
Hash 081432ea0b42ece66fe92c698d05a8f3
67a98f69ecc526f9a67646057ffb74fda020a5d6
3e28bf329393a4ffe282f41f4e32b2b9b6bda69c107219f86887593ffe6bc304
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "120c0-628e48e5-1b943b;;;"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/font-woff
content-length: 73920
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:09 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
gadasource.storage.googleapis.com/ivc.js
142.250.74.144200 OK 24 kB URL HTTP/2 gadasource.storage.googleapis.com/ivc.js
IP 142.250.74.144:0
File type ASCII text, with very long lines (880)
Hash cdaa61cbc24c48191196b45b31a7e18b
8f9b524845e378a3f5f488838d024f622c2de46f
dd64819eedd8baed6eb46fd1e9ea54d0e385e19db40878a1150aee1e44401be5
GET /ivc.js HTTP/1.1
Host: gadasource.storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduv05fI0JLQcGV5wwD1yYtiLspu0m5g1QIfccIB0ZvcZunmrJxCYYXTHdjLwcxBa4tk5irzdYC7Fw9B0Ti9X8bIXw
x-goog-generation: 1567453851562424
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 24321
content-encoding: gzip
x-goog-hash: crc32c=okr5pw==, md5=zaphy8JMSBkRlrRbMafhiw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 24321
server: UploadServer
date: Tue, 22 Nov 2022 19:13:12 GMT
expires: Tue, 22 Nov 2022 20:13:12 GMT
cache-control: public, max-age=3600
age: 1677
last-modified: Mon, 02 Sep 2019 19:50:51 GMT
etag: "cdaa61cbc24c48191196b45b31a7e18b"
content-type: text/plain
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-49TPHE05FN&cid=861233395.1669146068>m=2oeb90&aip=1&z=1944987254
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-49TPHE05FN&cid=861233395.1669146068>m=2oeb90&aip=1&z=1944987254
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-49TPHE05FN&cid=861233395.1669146068>m=2oeb90&aip=1&z=1944987254 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 22 Nov 2022 19:41:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 9ef11a2d1e232b4b45e40ff0c29fa8b0
0966963f13e3b149e3e3c8c2c81e7986d1d8a07b
9ce8b9ab5f1dfdc0686d1660ed64c6eff5cc3d1492d82aa769ac58e3a159dd1b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash dc18476a17e787dc0700f3ee8dc99bcf
4db3ef7edb2683d8141280b9dd780ce4375e3c0f
4082538731e62eb96bd62690e973875ef9e3048432a3a849d7bedd37872b79ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/uploads/2022/03/rn-favicon.png
34.95.218.219200 OK 27 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/03/rn-favicon.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 156 x 161, 8-bit/color RGBA, non-interlaced\012- data
Hash 02b767be69bd499cff08a876cb2d6cbc
2eb2c0890c8f63e29f9a1291570b1f1d28883005
6bb9cc48b009ef6a083559f47c601b3422bb6c40f8f82a1354dfa3414d7e88ce
GET /wp-content/uploads/2022/03/rn-favicon.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:09 GMT
etag: "6a72-621e3cb0-857c;;;"
last-modified: Tue, 01 Mar 2022 15:33:04 GMT
content-type: image/png
content-length: 27250
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:09 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 185c0456d7a0265cb879f48b395151bb
eb6f7759e1ffa35daa93e3f9241d2b62d294003e
2820ee5de347f686ea4e9302c187ce423d274d3f706b2c1c3d01eb4f0888cc72
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/uploads/2022/03/rn-favicon-75x75.png
34.95.218.219200 OK 7.5 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/03/rn-favicon-75x75.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a458d18ab72957308e6813dd6bdd272
f54b8b2ad6e6c7714e6455457aecedf02579972e
1e1274f46e79792eb61008da2d50719ccb0eb438cf6845bf9aa449cf0309c893
GET /wp-content/uploads/2022/03/rn-favicon-75x75.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:09 GMT
etag: "1d39-627db7a8-bd649;;;"
last-modified: Fri, 13 May 2022 01:43:04 GMT
content-type: image/png
content-length: 7481
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:09 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Tue, 22 Nov 2022 10:25:42 GMT
expires: Tue, 06 Dec 2022 10:25:42 GMT
cache-control: public, max-age=1209600
age: 33327
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=web-verificationbr.dns.army
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=web-verificationbr.dns.army
