r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11258
Expires: Thu, 24 Nov 2022 00:13:46 GMT
Date: Wed, 23 Nov 2022 21:06:08 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2585
Cache-Control: max-age=137293
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:08 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:14:21 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4802
Expires: Wed, 23 Nov 2022 22:26:10 GMT
Date: Wed, 23 Nov 2022 21:06:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 20:18:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2838
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Vcps9CkKA0+2yQI8SbFrp76Vnxuh6aRaXkDp3KPuJNT+urec+WvXCME9R7pp7kc7CDw8Q0rOq4Y=
x-amz-request-id: XSZXSPY0HNFF72EV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 20:40:08 GMT
age: 1560
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
web-verificationrj.dns.army/
102.37.147.125301 Moved Permanently 337 B URL HTTP/1.1 web-verificationrj.dns.army/
IP 102.37.147.125:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6b28175ea93ab0d4572edb5c6c779f65
5215b393a5ac593cc5d37240a4d586b9bcbc30e9
dbc6bc8d3997f703c6d05e60e83118175d016c83f9f027fbdbd1d38cafedc39b
Analyzer Verdict Alert urlquery DynDNS domain detected
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: web-verificationrj.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 23 Nov 2022 21:06:08 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://web-verificationrj.dns.army/
Content-Length: 337
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 21:06:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 20:11:11 GMT
cache-control: public,max-age=3600
age: 3298
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 035bab8a34446968c1b5ac9ae0cadcb1
114277bf780685d6c15658aa13df28d8464572d1
5a6980878c0b6052e477eef9d1a802f4e98779bbb7f0264a640dfa15cfffd4c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A6980878C0B6052E477EEF9D1A802F4E98779BBB7F0264A640DFA15CFFFD4C2"
Last-Modified: Wed, 23 Nov 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21596
Expires: Thu, 24 Nov 2022 03:06:05 GMT
Date: Wed, 23 Nov 2022 21:06:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3619
Cache-Control: max-age=133263
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:09 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 10:07:12 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G+R9Mvj2aM6MMXiAGuT1ag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PssknCPSfohElk+DTgISjzHGHvI=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a54ccb27cee7db352e269389e279a76c
d62c9f3d2db62114a67e13d0ed23aea091edb4dc
a83b0a3f58c5527d087f1b48f8cb264c405f2839c0598beb372fabee4f63aae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6165
Cache-Control: max-age=146605
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Etag: "637e0cda-117"
Expires: Fri, 25 Nov 2022 13:49:35 GMT
Last-Modified: Wed, 23 Nov 2022 12:06:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a54ccb27cee7db352e269389e279a76c
d62c9f3d2db62114a67e13d0ed23aea091edb4dc
a83b0a3f58c5527d087f1b48f8cb264c405f2839c0598beb372fabee4f63aae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6165
Cache-Control: max-age=146605
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Etag: "637e0cda-117"
Expires: Fri, 25 Nov 2022 13:49:35 GMT
Last-Modified: Wed, 23 Nov 2022 12:06:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 065495ec7a963a205abd9c8dbc75cb5d
ea416d0df4f6706150bda5da2077174f5cdd986b
1b2a2afee887651b23a849f14ace89b330329f6bf61c331545a3f6d12037aee5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-49TPHE05FN
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-49TPHE05FN
IP 142.250.74.168:0
File type ASCII text, with very long lines (21484)
Hash 4ed4e13a3a1d7287d56d75e6025cbf44
9078533cb42381380d3ac46cc13f90a2f579f194
d284d7584fed96b46e8b0284ac33409d370bc633703238e9f0ccd98690b32e9c
GET /gtag/js?id=G-49TPHE05FN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:10 GMT
expires: Wed, 23 Nov 2022 21:06:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77546
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb4ee3082622f9f3340432290d63437e
852ca64934462e133e34043fca561aca215e6255
d4c2f665873baede94309128e276df6fdf7f0e1ec15699e75cd6bae2c24d556a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
web-verificationrj.dns.army/
102.37.147.125200 OK 120 kB URL HTTP/1.1 web-verificationrj.dns.army/
IP 102.37.147.125:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23360)
Size 120 kB (119964 bytes)
Hash 6f95e2a3f10a330d770400e2280bb2f1
c2b9b4e2cef80f75b37e0f4d7ce16687d0d0daee
37e310a4a50404f2a5972ed9b7c1ac824393f56bea7ca2d15e0a07716c96e764
Analyzer Verdict Alert urlquery DynDNS domain detected
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: web-verificationrj.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 21:06:09 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 08 Nov 2022 12:53:30 GMT
ETag: "1200da-5ecf506df6680-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a54ccb27cee7db352e269389e279a76c
d62c9f3d2db62114a67e13d0ed23aea091edb4dc
a83b0a3f58c5527d087f1b48f8cb264c405f2839c0598beb372fabee4f63aae9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6166
Cache-Control: max-age=146605
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:11 GMT
Etag: "637e0cda-117"
Expires: Fri, 25 Nov 2022 13:49:36 GMT
Last-Modified: Wed, 23 Nov 2022 12:06:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 615e48c6b43f441fce3d3f0bf403d1b0
bee7267de5d18e298f1b8415dc5e82519798dd83
77be2a0dee94184c99c54010cef8365b5ddd47da63981af404b31fe849caa099
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6422
Cache-Control: max-age=131771
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:11 GMT
Etag: "637dd1e8-116"
Expires: Fri, 25 Nov 2022 09:42:22 GMT
Last-Modified: Wed, 23 Nov 2022 07:55:20 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81f4a7405650b0084bb3aa07cfce700b
231e6e713eeffc9fcb245643eb7ad2878a6f504b
38a48f4f50c6a9d5314a80fde8629dcd71f36d5bfa5a37cd8e522116b809646d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38A48F4F50C6A9D5314A80FDE8629DCD71F36D5BFA5A37CD8E522116B809646D"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Thu, 24 Nov 2022 03:05:15 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d4a8b595329ce4803bafe67cbb87de0
b7e9b6325bcdf9100ebdff476c5628e3f1b2e740
00f2dc6f93ba7d7460c8990500d64191fa45bc040605c3d09d6cf809c91dc9db
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00F2DC6F93BA7D7460C8990500D64191FA45BC040605C3D09D6CF809C91DC9DB"
Last-Modified: Wed, 23 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21564
Expires: Thu, 24 Nov 2022 03:05:35 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 615e48c6b43f441fce3d3f0bf403d1b0
bee7267de5d18e298f1b8415dc5e82519798dd83
77be2a0dee94184c99c54010cef8365b5ddd47da63981af404b31fe849caa099
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6422
Cache-Control: max-age=131771
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:11 GMT
Etag: "637dd1e8-116"
Expires: Fri, 25 Nov 2022 09:42:22 GMT
Last-Modified: Wed, 23 Nov 2022 07:55:20 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15270
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15270
Expires: Thu, 24 Nov 2022 01:20:41 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6380f73d47906bd63b9c48137e4df61
94e053461d2db89e9d08321f26a2555ebcd7e0b9
84144e3c3e7acc7339fd1da9b373f18582734b6f4d235b2aef8c90616ed1c8a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0ea68cc-d723-41ae-8bc2-16e2e422e2aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5914
x-amzn-requestid: 8dea187e-ee61-4691-aff7-59202f978565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b2P4MF0UIAMFWBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6378c69a-011430f86689624a29d71215;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 12:05:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: c2w_q7fYc60JSQ4GcAlmUFyp7csfflgG8GvCXJuy_wWlvf9mIG0u9g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:38:55 GMT
age: 80836
etag: "94e053461d2db89e9d08321f26a2555ebcd7e0b9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d582ed2-f829-4647-9113-832d4500a207.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d582ed2-f829-4647-9113-832d4500a207.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d2c986e076309d51d199332caebb07a
343a5bfba0f8fec28f9345f276b44f44c6eaf6a6
64e6fba6a45c70c1db6040a2273472774c00257bef373cc45b6ca00cb819681a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d582ed2-f829-4647-9113-832d4500a207.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9138
x-amzn-requestid: 524e565e-a9fb-45f9-b786-d64cf26a3cdf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcAAHG8IAMFhwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4066-3689e70e6212e9e77dc134f4;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cwu__NPGaU0zyAG0H1yZhmjGsFzvNmzsGv6Zt9hrF5gwSysEio2MjA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:09:16 GMT
age: 82615
etag: "343a5bfba0f8fec28f9345f276b44f44c6eaf6a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44f9633f-15fe-459e-aebf-06d2b582efa8.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44f9633f-15fe-459e-aebf-06d2b582efa8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e8d7af3a5d030774447a0f71c7824f0
663cace8681891ad55943dd0273493aa9474d102
22068df04672281e392caa485259df103d591ab247c3eb5e0ccba10ffd8a9ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44f9633f-15fe-459e-aebf-06d2b582efa8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: ca8b7a9f-3c1a-419d-953e-2944bf820e5e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcR_Hd4IAMFWUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d40d9-4ca5e9b2476a47cd199b9cba;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:36:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RZqqB_Aaam7hYpdAB2fbx-i3iQth9M-OgA25IgCB5Uz0swqVi3-bVg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:48:19 GMT
age: 83872
etag: "663cace8681891ad55943dd0273493aa9474d102"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70cd6ebf-bddf-4637-8842-4c05872ec539.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70cd6ebf-bddf-4637-8842-4c05872ec539.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 35a44687c086af7b41c8333297bec58e
1b3efc7e58c1e7220830d0060a6d1942869243a0
39a525fde61e3110f773cb121407925a2d2d1b8003c7beb58cf4fd8b18b8d78a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70cd6ebf-bddf-4637-8842-4c05872ec539.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8683
x-amzn-requestid: 4e9d4c04-802f-4ab8-bb51-645f31de068a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBb_4G8voAMF-YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4065-01d3c8271b80e7ba7bb40f88;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g-Zj093YIQ0Kdg4oxF2aZ3HzsgNGu1l8l8Ji7trCGCZPKEgQ9riqjQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 22:06:09 GMT
age: 82802
etag: "1b3efc7e58c1e7220830d0060a6d1942869243a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06c6e720bc9900b38e88cd72f739603e
22884cbc78622d6f78c1c3397c9b440946144a99
8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nwXP5jm9A2Cl3_-Lm194ycXkeClig1L9hwgUgE8i8NF-Vv2gNfj_4Q==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 15:14:08 GMT
age: 21123
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0cc111ba6ae699fca7fbff3490640960
18084197b48ea3b4a143636250396e8791d0285f
34fbba92e665ad371ea2bd1a871251cf0c5b7832d6f4661b21b2cfbd7f786923
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4977
x-amzn-requestid: 3e56de91-7ed1-4b1e-b230-5f19b2cc6601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bxQKBHzdIAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376c70c-41c572d27999534d3c198372;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 23:43:08 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 414rX74hOWUS2W1d9SVHs7McxZ4QDE249cjU-1EyIe0nMkZrQz2rrQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:56:48 GMT
age: 83363
etag: "18084197b48ea3b4a143636250396e8791d0285f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81f4a7405650b0084bb3aa07cfce700b
231e6e713eeffc9fcb245643eb7ad2878a6f504b
38a48f4f50c6a9d5314a80fde8629dcd71f36d5bfa5a37cd8e522116b809646d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38A48F4F50C6A9D5314A80FDE8629DCD71F36D5BFA5A37CD8E522116B809646D"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 24 Nov 2022 03:06:11 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81f4a7405650b0084bb3aa07cfce700b
231e6e713eeffc9fcb245643eb7ad2878a6f504b
38a48f4f50c6a9d5314a80fde8629dcd71f36d5bfa5a37cd8e522116b809646d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38A48F4F50C6A9D5314A80FDE8629DCD71F36D5BFA5A37CD8E522116B809646D"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21563
Expires: Thu, 24 Nov 2022 03:05:34 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
romanews.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (47826)
Hash d3ace4cbc063a11d234150959032387f
4ada9de5e0c401161e54c16bcc4e15c97359964c
2d8e9b203216ba2817705c3a8a33498b8e95728b35f9453951ca1c1ee70c4823
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "172a9-63744a16-8115f;br"
last-modified: Wed, 16 Nov 2022 02:25:26 GMT
content-type: text/css
content-length: 11434
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.2
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (482)
Hash ed4b37fdbbdd5ece3ea044585d4c0078
9e8b2e0933e7671a3fffd4852dbe71574b49425f
63a3b9c474e8ab58862ca2292210d4ddfa2defcb3d5562c73e40c174dcebc6a2
GET /wp-content/plugins/download-manager/assets/css/front.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "10020-628e48e5-1b94e7;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: text/css
content-length: 11151
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65497)
Hash 8162f89047ca684320086e594e22c113
f924d6d7ecde0cc983d1a83aa9e5ed8e36c21d7f
3b4017e679ade23f58a235230eca14c109545e233108ddb33834589b468a1d6f
