302 Found 0 B URL User Request GET HTTP/2 IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /eit/ HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/7.2.34
location: /
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 27 Sep 2023 14:12:30 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-94YRZRHY2Q
200 OK 79 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-94YRZRHY2Q
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (5788)
Hash 16ff915800abd0dbcf0c4e07be817196
24594efb60a88986c2b61b3eb1d4f369b9b57a00
0f1af5a0904893604bf8fd4b66b3a15566762be78436165675678a00afc9d152
GET /gtag/js?id=G-94YRZRHY2Q HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 14:12:32 GMT
expires: Wed, 27 Sep 2023 14:12:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78962
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-94YRZRHY2Q
200 OK 79 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-94YRZRHY2Q
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (5788)
Hash 16ff915800abd0dbcf0c4e07be817196
24594efb60a88986c2b61b3eb1d4f369b9b57a00
0f1af5a0904893604bf8fd4b66b3a15566762be78436165675678a00afc9d152
GET /gtag/js?id=G-94YRZRHY2Q HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 14:12:32 GMT
expires: Wed, 27 Sep 2023 14:12:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78962
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
200 OK 36 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (540)
Hash 5f0588f1369824180538afedf0af2d11
4e942e028f5aed83d673a47d217ab47c53130ade
c5c098b358930ebcc0756f042628ba0ff083a4b2c6756bf7991f2ddf46d53dff
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/style.css?ver=6.3.1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: text/css
last-modified: Thu, 15 Oct 2020 07:37:56 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 35736
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-includes/css/dist/block-library/style.min.css?ver=6.3.1
200 OK 13 kB URL GET HTTP/2 glowriters.com/wp-includes/css/dist/block-library/style.min.css?ver=6.3.1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (53449)
Hash 03c0f2128c8dd615b1691c168f1d4456
defa44bed1f35ec899cfd358ca911390bca53e67
67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3.1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: text/css
last-modified: Tue, 08 Aug 2023 22:42:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12962
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/static/css/styles.css?ver=1.1
200 OK 591 B URL GET HTTP/2 glowriters.com/static/css/styles.css?ver=1.1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash ab21ec6900d3b77662eeef03099f055c
b48a3df440ef15aedfe388389448fccb31641409
afc3081ed38854ad9e80c663351c9fe2e80d6cc580a98134d034ba82cfa6ab18
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /static/css/styles.css?ver=1.1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: text/css
last-modified: Tue, 16 Jun 2020 11:30:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 591
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 4.7 kB URL GET HTTP/2 glowriters.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: application/javascript
last-modified: Tue, 08 Aug 2023 22:42:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4678
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.19
200 OK 3.0 kB URL GET HTTP/2 glowriters.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.19
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1392)
Hash 6339ec10a9afe65744730af482be76ac
e1a99d02176008b569e15619442d1279a455265e
bc7269d642327a2174736fc2b0231d1626e6fff1ca2f57e19c59835e73febe85
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.19 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: application/javascript
last-modified: Thu, 24 Aug 2023 10:42:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3003
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
200 OK 30 kB URL GET HTTP/2 glowriters.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: application/javascript
last-modified: Tue, 08 Aug 2023 22:42:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29712
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/static/images/accept.svg
200 OK 5.3 kB URL GET HTTP/2 glowriters.com/static/images/accept.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (15181), with no line terminators
Hash 5a8215df2439fffa7aa1166f772a12e6
4097fa9bab6a6791e04a55f83a2005aab6ded0cd
59b65e3a3111db6adc6ca4af1c5f0edb19e436deab99d796a83171e8d7a2cefb
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /static/images/accept.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: image/svg+xml
last-modified: Mon, 20 Mar 2023 10:43:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5268
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/static/images/dmca.svg
200 OK 1.5 kB URL GET HTTP/2 glowriters.com/static/images/dmca.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3705), with no line terminators
Hash 8d50fe5e1f779161b22da5ca4dddc5e7
2c88ce036f44f9cd652fc9fcacfa5466917fe26c
638b9252e3ada798155ae6f88b9708f5791b94d4a30d2720f7e90eba3aed29f5
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /static/images/dmca.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: image/svg+xml
last-modified: Mon, 20 Mar 2023 10:43:40 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1534
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/uploads/2022/06/site-logo-Made-with-PosterMyWall-1.png
200 OK 52 kB URL GET HTTP/2 glowriters.com/wp-content/uploads/2022/06/site-logo-Made-with-PosterMyWall-1.png
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 114dd83d125987d9b359bf216607992c
75af7103ca96d63ab73fe77754d5311217136736
e853a2112eb7020b6716db321dd34d178db81c9c22fff8a969f620efe9e5229c
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/06/site-logo-Made-with-PosterMyWall-1.png HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: image/png