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=web-verificationbr.dns.army HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 19:41:10 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=web-verificationbr.dns.army
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=web-verificationbr.dns.army
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=web-verificationbr.dns.army HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 19:41:10 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a3ea82c9e7675ecce540d6e33300d472
39f1b75090217a7407a07630486674778dba8b7b
ecab1a4733ebbdeaa700fc4180dab6692e03e89df8277c70304065196222aea5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash f7352fe7da7dab68ba48d7aec0f6f1a6
65c16626656d248b5beae86b7131bb0d49b21690
c6aba82f61d21c2b4549623ea8cb4a306fc59f1ee203b5de11ee4dea219846d0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=115252
Date: Tue, 22 Nov 2022 19:41:10 GMT
Etag: "637c35c5-1d7"
Expires: Thu, 24 Nov 2022 03:42:02 GMT
Last-Modified: Tue, 22 Nov 2022 02:36:53 GMT
Server: ECS (dcb/7EC6)
X-Cache: Miss from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Do4iu3-joOFX6UyE2MmLjQw0B61EP1WjeICNzKvl5L3SZ9nXjKzOzA==
Age: 3909
partner.googleadservices.com/gampad/cookie.js?domain=web-verificationbr.dns.army&callback=_gfp_s_&client=ca-pub-6202167740899584&gpid_exp=1
216.58.207.194200 OK 248 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=web-verificationbr.dns.army&callback=_gfp_s_&client=ca-pub-6202167740899584&gpid_exp=1
IP 216.58.207.194:0
File type ASCII text, with very long lines (383), with no line terminators
Hash a2ca5be23f5fc9fb4a05a0dccfae141b
0b3ce4b069b423b2e97cc5d74a15a46eb1f77af2
a5cc4902abb069a53416908782efd434fbee427608544346d88a202d019b2d16
GET /gampad/cookie.js?domain=web-verificationbr.dns.army&callback=_gfp_s_&client=ca-pub-6202167740899584&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 22 Nov 2022 19:41:10 GMT
server: cafe
cache-control: private
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 284952
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 21:46:16 GMT
expires: Fri, 17 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 424494
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik
142.250.74.10200 OK 3.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik
IP 142.250.74.10:0
Hash f68fedff674854a43b6539b8b33bff22
4bc6c657085f6d2675da7aa26dae244c94f88a10
ef4dfabe69f26d92adf5fef4f85b21a0eee5215cb5ff61fce90785b5b9b2a440
GET /css?family=Rubik HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 19:41:04 GMT
date: Tue, 22 Nov 2022 19:41:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a3ea82c9e7675ecce540d6e33300d472
39f1b75090217a7407a07630486674778dba8b7b
ecab1a4733ebbdeaa700fc4180dab6692e03e89df8277c70304065196222aea5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 22 Nov 2022 19:41:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.138200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 3c623d0152f88dced5b2d63653d4c734
16a3821895646f578c5e33c91a8d4f48bb565dbc
c543acc582ab71b5cce494969365f2dd314596b337733083e0fc10d2a969864a
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 22 Nov 2022 19:41:11 GMT
server: ESF
cache-control: private
content-length: 31066
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a38aa4b5a4272297557b8886c0f03d09
9511f4f31be16a663069b2f0578f46a08bda8db9
aeb14dc6028a428140b499ba27bcf4c1ab98d8a212e7433d332ff927c6013b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/Nt5v8Aofito/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB_gmAAtAFigIMCAAQARhlIGUoZTAP&rs=AOn4CLCQNGDNIOXxT2Rqgu1FYqJlTo-hCg
142.250.74.182200 OK 2.8 kB URL HTTP/2 i.ytimg.com/vi/Nt5v8Aofito/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB_gmAAtAFigIMCAAQARhlIGUoZTAP&rs=AOn4CLCQNGDNIOXxT2Rqgu1FYqJlTo-hCg
IP 142.250.74.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 26ac052a7f1e79cf65c72f11a8a9eb1b
ad96a7db30d51b6737332b740a2cb2ce89f40d0f
7d38f2877540771d410cd2b70c43343dc18de229655083ffa62bbac69c08fe78
GET /vi/Nt5v8Aofito/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB_gmAAtAFigIMCAAQARhlIGUoZTAP&rs=AOn4CLCQNGDNIOXxT2Rqgu1FYqJlTo-hCg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2815