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "18204-621d7b83-be99f;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 11166
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
34.95.218.219200 OK 3.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19004)
Hash cbbd32ed066b077c696bcf74c2de28f5
0f45a5cd0362cd8890965397ebcebf07a5bc23eb
b4032ae7d7589a2b69e2b50f0609921f6ae56b9f2e24aa31bde03c0fdded6508
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.14.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "4a6a-621d7b83-bea02;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 3589
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/post-6.css?ver=1655843246
34.95.218.219200 OK 372 B URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/post-6.css?ver=1655843246
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1064), with no line terminators
Hash 596c56345ef9122f62ac8665b8020273
5e48657755fd854ae7040ffc1257573029ca2a51
4fa4acf0ed153208420174d223d3fcd4fa73560587bcb8bcba249786110f4b6f
GET /wp-content/uploads/elementor/css/post-6.css?ver=1655843246 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "428-62b229ae-bd003;br"
last-modified: Tue, 21 Jun 2022 20:27:26 GMT
content-type: text/css
content-length: 372
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d4a8b595329ce4803bafe67cbb87de0
b7e9b6325bcdf9100ebdff476c5628e3f1b2e740
00f2dc6f93ba7d7460c8990500d64191fa45bc040605c3d09d6cf809c91dc9db
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00F2DC6F93BA7D7460C8990500D64191FA45BC040605C3D09D6CF809C91DC9DB"
Last-Modified: Wed, 23 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 24 Nov 2022 03:06:10 GMT
Date: Wed, 23 Nov 2022 21:06:11 GMT
Connection: keep-alive
romanews.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.6.3
34.95.218.219200 OK 1.5 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11362)
Hash bb57bbeb73fd9a81be763e70a8c60821
308bc895e179ae65b4f9ece34641d2b76a316f02
6557e6291def6ac22134594454f8aad6410fae0f5475ca78ce022b7094aa5c27
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2c8d-621e4b0f-bf0f1;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: text/css
content-length: 1489
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/global.css?ver=1657913292
34.95.218.219200 OK 6.7 kB URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/global.css?ver=1657913292
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (55131)
Hash c4a1aca385e7c1341bc318dedf73c090
da7989ee07593d89d1fa7df544b3a988a32d0193
7409932cd7143c9ce9c147de240bb3b1e4dabaa372e3d701fa85f47ed375c61e
GET /wp-content/uploads/elementor/css/global.css?ver=1657913292 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "20241-62d1bfcc-bd005;br"
last-modified: Fri, 15 Jul 2022 19:28:12 GMT
content-type: text/css
content-length: 6722
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/post-50.css?ver=1663788259
34.95.218.219200 OK 3.7 kB URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/post-50.css?ver=1663788259
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (27092), with CRLF, LF line terminators
Hash 136e9e1d3c38c50baa4b693d5283c9cc
8883f503caad4099fd7111c10e4f6e633f859ad0
45bd478be0fe1bd66edc8caf829ef53d10557a43ae00763d17f79bc9a0dfcc50
GET /wp-content/uploads/elementor/css/post-50.css?ver=1663788259 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "9506-636a5b4a-c7a40;br"
last-modified: Tue, 08 Nov 2022 13:36:10 GMT
content-type: text/css
content-length: 3678
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
34.95.218.219200 OK 6.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (30837)
Hash e99e647b2bcbac735756f147437cd30d
a7feff175eb69bc219a4915f56213eb8177116ac
d942ce1121b2caa437ff304808a9079b017b83c77d36e08852cab601efd17b73
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "7917-621d7b83-bea71;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 6644
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/jegicon.css?ver=10.6.3
34.95.218.219200 OK 569 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/jegicon.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2815), with no line terminators
Hash 75b080bdc92041956b86da50fb980729
1795252d5f53737f9d7b51018b1f8316bae83790
f6b2586de442a3b0ffbec22e964705a5d40dd2e35dc48efbd312eec8f164b275
GET /wp-content/themes/jnews/assets/fonts/jegicon/jegicon.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "aff-627d7ff6-be7aa;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 569
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/jquery.jscrollpane.css?ver=10.6.3
34.95.218.219200 OK 383 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/jquery.jscrollpane.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1073), with no line terminators
Hash b9a83df39de6040921093244f8a89d65
3b6c744d2202f083d266bb5e9cb9aa5fa688c8c9
2c37c86945636b242d91fcca99ab50880c81bb2e05f3f3d82ca400b8d055d955
GET /wp-content/themes/jnews/assets/css/jquery.jscrollpane.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "431-627d7ff6-be704;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 383
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/okayNav.css?ver=10.6.3
34.95.218.219200 OK 709 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/okayNav.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2745), with no line terminators
Hash ac3fe61e8a36c0abf6abf708cd0f9626
61c5cddd27724ced68baac959a515a30f59f75e2
686a9f75bf912a3d3b24d1d28ac66ac6ba7fc5c7b97e9f24c4c5c8b1eb6e87ac
GET /wp-content/themes/jnews/assets/css/okayNav.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "ab9-627d7ff6-be701;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 709
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/library/magnific-popup/magnific-popup.min.css?ver=1.8.0
34.95.218.219200 OK 1.4 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/library/magnific-popup/magnific-popup.min.css?ver=1.8.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5235), with no line terminators
Hash 53e0efcec429926c359d61e7bf94ce7b
88dede7a960823e486815d7816eed3e1868632a9
ff74d07f19afb089a66fd19cb02f88798fb71eb9e873ed1115ac8c8d91ac7267
GET /wp-content/plugins/gutentor/assets/library/magnific-popup/magnific-popup.min.css?ver=1.8.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1473-62bf05f7-2f6473;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: text/css
content-length: 1396
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/chosen/chosen.css?ver=10.6.3
34.95.218.219200 OK 2.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/chosen/chosen.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (10582)
Hash 81e6b0229651ec48d564c917b0a4b962
2c86a662ae2ab8e02c1f7b24bec9a79c3c3fb8cd
3b4b8509a01ab0d8bca31acb14b2414f660ee5bec98c02bac51a11bf53ec643f
GET /wp-content/themes/jnews/assets/css/chosen/chosen.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2ac8-627d7ff6-be70f;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 2121
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/main.css?ver=10.6.3
34.95.218.219200 OK 37 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/main.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 91ae68f942675412a9433d39d03a3439
6390e86621ac603a3405e99295498982d22776ff
d2b9c583ed511d58dd55eed7b6799503d5a3809e652d7f8690a93fc5c871c7fb
GET /wp-content/themes/jnews/assets/css/main.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "3b4c0-627d7ff6-be73a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 36643
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/responsive.css?ver=10.6.3
34.95.218.219200 OK 2.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/responsive.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12058), with no line terminators
Hash e6d2812ceebee33aef79660c7c40a6dc
124fc994a3b677964571dd0266113e5e32ef06d0
b7f15f6626e8cf8b38cc2a46d4644992d4681aed6336709c62417600674632f2
GET /wp-content/themes/jnews/assets/css/responsive.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2f1a-627d7ff6-be708;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 2571
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/pb-temp.css?ver=10.6.3
34.95.218.219200 OK 3.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/pb-temp.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (29381), with no line terminators
Hash 08cbcc8850e16ab7277f44ef269e1d7f
0bdec3dea7797e572c2b1a26314f57347bee6a0f
d60dc5ddd979b389e518c93c6d060516d14d8139873c3386eac19f02cf252d9b
GET /wp-content/themes/jnews/assets/css/pb-temp.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "72c5-627d7ff6-be702;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 3334
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/elementor-frontend.css?ver=10.6.3
34.95.218.219200 OK 152 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/elementor-frontend.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (681), with no line terminators
Hash c4eb1ed2f5cca880edebe77849ab0843
744511833d8228e62d11cfbe0df171849c2fc368
6f40a3b83e02e3fc06c4c1955d0a06b5b1e973e8fefbaa289cb7117cb1d97f9d
GET /wp-content/themes/jnews/assets/css/elementor-frontend.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2a9-627d7ff6-be729;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 152
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/style.css?ver=10.6.3
34.95.218.219200 OK 222 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/style.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 6744727c535c597f43882b18612d4c02
95fab2bf052147c8ba27c83067fb4bced47223e3
4b05b01345e8e2639c8343a30027b89a072580318db83418c9c48656013cb507
GET /wp-content/themes/jnews/style.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1ab-627d7ff6-be608;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 222
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/darkmode.css?ver=10.6.3
34.95.218.219200 OK 6.5 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/darkmode.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (46766), with no line terminators
Hash 77c4d5932d7fa75af6438cfda3462424
99c0809b85d43051cf80d6d684e60b97b7101a9f
39c0b8d5813bb14eabcf17ae15671ed1aab35642be52187e39fc1d32f41b4381
GET /wp-content/themes/jnews/assets/css/darkmode.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "b6ae-627d7ff6-be714;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 6549
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/components/style.min.css?ver=6.0.2
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/components/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (64759)
Hash bdb9d10af1938b64c7c1d543a2b890d3
306955af6f73ece84504bab38687a9a589d574ac
c33b8a15557a680bf8fdd37f5dc7073ec228b6bdf1f0b87c402ad39012d9dc91
GET /wp-includes/css/dist/components/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "141f9-6361d51a-81135;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: text/css
content-length: 11082
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
34.95.218.219200 OK 15 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash 31b3e683e8d569447a16789bfc3d4a93
13ef7d390ad3d3d1813b95a4abe6c09e167abf23
f2e0f7a39435103247aa6e9bcbb417d4a6fc1465763d14adfc6f8d65500f4e0e
GET /wp-includes/css/dist/block-editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1c86c-63744a16-8114a;br"
last-modified: Wed, 16 Nov 2022 02:25:26 GMT
content-type: text/css
content-length: 14606
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
34.95.218.219200 OK 682 B URL HTTP/2 romanews.com.br/wp-includes/css/dist/nux/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2210)
Hash fc4207c73b822b937709e5ac0bc08bb4
2e098a00a6af5e3716b2ed16017f4364288e114e
2176e75a1cf2329e16f6e69f2aa6ba455e2d29d9c6e27635bb449071d848a1f7
GET /wp-includes/css/dist/nux/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "ab4-6361d519-81118;br"
last-modified: Wed, 02 Nov 2022 02:25:29 GMT
content-type: text/css
content-length: 682
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
34.95.218.219200 OK 214 B URL HTTP/2 romanews.com.br/wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (522), with no line terminators
Hash ec4b8518f9c3402348b6667216310173
d8ad84f3e584116fadfa798c117e479f5ae85968
242c4d7b3b7d6d8e097e64c51c0fef5ede3608a257041a1bad514a47e2aa8a05
GET /wp-includes/css/dist/reusable-blocks/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "20a-61f8cd0b-81130;br"
last-modified: Tue, 01 Feb 2022 06:02:51 GMT
content-type: text/css
content-length: 214
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
34.95.218.219200 OK 3.4 kB URL HTTP/2 romanews.com.br/wp-includes/css/dist/editor/style.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (18793), with no line terminators
Hash 3980ba929452588e3517e54040d23ef6
84490b6676186a502b56577facd143bced2ceb28
839393b8156fda87cdfa8027f57956a4cfa5b919d18a65de5a63845b1ca7f48b
GET /wp-includes/css/dist/editor/style.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "4989-6361d51a-8113a;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: text/css
content-length: 3412
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/jnews-instagram/assets/css/plugin.css?ver=10.0.0
34.95.218.219200 OK 1.0 kB URL HTTP/2 romanews.com.br/wp-content/plugins/jnews-instagram/assets/css/plugin.css?ver=10.0.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d1cb322ef3f1aee7e3d96d0eadb9c7ea
eb0a212641d4df7ae6bf08020f1399cce0bd3b5b
6ac977917d3517373667f957c95f26229f35e1bb557b18d84b7fd5fc1af6b476
GET /wp-content/plugins/jnews-instagram/assets/css/plugin.css?ver=10.0.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "155e-621d7b8c-bd708;br"
last-modified: Tue, 01 Mar 2022 01:49:00 GMT
content-type: text/css
content-length: 1018
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
34.95.218.219200 OK 30 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65447)
Hash b40fb9fe7e58ef64962baf56f90a40ab
cce116673633bf6862f084fdd8fb7840aa0545fe
34166ef654e1cadd20263c5bf7d770c40848f13652487a46e85feec43e5bf0a3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "15e54-6361d51a-81277;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 30176
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
34.95.218.219200 OK 4.0 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (11126)
Hash e32c5db077b45cddc36bbdec187ba4c4
dfdbe8e2f28238b3a218785514a452884aa789a8
51bd9696f8c91a26501c40b40842e759b5cbcd352b3ce7d1f6875996abec46f6
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2bd8-61f8cd0b-81270;br"
last-modified: Tue, 01 Feb 2022 06:02:51 GMT
content-type: application/x-javascript
content-length: 3992
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.2
34.95.218.219200 OK 7.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (21084)
Hash 0990c7924f54c6c0fbb3acda6cc8bebe
5a00c4285108150d5d9a7742552e5d4c0621c48a
7a2ff3113aff00170908d8fe6191b915a3f46cd1cf06edc937f53aad19439ee7
GET /wp-content/plugins/download-manager/assets/bootstrap/js/popper.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "52e2-628e48e5-1b94f7;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-javascript
content-length: 7186
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2
34.95.218.219200 OK 15 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (62161)
Hash b0e55194eb76df7034c3cccb93dc7660
e247bcd3265f20b1b169777f6b4242a5b0fc8929
c1c7bc8d154c9bea9ba36a96b003fe049438fbe41b9d33d0a8597b446a0a44c4
GET /wp-content/plugins/download-manager/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "f3e8-628e48e5-1b94f8;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-javascript
content-length: 14577
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.41
34.95.218.219200 OK 10 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.41
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4122)
Hash c4da4266640e58e065b9b0878f17234a
cd91d5a4df3c990eb86e60565b06bf0fd39a8a0f
d43d676010a566655bc715b25af7601297c5dab2966c48af9a5bb0f2b440c8db
GET /wp-content/plugins/download-manager/assets/js/front.js?ver=3.2.41 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "9cd0-628e48e5-1b9505;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-javascript
content-length: 10148
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
34.95.218.219200 OK 4.6 kB URL HTTP/2 romanews.com.br/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (15660)
Hash 8b21827e4cc06ac9d6c686e463be1fb2
395e1545d76868371b3110d48179027eadef1b39
bf023dff36bcaa1d34063e0804ebfc1598550f64915890b39a2afbe95b8aed8a
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "48b9-628d9390-813ed;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 4584
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1
34.95.218.219200 OK 1.3 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 46ca4b44a87384162596acc72af1f483
3da5b8b6dc1e4164da90f6f13d6c88c4688deb3e
532e57eaaff0cb31d032839766d09ee8c8b76443ab679fca49e2bade83e86105
GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel.css?ver=2.2.1.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "13c6-627297ee-bd06a;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: text/css
content-length: 1336
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0
34.95.218.219200 OK 1.9 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash d847cd4722c859c5ca4e7867012cf1fc
ee1d129b6dad4541f8be5fc9ea6cb8215e7f9b6c
88ef2bd9f1445f09f98244fafcf2f3425b7bc970e43facebe97798a4a2e9795d
GET /wp-content/plugins/slide-anything/owl-carousel/sa-owl-theme.css?ver=2.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "38b3-627297ee-bd06b;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: text/css
content-length: 1909
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0
34.95.218.219200 OK 3.7 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (55728), with CRLF, CR line terminators
Hash 1f160eadf41077c91975f46ea73a02f4
8fad802b2005f45428528707950e545d5457eaf1
33bab9396ba442624b72f8aad9a8d1452720abab0d5e06c0b18112cef5f33331
GET /wp-content/plugins/slide-anything/owl-carousel/animate.min.css?ver=2.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "da7a-627297ee-bd069;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: text/css
content-length: 3701
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.css?ver=10.6.3
34.95.218.219200 OK 573 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2058), with no line terminators
Hash ac57c2a6726cc63eabfa7c1b186bec20
545a973c675d637f9e2e53a330a960b381f7997d
47ce891583180ac115932d7c9b5dbc82dce195204ae3236182d63332ecedbfc6
GET /wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "80a-627d7ff6-be765;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 573
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/slider/jnewsglobalslider.css?ver=10.6.3
34.95.218.219200 OK 926 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/slider/jnewsglobalslider.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3681), with no line terminators
Hash e7797587aca5ac022028533910756be3
f43c84da4042be29b637b55cbb3bb8c683db7b36
1c6e718896d9b6e9af1a911d57e1a77ae6862e1e48f23db00e364423d0a42b72
GET /wp-content/themes/jnews/assets/css/slider/jnewsglobalslider.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "e61-627d7ff6-be700;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 926
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/css/jnewshero.css?ver=10.6.3
34.95.218.219200 OK 6.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/css/jnewshero.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 576814fae53d17caae2d8198791ad4d6
70687c81d21ff78101f9534292827dd17692e642
122e67b9c472d3c0067a11671a8fb545dfdd4e581a6f91a8b03d50159ad28a14
GET /wp-content/themes/jnews/assets/css/jnewshero.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "10038-627d7ff6-be72b;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 6103
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/data/import/evnews/scheme.css?ver=10.6.3
34.95.218.219200 OK 708 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/data/import/evnews/scheme.css?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a8bc6579854afabd4aed4199542c40b1
d09f6a69782826df310bebaf74a9e665bbe2b63c
e96c59e1e02967a86d49f383e31519445299c1f1cbe49111ae1b9553e17f0046
GET /wp-content/themes/jnews/data/import/evnews/scheme.css?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "897-627d7ff6-be13f;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: text/css
content-length: 708
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/elementor/css/post-2415.css?ver=1663345449
34.95.218.219200 OK 589 B URL HTTP/2 romanews.com.br/wp-content/uploads/elementor/css/post-2415.css?ver=1663345449
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3241)
Hash 3500b61e30e42e07a1d8762c71eff145
c9426b4ffb9edd5bac36ecb5b18e86d3574652ff
b891598b133f16e7319eadbb8e3a929e8b8972d595819a45e7ee7c85485df641
GET /wp-content/uploads/elementor/css/post-2415.css?ver=1663345449 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "ded-6324a329-bd05c;br"
last-modified: Fri, 16 Sep 2022 16:24:09 GMT
content-type: text/css
content-length: 589
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
34.95.218.219200 OK 12 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (57726)
Hash 594e0ac7fbfbfc2268446eb6fb1eee15
7e98779f6f45e8144bef72224aba30d2e5194f4b
e7a80c2dd5a7e71d3534e09cca1ec0596cff902a703adfef4c45d16c96b62060
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "e238-621d7b83-bea73;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 12116
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
34.95.218.219200 OK 286 B URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (489)
Hash dbfdb3d3cf3eb8df70f82b4ee60b10b6
45709b86dff74d84e516bb895f6c1a543114e4d0
24d0b02886c79c3444f8d74eddd9229c3c906af2dfa543f60ccb7120a49b9289
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2a3-621d7b83-bea74;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: text/css
content-length: 286
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
34.95.218.219200 OK 2.4 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6475), with no line terminators
Hash 6fc7f6a64943fb700809729d3bd733b4
5f794ac00a49aa543c1f9c3eb7b1d20bc797e6f2
3101fde9e69cf266ba9486abd29a0f82fa43e6d3bebd43218b6d3f9c0fd903bc
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "194b-628d9390-81392;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 2356
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
34.95.218.219200 OK 6.3 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 3c6659fbb66ea33733c0f42ba480920b
324c2181a146a348ec1a7ef99a7746f669bfefa0
bb68c0faf97a89bbf27bdf885d2625163133ec25df932577fa31d3438bff5633
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "459f-6361d51a-81397;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 6323
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
34.95.218.219200 OK 1.6 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4875)
Hash 334c10434c5114c1b6a896a4bfb97762
3141a7c37d1d5775dd56e0a971420aa95e952eed
4bc9855c90cecf283f832865270bd1a718c3d5cf3054e2df60cecbbb6fdd51e0
GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "132e-628d9390-813a0;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 1575
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
34.95.218.219200 OK 3.7 kB URL HTTP/2 romanews.com.br/wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 3f471ffad1090960396e523f26e756e5
b441e2050b1a4afe445c2f7cd1e354f511d5d755
7293b4d7d6a360e036b268be2586c313d702353ae7cea1c5e8024b005440148d
GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "27f6-6361d51a-8139e;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 3718
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Inter%3Aregular%2C500%2C700%2C500%2C700&display=swap&ver=1.2.6
142.250.74.10200 OK 6.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Inter%3Aregular%2C500%2C700%2C500%2C700&display=swap&ver=1.2.6
IP 142.250.74.10:0
Hash 028ca200ba8415bdea67c3adf10fdfa7
dee895f421ee62199df7eff1ba919e4d14c0e517
afdcd93cb9fcde35672f5376261486cec99105ee2645ed76657cd64b79c65f35
GET /css?family=Inter%3Aregular%2C500%2C700%2C500%2C700&display=swap&ver=1.2.6 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 21:06:10 GMT
date: Wed, 23 Nov 2022 21:06:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 2.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
Hash 77d2704828a0994aca0e8ad3137aa3bd
2b710f3440daa26a617e382f2c02821ad13a75b1
399d3d31ca25f740d6d31bf47f7c662647923bab561470fa259f1bfd6745744a
GET /css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 21:06:10 GMT
date: Wed, 23 Nov 2022 21:06:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/hoverIntent.min.js?ver=1.10.2
34.95.218.219200 OK 669 B URL HTTP/2 romanews.com.br/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1464)
Hash 28e2c5bc3240ea6352fa08c118639748
0f3ce3fac80cefc0220eeae7eaa10e99871b1588
cd63ebd74665f3c1adfb647ea7ab426b0354fe9bd8fc44937eae9365b6324cb4
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "5db-628d9390-81307;br"
last-modified: Wed, 25 May 2022 02:25:20 GMT
content-type: application/x-javascript
content-length: 669
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik
142.250.74.10200 OK 2.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Rubik
IP 142.250.74.10:0
Hash 75b28be373c0eb98669e4a356e71f7a6
817a2277da826c72854975b005a1236ad571da10
3cec0071b4261b2a4e1d858a2105d66d3627a80befe7e86d46aad95a36f00712
GET /css?family=Rubik HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 23 Nov 2022 21:06:10 GMT
date: Wed, 23 Nov 2022 21:06:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/library/isotope/isotope.pkgd.min.js?ver=3.0.6
34.95.218.219200 OK 9.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/library/isotope/isotope.pkgd.min.js?ver=3.0.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash f16d18dd8145bb5991bb3b2e957eb337
3592f7e4c5b2501aef92f761fc16e1d7b0a84999
4c7a6e9b7c12958f095a003bda68f45ed93a33eb6829c96debd7d8bdd345b7ae
GET /wp-content/plugins/gutentor/assets/library/isotope/isotope.pkgd.min.js?ver=3.0.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "8a80-62bf05f7-2f6471;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: application/x-javascript
content-length: 9553
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/lazysizes.js?ver=10.6.3
34.95.218.219200 OK 3.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/lazysizes.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (6926), with no line terminators
Hash 9a9bfd36e9e5f8d46df6c8b8492b4f08
3241305fadce666af676b6605c2976edc1052bf8
fc132850f3cfba0e6165f1f7a0b3a82fe63bb78f4a6e05626e3e0b3204d5c305
GET /wp-content/themes/jnews/assets/js/lazysizes.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1b0e-627d7ff6-be75c;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 3069
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/ls.bgset.js?ver=10.6.3
34.95.218.219200 OK 1.0 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/ls.bgset.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2799), with no line terminators
Hash 35c7cf365b4e3b8d956e6e6624f7a78c
98e853451ff796e7e6ee95865d1e48e9b42773a9
bc0fb67ea59dd31aafdd291eebf9a342a2dad9e7e565881ad83fc0cf595c4388
GET /wp-content/themes/jnews/assets/js/ls.bgset.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "aef-627d7ff6-be79a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1039
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/superfish.js?ver=10.6.3
34.95.218.219200 OK 1.8 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/superfish.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5281), with no line terminators
Hash 13f2992078ccd0a42bc2f383393a0a99
255ce08c10ed05c5cced4ebfb551782498f292cf
f2b792ebd835e1c89dc6b69820012830a1c9a8f3e1ec5aa12ba2edc7ab6cd9de
GET /wp-content/themes/jnews/assets/js/superfish.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "14a1-627d7ff6-be78e;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1802