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:08:31 GMT
expires: Tue, 22 Nov 2022 20:08:31 GMT
cache-control: public, max-age=7200
age: 5560
etag: "0"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a38aa4b5a4272297557b8886c0f03d09
9511f4f31be16a663069b2f0578f46a08bda8db9
aeb14dc6028a428140b499ba27bcf4c1ab98d8a212e7433d332ff927c6013b33
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0a5ad626d1ba8ddd7c0d24d20b7a0eab
2a098b38e5c91e4b3e6e92a567d36aa1c136ed39
f8e0672f400ed58bf505419f3b5b0ce9f78ae8087c905319d8830be950e1931b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fab2cb3bd48a955d89176110d75459e4
8e642591b32f0095b8302d23b2aa3d4849352c56
71e3ae0dd72335874bd1e42e216d72a6185fb21786e55efbf3012ee0094692a0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 22 Nov 2022 19:41:11 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 3.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
Hash da784cb7a4fb356cf7bf4623f2823a69
7709c7bd2dbcc3424653c0decc2cf504c345e48e
bcf9d9437874e8cda3da3f61e06091ad00bdc5697b24c7d0bc4720ddfd6ef72b
GET /css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 19:41:04 GMT
date: Tue, 22 Nov 2022 19:41:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ivccf.ivcbrasil.org.br/i?stm=1669146069577&e=pv&url=https%3A%2F%2Fweb-verificationbr.dns.army%2F&page=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&tv=js-2.9.2-SNAPSHOT&tna=cf&aid=504&p=web&tz=UTC&lang=en-US&cs=UTF-8&f_inpriv=0&f_abd=0&res=1280x1024&cd=24&cookie=1&eid=f3042482-ee18-48f1-8b75-4d9538e14a04&dtm=1669146069577&vp=1280x939&ds=1268x10716&vid=1&sid=0f626d3e-b94d-420c-9e64-87f3eda3fdf6&duid=4394ab6a-6cde-40ef-b852-9bcc82a01a75&fp=1778432688&uid=login_do_usuario
54.186.13.39200 43 B URL HTTP/1.1 ivccf.ivcbrasil.org.br/i?stm=1669146069577&e=pv&url=https%3A%2F%2Fweb-verificationbr.dns.army%2F&page=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&tv=js-2.9.2-SNAPSHOT&tna=cf&aid=504&p=web&tz=UTC&lang=en-US&cs=UTF-8&f_inpriv=0&f_abd=0&res=1280x1024&cd=24&cookie=1&eid=f3042482-ee18-48f1-8b75-4d9538e14a04&dtm=1669146069577&vp=1280x939&ds=1268x10716&vid=1&sid=0f626d3e-b94d-420c-9e64-87f3eda3fdf6&duid=4394ab6a-6cde-40ef-b852-9bcc82a01a75&fp=1778432688&uid=login_do_usuario
IP 54.186.13.39:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /i?stm=1669146069577&e=pv&url=https%3A%2F%2Fweb-verificationbr.dns.army%2F&page=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&tv=js-2.9.2-SNAPSHOT&tna=cf&aid=504&p=web&tz=UTC&lang=en-US&cs=UTF-8&f_inpriv=0&f_abd=0&res=1280x1024&cd=24&cookie=1&eid=f3042482-ee18-48f1-8b75-4d9538e14a04&dtm=1669146069577&vp=1280x939&ds=1268x10716&vid=1&sid=0f626d3e-b94d-420c-9e64-87f3eda3fdf6&duid=4394ab6a-6cde-40ef-b852-9bcc82a01a75&fp=1778432688&uid=login_do_usuario HTTP/1.1
Host: ivccf.ivcbrasil.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Content-Type: image/gif
Date: Tue, 22 Nov 2022 19:41:10 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Server: Apache/2.4.51 () OpenSSL/1.0.2k-fips
Set-Cookie: sp=1763aac1-78eb-48bc-983b-66e129d62293;Expires=Wed, 22 Nov 2023 19:41:11 +0000;Path=/
Content-Length: 43
Connection: keep-alive
www.google.com/js/th/G-wi0KRrIjmTWIDOn44AFVMvZ_aKLO1c96DfwAE3d4M.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/G-wi0KRrIjmTWIDOn44AFVMvZ_aKLO1c96DfwAE3d4M.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36143)
Hash a08dfd96c563f96f7d11b4858aecfa13
d9abee2c38b89d3dea85e76bb741bb8f4f993d49
fedde263fa3b4116029d93d0250f5eab845964d5fcf24e40ffbcd9bf292a0db4
GET /js/th/G-wi0KRrIjmTWIDOn44AFVMvZ_aKLO1c96DfwAE3d4M.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14211
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 06:09:06 GMT
expires: Thu, 16 Nov 2023 06:09:06 GMT
cache-control: public, max-age=31536000
age: 567125
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.138200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 666974bf9577a1edc1c2375921644a95
c5fba8435abe294c0f74e43f8f0a3b91b88d0b24
9908af683add398143f15debc851a7a5442596a2fca5c73604262bcc3d8caf1a
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1072