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1
34.95.218.219200 OK 1.6 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (5370), with no line terminators
Hash e98cb490e785ffa712ace73b1195cf82
8c5d829d1126d388410ec53e7d30861545a3e392
d94e27ec010bcc5a4d24590bb604a7ec2ec5a9119ffa080708abf8723a878d00
GET /wp-content/plugins/gutentor/assets/library/theia-sticky-sidebar/theia-sticky-sidebar.min.js?ver=4.0.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "14fa-62bf05f7-2f646d;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: application/x-javascript
content-length: 1594
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.waypoints.js?ver=10.6.3
34.95.218.219200 OK 2.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.waypoints.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (8798)
Hash 65c067b42ce35e5f728c17275e85bf66
3720cf1b06b7f0e0b1929fae9fb04ac6f6e164db
362ca50affd135da96319fc7cf9d539f91db00cae37238e8754ebf842968ba73
GET /wp-content/themes/jnews/assets/js/jquery.waypoints.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2308-627d7ff6-be768;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2577
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.scrollTo.js?ver=10.6.3
34.95.218.219200 OK 1.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.scrollTo.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (2275)
Hash dd4d7fb14e02d2b5b4e8d266b432c185
00fddda6acdefdcc2b8e456b67ee4bb5c0890896
32e4c53e6bb66ccad9dbad0518546cd77861843a45e6ede10c43ffc74e26a874
GET /wp-content/themes/jnews/assets/js/jquery.scrollTo.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "a47-627d7ff6-be741;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1285
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.parallax.js?ver=10.6.3
34.95.218.219200 OK 280 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.parallax.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (564), with no line terminators
Hash d8fc3b6fef2b250e1798e53438348a76
9cd62097ae725d5490d7b071831c7f0856271f4b
addefb518fbec1bfabf450a1fe96564c079f1c83c35db4570f6ebfefb3dd0669
GET /wp-content/themes/jnews/assets/js/jquery.parallax.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "234-627d7ff6-be794;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 280
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.okayNav.js?ver=10.6.3
34.95.218.219200 OK 2.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.okayNav.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (7545)
Hash f38bf1df3b8a64a664acd72a3d7381fe
393648d7f704db27287733b2e1db1396eaeca375
f6e78ae5d2e77ed839bc61a8190b9798ed93c18b01bcf815e1e676c40b2a1927
GET /wp-content/themes/jnews/assets/js/jquery.okayNav.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1e29-627d7ff6-be791;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2277
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.mousewheel.js?ver=10.6.3
34.95.218.219200 OK 1.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.mousewheel.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2608)
Hash 0823d371a220e4d862ad01df2d44a85f
ebaab31dba0d223d5aff07237036882602571c29
46415532931f2eb4a28ea1f40a5ab46db93d4ad4fe738318e27fdd7f51ccf438
GET /wp-content/themes/jnews/assets/js/jquery.mousewheel.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "ad2-627d7ff6-be790;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1123
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/modernizr-custom.js?ver=10.6.3
34.95.218.219200 OK 6.3 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/modernizr-custom.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (16397)
Hash f9dfefcb8c32d9331fa74d82d5b2df9d
4c86e976fa26683d75c0c7b5d3cc07a94e8dd8e6
dd36deda247325194397e45fc093f99a7c82653766056ee4cd1aa3b1e10cf9ec
GET /wp-content/themes/jnews/assets/js/modernizr-custom.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "427e-627d7ff6-be743;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 6317
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.magnific-popup.js?ver=10.6.3
34.95.218.219200 OK 6.9 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.magnific-popup.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20025)
Hash 822594034e6436a1d601a120c53b9700
3a814c2250730ac48c1991b170b8abe5deded023
ca6670c9f53b55556ac1cc4e754208376390e1e5bd79e2dc93f2676ed25c6c8a
GET /wp-content/themes/jnews/assets/js/jquery.magnific-popup.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "4ebc-627d7ff6-be7a5;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 6942
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jnewsgif.js?ver=10.6.3
34.95.218.219200 OK 470 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jnewsgif.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1143), with no line terminators
Hash cfe5570aa0677220f7bc1f49dd068688
8991b712e847380c459ec6d59b811aff41e85cc1
82d10695c2ef9885366507a6e7eade6b676191f6ea2a52a1c220ce19c29cbd9a
GET /wp-content/themes/jnews/assets/js/jquery.jnewsgif.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "477-627d7ff6-be740;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 470
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jsticky.js?ver=10.6.3
34.95.218.219200 OK 680 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.jsticky.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1664), with no line terminators
Hash ee83c51386f942bfee14b4f126abbc03
f00a2ccc31836deac68cfad093e9fd43e3154fb6
914767d6ae11b07607a3fc351b99a87e72dfed75a8b6fea74690d3f9611e51f7
GET /wp-content/themes/jnews/assets/js/jquery.jsticky.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "680-627d7ff6-be7a7;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 680
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.transit.min.js?ver=10.6.3
34.95.218.219200 OK 2.6 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.transit.min.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (7830), with no line terminators
Hash 79cc7e3061dc53db190ca04b6191b114
3a2e2e8841081f9c07667d71d5ac9567f68af484
e9a4b07ce0c227a07b1224bd7f7dada794df3634123c963df6e9b78fcede3348
GET /wp-content/themes/jnews/assets/js/jquery.transit.min.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1e96-627d7ff6-be74a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2620
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.module.js?ver=10.6.3
34.95.218.219200 OK 2.0 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.module.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (7840), with no line terminators
Hash 7f8f28751480d9fc62daac9a1865588f
b6b3b65417db8a47e6b8f3427367c14167d6523c
51b001e2c547fc9211787285e2c4705d0e1ac0924a70734f2fe7ddfcc8111803
GET /wp-content/themes/jnews/assets/js/jquery.module.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1ea0-627d7ff6-be79b;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 2012
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/main.js?ver=10.6.3
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/main.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (45052), with no line terminators
Hash 8c3453e3c515b0e86aacf45870d80352
d23f7c34b3b9e2437068f27ee32d24f823c6275d
34395895f12ac3da8666d603c3c1292a0c40936f6b8cd0ac8d4d73a7f3a0111f
GET /wp-content/themes/jnews/assets/js/main.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "affc-627d7ff6-be79c;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 11071
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/darkmode.js?ver=10.6.3
34.95.218.219200 OK 1.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/darkmode.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5811), with no line terminators
Hash 7ed870e5edce49c29c92c6dee945bc3f
24d65fef688b791993e60c418ea388a845bfadfc
aed7fe1da4bc1233ae0360bb678ce47110995c660e3f491dd734b82d5f1d179c
GET /wp-content/themes/jnews/assets/js/darkmode.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "16b3-627d7ff6-be76a;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 1137
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/assets/js/gutentor.min.js?ver=3.2.3
34.95.218.219200 OK 7.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/assets/js/gutentor.min.js?ver=3.2.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (31643), with no line terminators
Hash 3287acc5a2ffe823526a7af1a0f52448
e985a443e4d72e04706f2f6c7b40fd9cad07c308
1193b6241fb6310ca08a90d2bd5013fc0ea68aad773cd8cde05772b09d3b9cc9
GET /wp-content/plugins/gutentor/assets/js/gutentor.min.js?ver=3.2.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "7b9b-62bf05f7-2f6442;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: application/x-javascript
content-length: 7237
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1
34.95.218.219200 OK 11 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (31997)
Hash 6bb5a7de8ff493a639de2bacc5bed31d
c20bc62107b79671b5dd0399d9eafa78b5914401
3b5011a6474104144e2af85dbd2dee636edadd3d0f001cda2b2e8e7b8e9247a4
GET /wp-content/plugins/slide-anything/owl-carousel/owl.carousel.min.js?ver=2.2.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "ad36-627297ee-bd06d;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: application/x-javascript
content-length: 11052
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13
34.95.218.219200 OK 1.1 kB URL HTTP/2 romanews.com.br/wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2584)
Hash 8e95364bb41f1853d600fbdd0cf53352
f177efb63bdabf53bd6603e57ddeb259cb77d093
5575351103cb3c5d3cccd9ff3f9ede16c92839226b11f8867db8992492bfdc54
GET /wp-content/plugins/slide-anything/js/jquery.mousewheel.min.js?ver=3.1.13 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "a72-627297ee-bd075;br"
last-modified: Wed, 04 May 2022 15:12:46 GMT
content-type: application/x-javascript
content-length: 1076
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jnewshero.js?ver=10.6.3
34.95.218.219200 OK 977 B URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jnewshero.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3417), with no line terminators
Hash e16cdb3f9c5be4b2565aab34c91876a1
48b4f05179dd0c727bc4fba9be73cf854ea78936
34ece6dcf28be26af957a01c754172818f436ab5c605edf91fca0c044c8576a3
GET /wp-content/themes/jnews/assets/js/jnewshero.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "d59-627d7ff6-be793;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 977
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.3
34.95.218.219200 OK 2.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (5082)
Hash e476a7dfc8a105fcfd99ff754d963a39
ba48a7dce72fb6fcb2b73c6ace9d505fd81b2162
218686e2a19b1383e506d82e216b6d26e9347dac1361a3e3567f581f6aa82365
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1405-621e4b0f-bf163;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: application/x-javascript
content-length: 2176
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
34.95.218.219200 OK 2.0 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (4866)
Hash ca0d281f5b1029cbbc060698bfc74499
23ab8a5c89fe51ad3428f19771bb378959909ead
7be83bc83f45abf36813248fce832f9e48bfed8076b74a580b5c959b1a57ddb1
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "1329-621d7b83-beaad;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 2019
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
34.95.218.219200 OK 4.4 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (14196)
Hash 98ed878201526bdba302eaf34ed71a64
7345b0fe264a57dbf2340976c308840a9c72b798
57888c882a73055142af07e8edb2d9dc445263734b72da9e8a24a06dfb47f8bf
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "379b-621d7b83-beac6;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 4435
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.3
34.95.218.219200 OK 5.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (20343)
Hash e9036cf35a6e5e1e1406a1dda9d67130
7abb983e301c187e7b93c10e87c05a9b3ce774b4
805360a40eeafb7214a69dc168df6ef672bcd0c316ab0275ece9766056ac722f
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "4fa2-621e4b0f-bf16a;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: application/x-javascript
content-length: 5240
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
34.95.218.219200 OK 2.8 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (12198), with no line terminators
Hash fac362f53042ae00149855f961e3cd28
20ba41d9525cf54e3d25f4ac3a4170fb2bd04ef9
b98fe6e763ac9aa31a71af5fa8ec27c9121360080b817d279b6a23814c2bfc86
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "2fa6-621d7b83-be9f9;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 2843
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
34.95.218.219200 OK 6.8 kB URL HTTP/2 romanews.com.br/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 35479cbcd227f62c265d4913801e1e6e
7f912dc7889d6e8476b8013e558a92d6c69a4dff
5f58a746823c6fd35e340a56576b4ed27206c76ecd1d7ed3e7e183ced3c39039
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "53c0-6361d51a-81234;br"
last-modified: Wed, 02 Nov 2022 02:25:30 GMT
content-type: application/x-javascript
content-length: 6787
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
34.95.218.219200 OK 10 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (36994)
Hash 39b41c3851acd7f5848a83a834bd91f8
1f715bbdd611785612d5ec4b3d53ef17cc954c74
72d0c60a690c858a8cf5352df97202d7de1c55c50f515e403e49dff45951527e
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.6 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "90a9-621d7b83-bea99;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 10457
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.6.3
34.95.218.219200 OK 5.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (24170)
Hash 59de6d52b4ed4eaae8e68fbb53848aee
b5713115aa2fb1e551c41acbcca045c2b9829a1d
6b02e84a6b17d9f376f1facc011505cd2ad75b43ba8efcfeef11c8e7e6f446fc
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "5e95-621e4b0f-bf171;br"
last-modified: Tue, 01 Mar 2022 16:34:23 GMT
content-type: application/x-javascript
content-length: 5230
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=1656683765
34.95.218.219200 OK 952 B URL HTTP/2 romanews.com.br/wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=1656683765
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (3561)
Hash 23d61448c64b7814076d5f1a42ac8170
320caf122ce415519ef886f24971317e211137ca
3d8772545e5b1a6b449085464f27c48afdebeb5e9c2b2e4cb73d3089defbff3c
GET /wp-content/plugins/carousel-block/dist/assets/vendor/slick/slick.min.css?ver=1656683765 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:12 GMT
etag: "e03-62befcf5-2f5ecb;br"
last-modified: Fri, 01 Jul 2022 13:56:05 GMT
content-type: text/css
content-length: 952
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:12 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1656683765
34.95.218.219200 OK 188 B URL HTTP/2 romanews.com.br/wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1656683765
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (748)
Hash 0aac5ef3369e068a973289c5f3904c81
e9087061ba07862624f8c2f8331d77fa69a05a80
4128215c1e1fbcd8c2d259c6349d9e605bd03363f28ea09643f4a8d73a2395bd
GET /wp-content/plugins/carousel-block/dist/blocks.style.build.css?ver=1656683765 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:12 GMT
etag: "2ed-62befcf5-2f5ec5;br"
last-modified: Fri, 01 Jul 2022 13:56:05 GMT
content-type: text/css
content-length: 188
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:12 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.2
34.95.218.219200 OK 9.5 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (45507)
Hash 9978d9df0d8532c1714dc491b95fa578
f7127b9da017122505229f50ca15b453e137207e
80d4a5c82b9ecbce9a572f28e00c1e0868038eb7eaca9a0508ae46311fe1e222
GET /wp-content/plugins/download-manager/assets/fontawesome/css/all.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:12 GMT
etag: "b277-628e48e5-1b9442;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: text/css
content-length: 9514
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:12 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/gutentor/dist/blocks.style.build.css?ver=3.2.3
34.95.218.219200 OK 23 kB URL HTTP/2 romanews.com.br/wp-content/plugins/gutentor/dist/blocks.style.build.css?ver=3.2.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (65536), with no line terminators
Hash ad2885549eedfbda8def81a24943d76e
28ca9087050936486d9973cd6bb0d1626d5b036e
1920dd32b24fd3d2350a2baf446692cc9d6e62cdd830d8df5d2761ff2d0b7075
GET /wp-content/plugins/gutentor/dist/blocks.style.build.css?ver=3.2.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "44630-62bf05f7-2f6494;br"
last-modified: Fri, 01 Jul 2022 14:34:31 GMT
content-type: text/css
content-length: 23302
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/24liveblog/dist/blocks.style.build.css
34.95.218.219200 OK 173 B URL HTTP/2 romanews.com.br/wp-content/plugins/24liveblog/dist/blocks.style.build.css
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 4d918a9d7ef2036ed7513fe40d4a459c
3b3a5f5e1887384a307db01f43ad54f9be6e016c
136cf7e0d9d35b112b1519e512a12767a73e2fe2d73875eedc65a74844332332
GET /wp-content/plugins/24liveblog/dist/blocks.style.build.css HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:12 GMT
etag: "ad-62a8dc5a-c272c;;;"
last-modified: Tue, 14 Jun 2022 19:07:06 GMT
content-type: text/css
content-length: 173
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:12 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
web-verificationrj.dns.army/wp-content/uploads/2022/05/radio.png
102.37.147.125404 Not Found 290 B URL HTTP/1.1 web-verificationrj.dns.army/wp-content/uploads/2022/05/radio.png
IP 102.37.147.125:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e806b60ccb520a250a84249a5988592f
226c35d3faa589a7b74218aad585f853541f9c08
284cc6125d9eda58eeed9981a0842fbca9530099720ac385ef34eb5cab12980f
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET /wp-content/uploads/2022/05/radio.png HTTP/1.1
Host: web-verificationrj.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 23 Nov 2022 21:06:12 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 290
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8817b14b906ab6c191d2a483a2062319
cf2580dce8f3e867b6b6aee2942d4e08868d8745
8b101818f16b813f2ad8f0a41317d46a888df599756dbbfda70367d4da460b12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: max-age=171369
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:13 GMT
Etag: "637e6f49-117"
Expires: Fri, 25 Nov 2022 20:42:22 GMT
Last-Modified: Wed, 23 Nov 2022 19:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
web-verificationrj.dns.army/wp-content/uploads/2022/05/Grupo-29-1.png
102.37.147.125404 Not Found 290 B URL HTTP/1.1 web-verificationrj.dns.army/wp-content/uploads/2022/05/Grupo-29-1.png
IP 102.37.147.125:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e806b60ccb520a250a84249a5988592f
226c35d3faa589a7b74218aad585f853541f9c08
284cc6125d9eda58eeed9981a0842fbca9530099720ac385ef34eb5cab12980f
Analyzer Verdict Alert urlquery DynDNS domain detected
quad9 Sinkholed
GET /wp-content/uploads/2022/05/Grupo-29-1.png HTTP/1.1
Host: web-verificationrj.dns.army
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 23 Nov 2022 21:06:13 GMT
Server: Apache/2.4.41 (Ubuntu)
Content-Length: 290
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8817b14b906ab6c191d2a483a2062319
cf2580dce8f3e867b6b6aee2942d4e08868d8745
8b101818f16b813f2ad8f0a41317d46a888df599756dbbfda70367d4da460b12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5733
Cache-Control: max-age=171369
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:13 GMT
Etag: "637e6f49-117"
Expires: Fri, 25 Nov 2022 20:42:22 GMT
Last-Modified: Wed, 23 Nov 2022 19:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 16:40:18 GMT
expires: Fri, 17 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 534355
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f22437494cab8f3b1de6d48c3677f43
42461557365b59e300ae356c37b95f652e10dacd
420bc8cc7c6624d9201c6e12fb6478f4a9cf77e90aad033b4d12687968003ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/uploads/2022/05/banner-roma-news-gv-bel.jpg
34.95.218.219200 OK 246 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/banner-roma-news-gv-bel.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.3 (Windows), datetime=2022:09:26 19:06:24], baseline, precision 8, 970x240, components 3\012- data
Size 246 kB (246396 bytes)
Hash 1e1616e1a1ce5443de1c9580cadb39a3
4c7a4e742a63f0165ab001dd5f86bd1fa1b50b76
80525acc7d1c15e0a95f5d217b033184c7665a751463af8b1534382d9ac2dd1b
GET /wp-content/uploads/2022/05/banner-roma-news-gv-bel.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "3c27c-63323b3d-1561a;;;"
last-modified: Mon, 26 Sep 2022 23:52:29 GMT
content-type: image/jpeg
content-length: 246396
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/webfonts/fa-regular-400.woff2
172.64.133.15200 OK 13 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-regular-400.woff2
IP 172.64.133.15:0
File type Web Open Font Format (Version 2), TrueType, length 13224, version 331.-31196\012- data
Hash b91d376b8d7646d671cd820950d5f7f1
13517529affa39e2585c591acae6dc336b6aa917
e42a88444448ac3d60549cc7c1ff2c8a9cac721034c073d80a14a44e79730cca
GET /releases/v5.15.4/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:13 GMT
content-type: font/woff2
content-length: 13224
x-amz-id-2: 88I9VjA3k0hdoQV5FBHHWnJdfouh/lTbErutIdS0Skxw6kWau2gJzLP+G06YK+YEDHyGeKcZBYk=
x-amz-request-id: 773VWZFBEGR8Z0VJ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: "b91d376b8d7646d671cd820950d5f7f1"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Nex1NNl4n2DaufazuZN%2BKFhK8zMXhXfX%2BHXbZti6Nl06vnTVvaMS3nBu8SCaR8H9JA9Lz9IW9oz%2Fuw28wQ3cgX7Lc%2F3AIiWliIf%2FxFFeiUdOXJtcV18cXNNP07YvWUItIbisgRAJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ecde112c6e8873-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/26.09-Ebanner-970X250.gif
34.95.218.219200 OK 169 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/26.09-Ebanner-970X250.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 169 kB (168836 bytes)
Hash be1fead7a0be22fd7370340e745dca7f
040ea921fbe68af6ad465470a4163208cc5068ff
a323077f5c356ff9b33e860c6c82897571b78494a859858db149033707512c6a
GET /wp-content/uploads/2022/05/26.09-Ebanner-970X250.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "29384-63331225-15655;;;"
last-modified: Tue, 27 Sep 2022 15:09:25 GMT
content-type: image/gif
content-length: 168836
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
216.58.207.195200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 06:03:56 GMT
expires: Fri, 17 Nov 2023 06:03:56 GMT
cache-control: public, max-age=31536000
age: 572537
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/06.09-Prefe_Belem_AcaoLimpeza_Ebanner_970x250px-01.gif
34.95.218.219200 OK 308 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/06.09-Prefe_Belem_AcaoLimpeza_Ebanner_970x250px-01.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 308 kB (308411 bytes)
Hash 2f4642b804b1fecfabf682a2817438c0
bf514600aa2177ffb9062f81cc88c3da5d4793c8
541580c8a2438d2d23e56a7fa9ece326ade27b5a1c2c456610fa70770a39dcab
GET /wp-content/uploads/2022/05/06.09-Prefe_Belem_AcaoLimpeza_Ebanner_970x250px-01.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "4b4bb-63176856-14d8a;;;"
last-modified: Tue, 06 Sep 2022 15:33:42 GMT
content-type: image/gif
content-length: 308411
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.woff
34.95.218.219200 OK 7.1 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.woff
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format, CFF, length 7144, version 1.0\012- data
Hash 80f6e7a7a6eb44255aeb06a2d5b5ea41
4ded570e00c9c96cc3cf18e770903cb60e360ce4
e2d3127da85763e024971c6192f78becbdf85db231b3d088c9f8b3777d444ede
GET /wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.woff HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "1be8-627d7ff6-be7ae;;;"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/font-woff
content-length: 7144
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 767e27e8e0b17db799af341157f9ec14
7e691a155996de18425c9af867a4355e43be10e2
1a051d63e3b97d6eda4c7969e478a95c34d8468421f78bc1979a9ad555015b2d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5222
Cache-Control: max-age=154292
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:13 GMT
Etag: "637e2e93-118"
Expires: Fri, 25 Nov 2022 15:57:45 GMT
Last-Modified: Wed, 23 Nov 2022 14:30:43 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 280
romanews.com.br/wp-content/uploads/2022/06/prf-foto-Luca-_Gebara-Ag__ncia-AL-768x512-1-350x250.jpg
34.95.218.219200 OK 14 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/06/prf-foto-Luca-_Gebara-Ag__ncia-AL-768x512-1-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 350x250, components 3\012- data
Hash acb1d92bc8ab4043cba5fc7b98fec683
f1437aef89a4048668ad5cefc38438450820c6a2
520d7cb5f95bbaa78aebcea69c4d2ce898450312a6a77e1f6f845336dbe17fd7
GET /wp-content/uploads/2022/06/prf-foto-Luca-_Gebara-Ag__ncia-AL-768x512-1-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "38a0-62be33b2-182ff3;;;"
last-modified: Thu, 30 Jun 2022 23:37:22 GMT
content-type: image/jpeg
content-length: 14496
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/acidente-augusto2-350x250.jpg
34.95.218.219200 OK 15 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/acidente-augusto2-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 51126f869b1fc4fa03b44cd1400b45e0
ea1dc7e91feb2381fb6f2b4ab80d235ea73984c3
dce87207c4a969900342df38f3103f2ae89944cebf9b581e57a6f05aa4954e31
GET /wp-content/uploads/2022/09/acidente-augusto2-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "39b9-6334dbb1-248fcd;;;"
last-modified: Wed, 28 Sep 2022 23:41:37 GMT
content-type: image/jpeg
content-length: 14777
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
34.95.218.219200 OK 77 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "12bdc-621d7b83-bea5e;;;"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: font/woff2
content-length: 76764
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/BNA-0006-22-UNAMA-VESTIB-2022.2-BANNER-SITE-PREMIO-ROMA-970-x-250.png
34.95.218.219200 OK 154 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/BNA-0006-22-UNAMA-VESTIB-2022.2-BANNER-SITE-PREMIO-ROMA-970-x-250.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 970 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 154 kB (154407 bytes)
Hash 30dfd9b00229d374254917b9189ede89
24196b4d4d6bba9e1a20e037ee0d04ee876d2467
9b5375739b5f7aa3a04dd7eca4f77a2cc04f02e5a9721854706afc183e9b8d08
GET /wp-content/uploads/2022/05/BNA-0006-22-UNAMA-VESTIB-2022.2-BANNER-SITE-PREMIO-ROMA-970-x-250.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "25b27-62a35bcb-11d51;;;"
last-modified: Fri, 10 Jun 2022 14:57:15 GMT
content-type: image/png
content-length: 154407
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/cresol_cooperativismo_banner_roma-news_940x300px.jpg
34.95.218.219200 OK 43 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/cresol_cooperativismo_banner_roma-news_940x300px.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 940x300, components 3\012- data
Hash 918700bf37caae4c440aa67583c6a3a2
1ee0d57a25616d9c7c375eec09a9e96e579694e7
fa8a9a3612a1dea8b0b79b2f6dee4d93c62ef8d029d0d763af3fc2c205c5b830
GET /wp-content/uploads/2022/05/cresol_cooperativismo_banner_roma-news_940x300px.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "a95d-631b5991-14ef5;;;"
last-modified: Fri, 09 Sep 2022 15:19:45 GMT
content-type: image/jpeg
content-length: 43357
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
clevernt.com/scripts/d4df7c8540d51db388db8e38830b58c1.min.js?20210511=1669237573012
104.26.10.117200 OK 126 kB URL HTTP/2 clevernt.com/scripts/d4df7c8540d51db388db8e38830b58c1.min.js?20210511=1669237573012
IP 104.26.10.117:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 126 kB (125761 bytes)