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 22 Nov 2022 19:41:11 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 0a5ad626d1ba8ddd7c0d24d20b7a0eab
2a098b38e5c91e4b3e6e92a567d36aa1c136ed39
f8e0672f400ed58bf505419f3b5b0ce9f78ae8087c905319d8830be950e1931b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 19:41:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
IP 172.64.132.15:0
GET /releases/v5.15.4/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:04 GMT
content-type: text/css
x-amz-id-2: +SVg9hRLFO1fLcyWbY9hyr0+Z9O1oT8RVv3qeYgXK7WRfITAAC4iee+NT9FrSHP+hPNzgrP+JJE=
x-amz-request-id: HNRYPAGEMZMN7K3V
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"a034d3c71bee546f625877d7932917f8"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lnjIpN0M%2BSGdlw6RcFh7gB4a6GVe1zMLoqFPqTkxUpS6Wgq2pEbOZ91n2urZCcwdjPRXTKOkFEIYLETMlMNKQa%2BLy2sc90%2BSuzyUvy%2Fe78XgRqHM2KHbQwE3aJkJIOwoeESXguk8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e423f72c3671e6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/all.css
IP 172.64.132.15:0
GET /releases/v5.15.4/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationbr.dns.army
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:04 GMT
content-type: text/css
x-amz-id-2: qO2GH0oOPUf6CBXzJCgt0Z3g3Xoeq+Iy6dS2DxcKZsfTKq9z5Y8GbGxYpfYDI9i+lWaZlgiynzg=
x-amz-request-id: HNRHZGYZ9TR0SGKY
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"ecd507b3125edc4d2a03aa6ae5d07da9"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WN%2BW9UwFRZg2ocG5KuPXnBPGJw1W7%2BjlpCbHgTuQqW1NgggFC9%2B4agbEYrag8P3%2FyaZPgssZSpvBQoFWtJ8FTyyyRLPTU%2F9qYAoEkwPIU%2BPui83FSCFsk1Kk%2BUNvqH%2B%2F0ol9Egtj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e423f72c3771e6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider-noconflict.js?ver=10.6.3
34.95.218.219200 OK 0 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider-noconflict.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider-noconflict.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "fb-627d7ff6-be766;gz"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
accept-ranges: bytes
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.youtube.com/iframe_api?lang=pt_BR
142.250.74.142200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api?lang=pt_BR
IP 142.250.74.142:0
GET /iframe_api?lang=pt_BR HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 22 Nov 2022 19:41:09 GMT
date: Tue, 22 Nov 2022 19:41:09 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=OyQXau9bWSI; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=4YI_xZ4J4ho; Domain=.youtube.com; Expires=Sun, 21-May-2023 19:41:09 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+435; expires=Thu, 21-Nov-2024 19:41:09 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Inter%3Aregular%2C500%2C700%2C500%2C700&display=swap&ver=1.2.6
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Inter%3Aregular%2C500%2C700%2C500%2C700&display=swap&ver=1.2.6
IP 142.250.74.10:0
GET /css?family=Inter%3Aregular%2C500%2C700%2C500%2C700&display=swap&ver=1.2.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 19:41:04 GMT
date: Tue, 22 Nov 2022 19:41:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js?ver=6.0.2
104.18.225.52200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js?ver=6.0.2
IP 104.18.225.52:0
GET /sdks/OneSignalSDK.js?ver=6.0.2 HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 19:41:04 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 2778
expires: Fri, 25 Nov 2022 19:41:04 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 76e423f759a6b4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.module.js?ver=10.6.3
34.95.218.219200 OK 0 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.module.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/jnews/assets/js/jquery.module.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationbr.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 19:41:06 GMT
etag: "1ea0-627d7ff6-be79b;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2012
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 19:41:06 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2