Hash 73c820894a4fab268208d58a1b2f29ef
8574eb5cafa5ae91e92f307696b6df093239f3a0
9bfc6fd03e5ca9d54d929e4c4432f91e42c82f0238aa275083f91e4fb46b52e0
GET /scripts/d4df7c8540d51db388db8e38830b58c1.min.js?20210511=1669237573012 HTTP/1.1
Host: clevernt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:13 GMT
content-type: text/javascript
x-amz-id-2: Yac4gfqtHfcHZCWmD6GExOJ0rt4JFShODL75Y778XxPvcQ2+YRrH1+WJYpALY0mJzF8CmKFx1xY=
x-amz-request-id: 1J881AHCMWJPN09V
last-modified: Mon, 14 Nov 2022 23:29:11 GMT
etag: W/"36dc42531763e8eda3ea7cb6c7931732"
cache-control: max-age=1800
cf-cache-status: HIT
age: 60
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LNkP5ckCSfo6AQXKvPACyhYxbjC81fcjysnb%2BlW5euFdTBkUC%2BTecn93HBpDV6mYtzxcUIoEdEZZ5wStHqHMsyXOsLAVc9BkhFsDqZDYyPmJz7WJc44VtBHgUPCMLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ecde104ff8b51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/25b6.svg
192.0.77.48200 OK 231 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/25b6.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 9fa9d42fbc4405fdca021e2fe9e5c4e2
ddc7d76a620e89affd881c33d019c20a4633bdd6
68596af11fc8972afb0ae7a3651cee7ea872da5db4dd918cc3237a8a53d18cda
GET /images/core/emoji/14.0.0/svg/25b6.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 21:06:13 GMT
content-type: image/svg+xml
content-length: 231
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/DEFIC.jpeg
34.95.218.219200 OK 40 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/DEFIC.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 70", baseline, precision 8, 750x375, components 3\012- data
Hash ecd18f33f551be94885a6cea982982a2
bbe38fb317a81fb255d30066712139854a4a08c6
7f2bce6c9ec0e8531625480998f783b8f7060bd6ab25a5c16b8b56497abd5e60
GET /wp-content/uploads/2022/09/DEFIC.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "9b4b-6334e242-1540c;;;"
last-modified: Thu, 29 Sep 2022 00:09:38 GMT
content-type: image/jpeg
content-length: 39755
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/img/preloader.gif
34.95.218.219200 OK 4.4 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/img/preloader.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 100 x 75\012- data
Hash c9d5e0caa6894712e1fe34cc559ca47f
fca00e1a8ac564cb5dd327f13b1461ddd84220f4
d64e383dfb28ce7e37cba7ddf8dc33b90802fb1840a887c030f1af0b0047715a
GET /wp-content/themes/jnews/assets/img/preloader.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://romanews.com.br/wp-content/themes/jnews/assets/css/main.css?ver=10.6.3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "112f-627d7ff6-be6b2;;;"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: image/gif
content-length: 4399
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/BANNER-CIRIO-RADISSON-f0a374da-d1a1-4855-9ebb-e325e82d0a67.jpg
34.95.218.219200 OK 119 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/BANNER-CIRIO-RADISSON-f0a374da-d1a1-4855-9ebb-e325e82d0a67.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x329, components 3\012- data
Size 119 kB (119056 bytes)
Hash cb3695bb0dd7d57194fbb7212d827984
6a521f5dc820806072c5c140dc412d4fdabeb48b
362d9c8f922284239b84d5811a3b88c07dfccbffffe471c36d6c1cfc39742f11
GET /wp-content/uploads/2022/05/BANNER-CIRIO-RADISSON-f0a374da-d1a1-4855-9ebb-e325e82d0a67.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "1d110-62e82b0a-12a99;;;"
last-modified: Mon, 01 Aug 2022 19:35:38 GMT
content-type: image/jpeg
content-length: 119056
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/28.09-CIRIO-WEB-BANNER-PORTAIS-970x250-1.jpg
34.95.218.219200 OK 143 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/28.09-CIRIO-WEB-BANNER-PORTAIS-970x250-1.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 970x250, components 3\012- data
Size 143 kB (143146 bytes)
Hash 16f7fee749890e755e27e0c143d78417
b9e98f4b4113ce269e38fc2e48b154d67ae97806
e7071389dfde9690cb2411212976c711d4794945e3d44b3e9d9316790257d618
GET /wp-content/uploads/2022/05/28.09-CIRIO-WEB-BANNER-PORTAIS-970x250-1.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "22f2a-63345317-156c9;;;"
last-modified: Wed, 28 Sep 2022 13:58:47 GMT
content-type: image/jpeg
content-length: 143146
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/chosen.jquery.js?ver=10.6.3
34.95.218.219200 OK 101 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/chosen.jquery.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Size 101 kB (101215 bytes)
Hash b285d975a03ec86dcc42c31963be0dea
b57c20d208750664526d26561b6327ae512908ae
1ddf266f70e4dbdda31108a07d59058777ca95f4c066ea8761a4090f711102be
GET /wp-content/themes/jnews/assets/js/chosen.jquery.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "70f6-627d7ff6-be79e;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 6556
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/jquery.smartresize.js?ver=10.6.3
34.95.218.219200 OK 106 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/jquery.smartresize.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Size 106 kB (106356 bytes)
Hash 6dcfcb4fa4b54b6c954ef3c5791786c7
701165ae30a6c592e341d5d8d3b3164416393aee
26bedd3f25ed1fda1098a11c5fff3d5ac078310bbc9bd4627e07e0f954cdd8ab
GET /wp-content/themes/jnews/assets/js/jquery.smartresize.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "10b-627d7ff6-be758;gz"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/Banner-de-Internet-Portal-Roma-News-940x230-px.png
34.95.218.219200 OK 264 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/Banner-de-Internet-Portal-Roma-News-940x230-px.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 940 x 230, 8-bit/color RGB, interlaced\012- data
Size 264 kB (263625 bytes)
Hash 813fd5009330336626f193fe8fd1045f
8692c55af33cc154041e5a0358bf6080140e8ad8
cdc22390dd38b3fef713daee617f2843b841d7e2c279e08af54a9f70138ea822
GET /wp-content/uploads/2022/05/Banner-de-Internet-Portal-Roma-News-940x230-px.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "405c9-632b1a53-1533b;;;"
last-modified: Wed, 21 Sep 2022 14:06:11 GMT
content-type: image/png
content-length: 263625
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/VALE_BANNERBanner-970x250-Roma-News.gif
34.95.218.219200 OK 267 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/VALE_BANNERBanner-970x250-Roma-News.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 267 kB (266552 bytes)
Hash 7fdfb3f78ee8326f1169a79784bf4f75
728e9971a92e6c7329e18ce6250d33b60693283d
2e390312be67e1fb2978e7b3b2455de40585c4c872d2d84bf0cfeafed04057b1
GET /wp-content/uploads/2022/05/VALE_BANNERBanner-970x250-Roma-News.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "41138-63111868-13aac;;;"
last-modified: Thu, 01 Sep 2022 20:39:04 GMT
content-type: image/gif
content-length: 266552
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/Roma-News-970x250-1.gif
34.95.218.219200 OK 180 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/Roma-News-970x250-1.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Size 180 kB (179706 bytes)
Hash 60b3402cd68398492ba1169cc2852f51
162386cca23665d707a90e5c2a6f6ad2494973eb
fcc76c06366b27e799a9496c66d5090920716ff3bf933ff5f0b3256139bd7ef9
GET /wp-content/uploads/2022/05/Roma-News-970x250-1.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "2bdfa-6310f6cd-13aab;;;"
last-modified: Thu, 01 Sep 2022 18:15:41 GMT
content-type: image/gif
content-length: 179706
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/BA_BANNER-PORTAIS_CIRIO_ROMA_970X250PX_AGO22.png
34.95.218.219200 OK 221 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/BA_BANNER-PORTAIS_CIRIO_ROMA_970X250PX_AGO22.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 970 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 221 kB (221257 bytes)
Hash 1cf470f7c5c8b0d4be467affc9bb7e6e
6a100d12b141f01100d140b807f62c6d9e6d7f9f
9bdf5b6709554e1c8921a919769853c3b5dc629321c6600c33730abba37a5ac6
GET /wp-content/uploads/2022/05/BA_BANNER-PORTAIS_CIRIO_ROMA_970X250PX_AGO22.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "36049-6324bdcb-14fb7;;;"
last-modified: Fri, 16 Sep 2022 18:17:47 GMT
content-type: image/png
content-length: 221257
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/ECO_BANNER_ROMA_970x250px_AGO22.png
34.95.218.219200 OK 287 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/ECO_BANNER_ROMA_970x250px_AGO22.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 970 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 287 kB (287153 bytes)
Hash 258bdade03832ba5b5a02cecb2714460
cc4c14ac0ba3093c9740b0e65dd7341cff39b55f
a1b987b6ef8166a7b0433153594c8fd70dd4fa9e0dbd706be649fc38ad1bcb68
GET /wp-content/uploads/2022/05/ECO_BANNER_ROMA_970x250px_AGO22.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "461b1-632a2771-15308;;;"
last-modified: Tue, 20 Sep 2022 20:49:53 GMT
content-type: image/png
content-length: 287153
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/28.09-970X250-BANNER-SACADA-CIRIO.gif
34.95.218.219200 OK 75 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/28.09-970X250-BANNER-SACADA-CIRIO.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 970 x 250\012- data
Hash af76cb046f9e7b3de35d144fac7d5d4d
9efe7a95739e3336085f2d114397665df8375515
6e72476c40f5b72d017122356fa48375c9d8a34eb1efaf2bb4b81757ec3e713c
GET /wp-content/uploads/2022/05/28.09-970X250-BANNER-SACADA-CIRIO.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "1265b-6334b429-15717;;;"
last-modified: Wed, 28 Sep 2022 20:52:57 GMT
content-type: image/gif
content-length: 75355
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/940x230-px-1.gif
34.95.218.219200 OK 223 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/940x230-px-1.gif
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 940 x 230\012- data
Size 223 kB (222965 bytes)
Hash b398db89973ec64206a02ed39b4189f3
8acfba1e58f7ace84907bfcdfdf745c0cfc7eb10
c4416f1ba7d5d805c7dd57e839ea422b4381f3388a31cd6cdc99d09ced23f025
GET /wp-content/uploads/2022/05/940x230-px-1.gif HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "366f5-62e81e34-1107f;;;"
last-modified: Mon, 01 Aug 2022 18:40:52 GMT
content-type: image/gif
content-length: 222965
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/05/MAFRA-TUR-BANNER.jpg
34.95.218.219200 OK 1.1 MB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/05/MAFRA-TUR-BANNER.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 970x240, components 4\012- data
Size 1.1 MB (1108797 bytes)
Hash ca34c8f9b182e19de8af05cd0da2adbb
569c2fbb77a19c02be2bafbcc50f60b0728d6769
7707f7504bd6d0df6f5e77201ef72ece39fd0ea605ad99d2d7d72db6f4d330cb
GET /wp-content/uploads/2022/05/MAFRA-TUR-BANNER.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:13 GMT
etag: "10eb3d-6334950f-15704;;;"
last-modified: Wed, 28 Sep 2022 18:40:15 GMT
content-type: image/jpeg
content-length: 1108797
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:13 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-20.33.36-350x250.jpeg
34.95.218.219200 OK 31 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-20.33.36-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 98accd6721c4eb0f097a511c8ccba996
347f4169b8a852c5211793be36dda1d501ed70af
d7e881250a13fd39749b79a75f73cb82a99e0a1346689fa2fac7e32f3cbaed22
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-20.33.36-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "79de-6334dd6f-248fd9;;;"
last-modified: Wed, 28 Sep 2022 23:49:03 GMT
content-type: image/jpeg
content-length: 31198
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.js?ver=10.6.3
34.95.218.219200 OK 12 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 2f706bc16ae512ff5219a28003fb4a93
3c76d744f8af5be61fa7330fad3751392e452ffb
75f5d0c34612851e7b3c0a27a7523c341323847309d944396e71630c3d5aed7a
GET /wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "7eb6-627d7ff6-be767;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
content-length: 12563
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider-noconflict.js?ver=10.6.3
34.95.218.219200 OK 20 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider-noconflict.js?ver=10.6.3
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 17fa805dd843d589986b9017f817006e
cf49638cc774ee22da952d436aa59cfaf46d2de3
fe94d609982994e5a4c267b5b29f8f9ebaff6041ac31e111b84133283567d4b9
GET /wp-content/themes/jnews/assets/js/tiny-slider/tiny-slider-noconflict.js?ver=10.6.3 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "fb-627d7ff6-be766;gz"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-javascript
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-18.03.11-350x250.jpeg
34.95.218.219200 OK 19 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-18.03.11-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 18f9503c7011d4b68b6763ee62431672
bcd85fa9da14519a63a554ec187c13c7f62df70c
37cb8beaf8d60f9e08a95ce471afe2fcafd443486239061ac97885c500b707be
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-18.03.11-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "489d-6334b6eb-248f2f;;;"
last-modified: Wed, 28 Sep 2022 21:04:43 GMT
content-type: image/jpeg
content-length: 18589
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-11.55.55-350x250.jpeg
34.95.218.219200 OK 21 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-11.55.55-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash 4e66329640620f1706ceed36dafdfc7e
84a8bea2a85e15729f29061117b9eed188dd8626
12454c55b65ae48b0f2a26c0e68479c21ee0a67ac540eeabb9a1cc137da24af8
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-11.55.55-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "524c-63346107-248c4d;;;"
last-modified: Wed, 28 Sep 2022 14:58:15 GMT
content-type: image/jpeg
content-length: 21068
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/img_40a9bc57a89ba0451a5780feb92d7d4b1000590-350x250.jpg
34.95.218.219200 OK 19 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/img_40a9bc57a89ba0451a5780feb92d7d4b1000590-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 350x250, components 3\012- data
Hash 99719673ea145d53656b43081aabf3d9
b4cae2fbe7305e5f747442ad7dd0dc811acd51ab
bddb1f846335abc8a7720923a1c8dcf235a26abdfc41b7c1ed347a7357b436f1
GET /wp-content/uploads/2022/09/img_40a9bc57a89ba0451a5780feb92d7d4b1000590-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "48b6-6334bc47-248f79;;;"
last-modified: Wed, 28 Sep 2022 21:27:35 GMT
content-type: image/jpeg
content-length: 18614
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-16.51.01-350x250.jpeg
34.95.218.219200 OK 14 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-16.51.01-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash bd6a89627590f8a72a37c7ae4e43d48b
03bbcf007014b4aa779281a32896fa8fff4484ae
3bea02ffa04013233c8a6d1ccf864fa846fd1404976e0717333816f8cac5faa4
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-16.51.01-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "38c2-6334a78c-248ed3;;;"
last-modified: Wed, 28 Sep 2022 19:59:08 GMT
content-type: image/jpeg
content-length: 14530
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/Sem-titulo-6-350x250.jpg
34.95.218.219200 OK 18 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/Sem-titulo-6-350x250.jpg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash ec602c0c402aaee7e65b0170200fe5c5
9275dcd6dea7237f28ba87490f5794cab67d30d0
e6b8582bd5a7a95e49e819a91ee95d763a2a62faa04c85cbed1c9fa0c4f36b0d
GET /wp-content/uploads/2022/09/Sem-titulo-6-350x250.jpg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "4487-63347c0f-248ce8;;;"
last-modified: Wed, 28 Sep 2022 16:53:35 GMT
content-type: image/jpeg
content-length: 17543
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-14.35.58-350x250.jpeg
34.95.218.219200 OK 16 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-14.35.58-350x250.jpeg
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x250, components 3\012- data
Hash ce6f287e0551a6baf297795be1abbf8f
ba1d59099e8e997b7eb143e69c8a59af4f38ee1a
85ea901ad25c6a072b5e1e712aa95a60dbbb5fdd76165076852b34705f9b3cb7
GET /wp-content/uploads/2022/09/WhatsApp-Image-2022-09-28-at-14.35.58-350x250.jpeg HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "3ca7-63348631-248dbb;;;"
last-modified: Wed, 28 Sep 2022 17:36:49 GMT
content-type: image/jpeg
content-length: 15527
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.ttf
34.95.218.219200 OK 6.4 kB URL HTTP/2 romanews.com.br/wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.ttf
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash 6092d14ca7d57d6de4cf78e52eb2c1b3
a73792dad4085417e008dcd4ca7d6fb02ceb7f45
2a8db2633ac8352973bc5de719a23201af98cd747e580f14c90eb7b8ed87b932
GET /wp-content/themes/jnews/assets/fonts/jegicon/fonts/jegicon.ttf HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "329c-627d7ff6-be7ad;br"
last-modified: Thu, 12 May 2022 21:45:26 GMT
content-type: application/x-font-ttf
content-length: 6383
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
34.95.218.219200 OK 90 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format, TrueType, length 90060, version 331.-31261\012- data
Hash 099a9556e1a63ece24f8a99859c94c7d
5f8cab91347c553c1eb87f9b527f6bee8a28e40d
aff76e5c986f295d4bc6f8142a78e2a31888b101c2d025db89f79c75f64fd90b
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "15fcc-621d7b83-bea61;;;"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/font-woff
content-length: 90060
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2
172.64.133.15200 OK 78 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.woff2
IP 172.64.133.15:0
File type Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196\012- data
Hash d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537
GET /releases/v5.15.4/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:14 GMT
content-type: font/woff2
content-length: 78268
x-amz-id-2: yqOuG3LzUWYAIJoMecOazdFQADtU5yOqGbRYZYvpjuQvum2wXrrMVLNl9Ac/mgr0wEcl79nY8Sk=
x-amz-request-id: WKJ6BB0HFQ4DX8HG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: "d824df7eb2e268626a2dd9a6a741ac4e"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8428cKlE%2BgJs9pThYocwTmAQjXQxHvyahf58ddsse3DVR0r55891QRzSev%2B4Ah46kuNAOtlBKXfUEctFkpFpEFKou83iAD4zUH0zHnwBUzrTBj30pk2g3i4VAlrje8QJpBjGYjkB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ecde16d8668873-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
34.95.218.219200 OK 89 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Hash 027334f271052f851e49c90fb235e62d
2fc56bc35ef491258509d66561e15b29d31cce48
2a78cbfe5120fb788772ca7cd64cb6dc97e7c56159044e87bbc1543942b85841
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "20b98-621d7b83-bea5d;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-font-ttf
content-length: 88561
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
call.cleverwebserver.com/?id=47309&c=NO&r=03&l=192&b=Firefox&os=Win10&mob=0&v=1.0.0-legacy&ref=aHR0cHM6Ly93ZWItdmVyaWZpY2F0aW9ucmouZG5zLmFybXkv&ruri=&iv=-1&ctr=NO&sz=939
104.18.24.246200 OK 43 B URL HTTP/2 call.cleverwebserver.com/?id=47309&c=NO&r=03&l=192&b=Firefox&os=Win10&mob=0&v=1.0.0-legacy&ref=aHR0cHM6Ly93ZWItdmVyaWZpY2F0aW9ucmouZG5zLmFybXkv&ruri=&iv=-1&ctr=NO&sz=939
IP 104.18.24.246:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 57f187c7a868faeac558007a8eb6cb2e
11ab10ab109fdb53d91d444ac781101f5a6360c6
aa03dc59bdca72631d2301e4297cfa030bd31b907dc138e7b973d12311c90a22
GET /?id=47309&c=NO&r=03&l=192&b=Firefox&os=Win10&mob=0&v=1.0.0-legacy&ref=aHR0cHM6Ly93ZWItdmVyaWZpY2F0aW9ucmouZG5zLmFybXkv&ruri=&iv=-1&ctr=NO&sz=939 HTTP/1.1
Host: call.cleverwebserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:14 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76ecde1a9ef20afe-OSL
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-49TPHE05FN>m=2oeb90&_p=2029556836&_gaz=1&cid=19870369.1669237574&ul=en-us&sr=1280x1024&_s=1&sid=1669237574&sct=1&seg=0&dl=https%3A%2F%2Fweb-verificationrj.dns.army%2F&dt=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-49TPHE05FN>m=2oeb90&_p=2029556836&_gaz=1&cid=19870369.1669237574&ul=en-us&sr=1280x1024&_s=1&sid=1669237574&sct=1&seg=0&dl=https%3A%2F%2Fweb-verificationrj.dns.army%2F&dt=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-49TPHE05FN>m=2oeb90&_p=2029556836&_gaz=1&cid=19870369.1669237574&ul=en-us&sr=1280x1024&_s=1&sid=1669237574&sct=1&seg=0&dl=https%3A%2F%2Fweb-verificationrj.dns.army%2F&dt=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://web-verificationrj.dns.army
date: Wed, 23 Nov 2022 21:06:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b2b92f1110c82662bfa1addc9bab3130
d6f86300cbfd5b21b3d505c08ffd6edef34b654a
6914944644172d563d0d7c2a5084690fce86ead13949ff29f42842d4bb6e0734
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/plugins/elementor/assets/js/video.1a44ef088849d6949ada.bundle.min.js
34.95.218.219200 OK 1.2 kB URL HTTP/2 romanews.com.br/wp-content/plugins/elementor/assets/js/video.1a44ef088849d6949ada.bundle.min.js
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (3285)
Hash ecd391b1c09662c79d02803d3aa10ae2
c79735c6f4fda0e9f320d8e4f18ee95d98e80366
1bc5704409620bffe270e3d1df2b56f0b1791fb60157f2ce9389a5141d835904
GET /wp-content/plugins/elementor/assets/js/video.1a44ef088849d6949ada.bundle.min.js HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "cfc-621d7b83-bea88;br"
last-modified: Tue, 01 Mar 2022 01:48:51 GMT
content-type: application/x-javascript
content-length: 1222
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.eot
172.64.133.15200 OK 172 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-solid-900.eot
IP 172.64.133.15:0
File type Embedded OpenType (EOT), Font Awesome 5 Free Solid family\012- data
Size 172 kB (171679 bytes)
Hash bfd5abd1ba66ae473c89ae3d275a698c
037f586bd09e36d8db3980e715d7a564d0b25947
c26c1cf5afb5755f10d369d541df5d82a62b43c6c9eade01742c24a4b5561d3b
GET /releases/v5.15.4/webfonts/fa-solid-900.eot HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:13 GMT
content-type: application/vnd.ms-fontobject
x-amz-id-2: 8+TpHlcXNf1xwkwfIRXy3aiA7T0tPfu/Jq5MRy6eMA8DGcd6u4Zr2RJvLYq1AUJH8HA27MXG1sI=
x-amz-request-id: 773PRBJ04NH70A9E
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: W/"0c6bfc668a72935760178f91327aed3a"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IHv8ybxUkielpyOk%2FjndJs1AYjmEMIO707tRDxNwmRgf4%2BXoPhOHDfsedB24JycNQu%2FTy%2FfKG86FWGtkEj8rtK5MLO7e15AGj1QvfWWrGJ4DivHieYcgU71WhtL7km%2BJqtG2b4yG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ecde110c198873-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff2
34.95.218.219200 OK 63 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 63376, version 1.0\012- data
Hash f319eac1c755f9929fd856720ce1695e
0a885a5dbd97bd9f4fb1821eb82f2135471faff9
62b5e7ae9e2ed60dcd7cb2e0823dd0884575f2176aff629f2df1e912dfae20e1
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:14 GMT
etag: "f790-628e48e5-1b9438;;;"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: font/woff2
content-length: 63376
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:14 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b2b92f1110c82662bfa1addc9bab3130
d6f86300cbfd5b21b3d505c08ffd6edef34b654a
6914944644172d563d0d7c2a5084690fce86ead13949ff29f42842d4bb6e0734
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.15.4/webfonts/fa-brands-400.woff2
172.64.133.15200 OK 78 kB URL HTTP/2 use.fontawesome.com/releases/v5.15.4/webfonts/fa-brands-400.woff2
IP 172.64.133.15:0
Hash 3b77a213626e58f243ac2602042ae87d
9b55f96592e348a1ee927044b03270c2959b56bf
a55c6ba6f2e2482505672b01c3927d3e04ca2acf14a1178d2e50f48cb032eac8
GET /releases/v5.15.4/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:15 GMT
content-type: font/woff2
content-length: 76736
x-amz-id-2: Tq8Vc8BUJQvPLMshCMBGxQte2cWsQXNFcyWDz5hBoL+zQOU6Ht9HNv+51YkQblFoomjJMwj8JsA=
x-amz-request-id: WKJ3ARZWSMW49S4N
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:47 GMT
etag: "ed311c7a0ade9a75bb3ebf5a7670f31d"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xIK4flTYOKjgg9k2TTX2k9Y2wmFhzKRj%2F5fbLzUn8HbgXpW0OolxIX18g70ipNiacxZO7HqAe7K9%2FpR2x2ijahFMxmW3b%2FwKQPPPhtCw4psbkmVi9Lc8JpKR9%2BFKubV65e7DiWx1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ecde1a98a08873-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff
34.95.218.219200 OK 74 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format, TrueType, length 73920, version 1.0\012- data
Hash d034c1b2ee84dd981ef2e637754a0b4f
41ba889468ecc0350ef2ac98f00af4068902febb
c82c3aa4c57f8ee8ce750e18822cba0f265a66fda67a1620e42c749dadef6b74
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "120c0-628e48e5-1b943b;;;"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/font-woff
content-length: 73920
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.ttf
34.95.218.219200 OK 73 kB URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.ttf
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type TrueType Font data, 11 tables, 1st "GSUB", 18 names, Macintosh, Font AwesomeFont Awesome 5 BrandsRegularFont Awesome 5 Brands RegularFont Awesome 5 Brands Regul\012- data
Hash 027f222abb22f1fd497a054fb0fbdcec
e3feb57863ee6e18f97fcbf4ec58bb10d04105f7
1f12c1f2602d5fcdd09378508b17479b90ec9118cf9a1ab22663d2c20a1fb02f
GET /wp-content/plugins/download-manager/assets/fontawesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://romanews.com.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:15 GMT
etag: "1c080-628e48e5-1b9437;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: application/x-font-ttf
content-length: 72775
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cd169e34de2d28496660c4fefeaaddd7
72149a5f99d822d4f50661811604af0128d44028
9aab47dcba589b6b037299c49f897d32e1048f775dfab5c47f39af4229d24de7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 23 Nov 2022 20:41:08 GMT
expires: Wed, 23 Nov 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 1507
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8069f5e67c25fc0b7388ba5d4decd8c9
64a85ba44c80ea206f4382f573c3d61e4f607ccf
7587cd04333ddf1cff15ae219cb8fca0618786a9fe4cee989975f4d50889e72a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c04aed338f8610ba6b0acc4ab749c52e
9cce76bf45ca7cb7e101d6c5c8013ecc83f188a4
4d4e0d35a6f2357ff749b146e4f0fdff7f5f8631b3e6efee952f5c82fb256fbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gadasource.storage.googleapis.com/ivc.js
142.250.74.144200 OK 24 kB URL HTTP/2 gadasource.storage.googleapis.com/ivc.js
IP 142.250.74.144:0
File type ASCII text, with very long lines (880)
Hash cdaa61cbc24c48191196b45b31a7e18b
8f9b524845e378a3f5f488838d024f622c2de46f
dd64819eedd8baed6eb46fd1e9ea54d0e385e19db40878a1150aee1e44401be5
GET /ivc.js HTTP/1.1
Host: gadasource.storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvVnl9wyRPWcCOt8v2fKK4HR9-5BhjSIRu-LUVaaGcNYfDRqi-g4U6joF1HjgMJOZJYhUx5ljafnxsuegsEieltdB0Df6Pk
x-goog-generation: 1567453851562424
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 24321
content-encoding: gzip
x-goog-hash: crc32c=okr5pw==, md5=zaphy8JMSBkRlrRbMafhiw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 24321
server: UploadServer
date: Wed, 23 Nov 2022 20:17:05 GMT
expires: Wed, 23 Nov 2022 21:17:05 GMT
cache-control: public, max-age=3600
age: 2950
last-modified: Mon, 02 Sep 2019 19:50:51 GMT
etag: "cdaa61cbc24c48191196b45b31a7e18b"
content-type: text/plain
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6202167740899584
142.250.74.2200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6202167740899584
IP 142.250.74.2:0
File type ASCII text, with very long lines (4885)
Hash 029aeb69dba3bf2bb33ce8fc9d6eb01f
f8c691b71a9e8e421dba9624b3a8d1186db95035
3ec999afea024bec960f75f758ea33540b8dff9a23f199f3ad30b585c90a11a7
GET /pagead/js/adsbygoogle.js?client=ca-pub-6202167740899584 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:15 GMT
expires: Wed, 23 Nov 2022 21:06:15 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15960146922889755068
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49152
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.2200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (4885)
Hash 616cc567711f4c42d8c845a0a43c44f3
e9e484d77c791704f1a5200b821b2cc37d981d8d
b21af90e0edfd4930d41b0de5674efb04795d3388db05d9a366c863f1dc8e16c
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:15 GMT
expires: Wed, 23 Nov 2022 21:06:15 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10297564036821570242
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49131
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-49TPHE05FN&cid=19870369.1669237574>m=2oeb90&aip=1&z=1189966721
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-49TPHE05FN&cid=19870369.1669237574>m=2oeb90&aip=1&z=1189966721
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-49TPHE05FN&cid=19870369.1669237574>m=2oeb90&aip=1&z=1189966721 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 23 Nov 2022 21:06:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c04aed338f8610ba6b0acc4ab749c52e
9cce76bf45ca7cb7e101d6c5c8013ecc83f188a4
4d4e0d35a6f2357ff749b146e4f0fdff7f5f8631b3e6efee952f5c82fb256fbd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8069f5e67c25fc0b7388ba5d4decd8c9
64a85ba44c80ea206f4382f573c3d61e4f607ccf
7587cd04333ddf1cff15ae219cb8fca0618786a9fe4cee989975f4d50889e72a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
romanews.com.br/wp-content/uploads/2022/03/rn-favicon.png
34.95.218.219200 OK 27 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/03/rn-favicon.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 156 x 161, 8-bit/color RGBA, non-interlaced\012- data
Hash 02b767be69bd499cff08a876cb2d6cbc
2eb2c0890c8f63e29f9a1291570b1f1d28883005
6bb9cc48b009ef6a083559f47c601b3422bb6c40f8f82a1354dfa3414d7e88ce
GET /wp-content/uploads/2022/03/rn-favicon.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:15 GMT
etag: "6a72-621e3cb0-857c;;;"
last-modified: Tue, 01 Mar 2022 15:33:04 GMT
content-type: image/png
content-length: 27250
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/uploads/2022/03/rn-favicon-75x75.png
34.95.218.219200 OK 7.5 kB URL HTTP/2 romanews.com.br/wp-content/uploads/2022/03/rn-favicon-75x75.png
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 75 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a458d18ab72957308e6813dd6bdd272
f54b8b2ad6e6c7714e6455457aecedf02579972e
1e1274f46e79792eb61008da2d50719ccb0eb438cf6845bf9aa449cf0309c893
GET /wp-content/uploads/2022/03/rn-favicon-75x75.png HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:15 GMT
etag: "1d39-627db7a8-bd649;;;"
last-modified: Fri, 13 May 2022 01:43:04 GMT
content-type: image/png
content-length: 7481
accept-ranges: bytes
date: Wed, 23 Nov 2022 21:06:15 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 120 kB IP 142.250.74.3:0
Size 120 kB (119614 bytes)
Hash 7044d918909fde18c0a1ba70e3e43e66
1ea084b06f6e377f2f28aace7f92be10855aa167
b15532f04a1d4a88fb4a1c2a5737b6a5f8352005a0d20796334716a0b4140a30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=web-verificationrj.dns.army
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=web-verificationrj.dns.army
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=web-verificationrj.dns.army HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 23 Nov 2022 21:06:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=web-verificationrj.dns.army
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=web-verificationrj.dns.army
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=web-verificationrj.dns.army HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 23 Nov 2022 21:06:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 7db48cc82c9cb679d8df2ea01258a4df
bcacdc69f01eb11bb7aabeae706cc5f077957c30
d0b84b25db3fcf45672997c0f78e9d532c9a9c035710f5c7afecfaff4fb08d97
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109050
Date: Wed, 23 Nov 2022 21:06:16 GMT
Etag: "637d8741-1d7"
Expires: Fri, 25 Nov 2022 03:23:46 GMT
Last-Modified: Wed, 23 Nov 2022 02:36:49 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: S-2CaO2fkyDYpspwb0k1sSIH_8k0Ju_dNdPiLmAGfjgKDJk4AqqY1Q==
Age: 2817
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 942e48a42959a84a8fb01744fd2caf86
a3659e206ba81e8549afa2d9138060148883ba90
7b84fbd99ebee52b8eb3b3d506ffc4ff9d15bd2bd211fc4003a20fe3ef171501
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=web-verificationrj.dns.army&callback=_gfp_s_&client=ca-pub-6202167740899584&gpid_exp=1
172.217.21.162200 OK 251 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=web-verificationrj.dns.army&callback=_gfp_s_&client=ca-pub-6202167740899584&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (383), with no line terminators
Hash f6a032c822f7d58a80fe9f804230b138
f81da1dca70a492478171ef8f86662ab0ac82c75
49faa9f9b89cdddba07376acbbd28d5ddd41485b4619cd56fe2062b8f9da313a
GET /gampad/cookie.js?domain=web-verificationrj.dns.army&callback=_gfp_s_&client=ca-pub-6202167740899584&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 23 Nov 2022 21:06:16 GMT
server: cafe
cache-control: private
content-length: 251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 942e48a42959a84a8fb01744fd2caf86
a3659e206ba81e8549afa2d9138060148883ba90
7b84fbd99ebee52b8eb3b3d506ffc4ff9d15bd2bd211fc4003a20fe3ef171501
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 23 Nov 2022 21:06:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 4487fd1d790364682e3dfd52c71f0aaa
96629b543874248ab4e8e0a6b93b0b09c2c57e28
c6bd145d80e222af32ee2dea96c52a90106a001a02a2c92b8271be18ba35c3da
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 23 Nov 2022 21:06:17 GMT
server: ESF
cache-control: private
content-length: 30831
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash adb3448eb71178c9660330148424469f
c299752f6b8a89362cbc5b2254aef1a64181d963
f38213cdc59fe1619d4c4f4a7a4c1d364d1a28552144475e742e76335ec3dd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/Nt5v8Aofito/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB_gmAAtAFigIMCAAQARhlIGUoZTAP&rs=AOn4CLCQNGDNIOXxT2Rqgu1FYqJlTo-hCg
172.217.21.182200 OK 2.8 kB URL HTTP/2 i.ytimg.com/vi/Nt5v8Aofito/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB_gmAAtAFigIMCAAQARhlIGUoZTAP&rs=AOn4CLCQNGDNIOXxT2Rqgu1FYqJlTo-hCg
IP 172.217.21.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 26ac052a7f1e79cf65c72f11a8a9eb1b
ad96a7db30d51b6737332b740a2cb2ce89f40d0f
7d38f2877540771d410cd2b70c43343dc18de229655083ffa62bbac69c08fe78
GET /vi/Nt5v8Aofito/default.jpg?sqp=-oaymwEkCHgQWvKriqkDGvABAfgB_gmAAtAFigIMCAAQARhlIGUoZTAP&rs=AOn4CLCQNGDNIOXxT2Rqgu1FYqJlTo-hCg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2815
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 21:06:17 GMT
expires: Wed, 23 Nov 2022 23:06:17 GMT
cache-control: public, max-age=7200
etag: "0"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ivccf.ivcbrasil.org.br/i?stm=1669237575608&e=pv&url=https%3A%2F%2Fweb-verificationrj.dns.army%2F&page=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&tv=js-2.9.2-SNAPSHOT&tna=cf&aid=504&p=web&tz=UTC&lang=en-US&cs=UTF-8&f_inpriv=0&f_abd=0&res=1280x1024&cd=24&cookie=1&eid=9497c5ee-b498-4664-8792-ba4712ee6371&dtm=1669237575607&vp=1280x939&ds=1268x8756&vid=1&sid=49750de2-ee3e-4609-91af-0999f444ab8b&duid=c4b00709-1371-4bcd-9421-01d28ec8b0fa&fp=3151011147&uid=login_do_usuario
52.33.191.231200 43 B URL HTTP/1.1 ivccf.ivcbrasil.org.br/i?stm=1669237575608&e=pv&url=https%3A%2F%2Fweb-verificationrj.dns.army%2F&page=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&tv=js-2.9.2-SNAPSHOT&tna=cf&aid=504&p=web&tz=UTC&lang=en-US&cs=UTF-8&f_inpriv=0&f_abd=0&res=1280x1024&cd=24&cookie=1&eid=9497c5ee-b498-4664-8792-ba4712ee6371&dtm=1669237575607&vp=1280x939&ds=1268x8756&vid=1&sid=49750de2-ee3e-4609-91af-0999f444ab8b&duid=c4b00709-1371-4bcd-9421-01d28ec8b0fa&fp=3151011147&uid=login_do_usuario
IP 52.33.191.231:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /i?stm=1669237575608&e=pv&url=https%3A%2F%2Fweb-verificationrj.dns.army%2F&page=Roma%20News%20-%20O%20DNA%20da%20Not%C3%ADcia&tv=js-2.9.2-SNAPSHOT&tna=cf&aid=504&p=web&tz=UTC&lang=en-US&cs=UTF-8&f_inpriv=0&f_abd=0&res=1280x1024&cd=24&cookie=1&eid=9497c5ee-b498-4664-8792-ba4712ee6371&dtm=1669237575607&vp=1280x939&ds=1268x8756&vid=1&sid=49750de2-ee3e-4609-91af-0999f444ab8b&duid=c4b00709-1371-4bcd-9421-01d28ec8b0fa&fp=3151011147&uid=login_do_usuario HTTP/1.1
Host: ivccf.ivcbrasil.org.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Content-Type: image/gif
Date: Wed, 23 Nov 2022 21:06:16 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Server: Apache/2.4.51 () OpenSSL/1.0.2k-fips
Set-Cookie: sp=1f8f1f25-cff7-47a7-829e-17eed8966c72;Expires=Thu, 23 Nov 2023 21:06:17 +0000;Path=/
Content-Length: 43
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash adb3448eb71178c9660330148424469f
c299752f6b8a89362cbc5b2254aef1a64181d963
f38213cdc59fe1619d4c4f4a7a4c1d364d1a28552144475e742e76335ec3dd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 68ab5865b415e2e421a4eaa3a206ce0e
fa492d5a66e9d07ffdc14b3d8e11f0cdc27aed87
10298e9120db56a4aeaf950d2fa25af662172358e534aa5fa6d4af8ab53ce146
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ae7674294f5a17ef8761b33ac4dad848
30a771e623dd1e3cb8694bb5f71393aaa9e87b6a
cac85ed50ce25c45d5093aaaa231a0d1cd9667f47bd2312947070ba202c5d96b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35818)
Hash 511a3814cb1663e9d9286015da587ae2
a9ef6e40f17b2659c823195354e912a8979cc1a0
a2e4a4711f28ea423fdcadcced71bdf38e190b285fdde3fc9f11868ad8730375
GET /js/th/98eZ1SvQKncrIy_uxRv1pSvbmSGZ50EV24E3eut_s2o.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 06:09:08 GMT
expires: Thu, 23 Nov 2023 06:09:08 GMT
cache-control: public, max-age=31536000
age: 53829
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yt3.ggpht.com/oVH0UExA8-JslbgLd87oN-P4ytJZ4rFZLOVxB9D8CoarFvDypkMNihlmvAnGUQU2NZxyaALH=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.8 kB URL HTTP/2 yt3.ggpht.com/oVH0UExA8-JslbgLd87oN-P4ytJZ4rFZLOVxB9D8CoarFvDypkMNihlmvAnGUQU2NZxyaALH=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 7c208f178a9e8a1243cdc26f8a43cae3
dbe3f7866ccb7a6bd366108f6a6d8cc29c72445d
38ae7241ac79d84a347071fb784a520fa84f4623606e1ddf5877c13b698fa0d6
GET /oVH0UExA8-JslbgLd87oN-P4ytJZ4rFZLOVxB9D8CoarFvDypkMNihlmvAnGUQU2NZxyaALH=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2793
x-xss-protection: 0
date: Wed, 23 Nov 2022 17:27:44 GMT
expires: Sun, 06 Nov 2022 03:13:34 GMT
cache-control: public, max-age=86400, no-transform
age: 13113
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 68ab5865b415e2e421a4eaa3a206ce0e
fa492d5a66e9d07ffdc14b3d8e11f0cdc27aed87
10298e9120db56a4aeaf950d2fa25af662172358e534aa5fa6d4af8ab53ce146
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 21:06:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 23 Nov 2022 21:06:17 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d0ddc03943df46ed67afb7270e612c6a
565ab0cde0449e6988ce9624bfe328b4afe36b75
8a9752e1134733edd16727a63c1466ccbf375694e5001e7214ce437aad21d52a
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1135
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 23 Nov 2022 21:06:17 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2
34.95.218.219200 OK 0 B URL HTTP/2 romanews.com.br/wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2
IP 34.95.218.219:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/download-manager/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2 HTTP/1.1
Host: romanews.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Nov 2022 21:06:11 GMT
etag: "e1eb-628e48e5-1b94f3;br"
last-modified: Wed, 25 May 2022 15:19:01 GMT
content-type: text/css
content-length: 8903
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 23 Nov 2022 21:06:11 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/v4-shims.css
IP 172.64.133.15:0
GET /releases/v5.15.4/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:10 GMT
content-type: text/css
x-amz-id-2: dnfUGx9EFLLq/Qn2Oi6tdl0JvSOPf4xDAvZv0iQrbEo6dNmlcX5P0uHCbtRzdArwtOWgYckC0TA=
x-amz-request-id: ZPR0QG8T9S7Z4R51
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"a034d3c71bee546f625877d7932917f8"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ChcCPJfMl%2F%2BjONUQrb6L8SaJVm82PLrXsJqypEqsesRaL%2F03RSUIn%2Fkgeu8eqajZX3uiGV1CyLk5h6CyQ02%2F1zbEpHGi%2BpjLbrC4j99ZMGR2MPm3znjE4WUFr%2FDU1EIT%2B3hwPSO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ecddfe2b428873-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/iframe_api?lang=pt_BR
142.250.74.174200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api?lang=pt_BR
IP 142.250.74.174:0
GET /iframe_api?lang=pt_BR HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Wed, 23 Nov 2022 21:06:15 GMT
date: Wed, 23 Nov 2022 21:06:15 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=IDm7n7IQxT8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=agm6J5aVNL4; Domain=.youtube.com; Expires=Mon, 22-May-2023 21:06:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+454; expires=Fri, 22-Nov-2024 21:06:15 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/all.css
IP 172.64.133.15:0
GET /releases/v5.15.4/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://web-verificationrj.dns.army
Connection: keep-alive
Referer: https://web-verificationrj.dns.army/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 23 Nov 2022 21:06:10 GMT
content-type: text/css
x-amz-id-2: /zHwMGm+559PxR3XCPI+lMDhWyjrOG6XZWPj/ILN7U2N9LQf5fflzp9eFyWFWM8TQfLnz77d8Ls=
x-amz-request-id: ZPR7PK489BGWNW0A
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"ecd507b3125edc4d2a03aa6ae5d07da9"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k1s86g7G%2FXwuvddS%2BY2%2BLZmX2x%2FIVLjWYYW2%2FRCtz7%2BpKgQld%2Fwv7pQLlBypAcbJDXCW88eD3R0beoNSMnzW6ldeSMLqk%2BbDksJKgC9QP1DylQFoqPnGLiXyIVMc8cETrX%2B4G8yM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76ecddfe0af88873-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2