last-modified: Fri, 24 Jun 2022 11:18:53 GMT
accept-ranges: bytes
content-length: 51940
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/uploads/2020/10/seo_home_woman.jpg
200 OK 20 kB URL GET HTTP/2 glowriters.com/wp-content/uploads/2020/10/seo_home_woman.jpg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 558x450, components 3\012- data
Hash 11f7dcd5b213f98655a86313ae85e48c
ab8e32944e34141fb6082443202c09d635877e91
240c05f032f9299a9cf8b3161203c748f49d77d5499f43a8a6b791779bd4622f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2020/10/seo_home_woman.jpg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:32 GMT
content-type: image/jpeg
last-modified: Thu, 15 Oct 2020 07:20:37 GMT
accept-ranges: bytes
content-length: 20030
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/js/main.js?ver=1.0
200 OK 1.2 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/js/main.js?ver=1.0
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash fc18bf354f7431aed9d78d8435d8ef59
4368a9962b8b16286ca8815cec0e23dd805e8817
ac3f82b60708020bbce4619ecbb5545210409e7a09577149d2f47e3db4cc901b
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/js/main.js?ver=1.0 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: application/javascript
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1218
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/js/scripts.js
200 OK 741 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/js/scripts.js
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash 43b2ede819248af7074ab4fed1a55b5e
f4c5c12ead20d9702c448f1bf805fafeb2d61aeb
9353a4be16aa66bce72c28df5efedea3602bd5f4bd16c3b85171f1b3718aab96
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/js/scripts.js HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: application/javascript
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 741
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/plugins/cta-widgets/css/widget.css?ver=6.3.1
200 OK 783 B URL GET HTTP/2 glowriters.com/wp-content/plugins/cta-widgets/css/widget.css?ver=6.3.1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with CRLF line terminators
Hash 26d8cacde6c7089c55b2be3966152797
7a16fb856784f20ef327c812f6e3adb0ef0b55ab
db9a917911cb908d2eab0129a11054f6359b3552f2d1fa3dd41617d48e14d2a9
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/cta-widgets/css/widget.css?ver=6.3.1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: text/css
last-modified: Thu, 09 Jan 2020 13:21:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 783
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/js/jquery.min-3.2.1.js?ver=1.0
200 OK 30 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/js/jquery.min-3.2.1.js?ver=1.0
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (32058)
Hash 0998db7092813687f6834cf36d19f9e6
2c47cc745ea72cee97d9d60e521b17b8d4b74b75
c5361da6c81607dd83fbd2b5f539539b00dc135d909acf3c9cde68728d3bfd60
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/js/jquery.min-3.2.1.js?ver=1.0 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: application/javascript
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29484
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 22820, version 1.0\012- data
Hash 7fbbfd1610770d594aef639cfefdd0b0
e8e478141c6bea23ed8f1b52b7062eebbafb29f0
ead13ccfbdea5462c3af37aa6ae04e64ed65a31c33f76e46da5e86ec85c52064
GET /s/lato/v14/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 05:14:32 GMT
expires: Fri, 20 Sep 2024 05:14:32 GMT
cache-control: public, max-age=31536000
age: 550681
last-modified: Wed, 11 Oct 2017 18:24:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh50XSwiPGQ.woff2
200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 22352, version 1.0\012- data
Hash f2de2c6ec69b0c11f1bc44c5348c2f35
35380c04729ff2041e192756bea3052e7de2c5d0
abde463ef27458713d91e9be883fdd389298ef57411b601cab5f66db609c508d
GET /s/lato/v14/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:50:23 GMT
expires: Sat, 21 Sep 2024 10:50:23 GMT
cache-control: public, max-age=31536000
age: 444130
last-modified: Wed, 11 Oct 2017 18:24:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/sprite.svg
200 OK 8.4 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/sprite.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (30039), with no line terminators
Hash 5684f184d4f4384a99e7cc5d63c9ea2f
de536df8bec2c457668445bce678d8693fb33676
e36e4a8713c3424439193238e7ec52d668e9452b07d1c8e35490d30939d78938
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/sprite.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8370
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v14/S6uyw4BMUTPHjx4wXg.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v14/S6uyw4BMUTPHjx4wXg.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 23316, version 1.0\012- data
Hash f1a4a058fbba1e35a406188ae7eddaf8
e5e25503a9a6976e3ac4b1893a767c8a7a72eba0
1670565574aab8aa0a287a4cd8f49cf0d8b0959ebe344f90ca8af696ede9c23b
GET /s/lato/v14/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:24:41 GMT
expires: Sun, 22 Sep 2024 13:24:41 GMT
cache-control: public, max-age=31536000
age: 348472
last-modified: Wed, 11 Oct 2017 18:23:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/paper-format-1.svg
200 OK 534 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/paper-format-1.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash a1c6e61d83ef181bb6831a200b5e8290
beb271f467f0592e31b78b0a399c8191b0e25485
24b382a0a0d3d98834c6338ef7f6e8f7534d4d0acb6c18a2d546b8a6a3fad428
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/paper-format-1.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 534
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/paper-format-3.svg
200 OK 535 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/paper-format-3.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 88514a575d27fc0bde19f9dbbe62c19b
a72452805118ad23c431cd1784dfcfb047da8ebd
8c66b872eb6592d42f66a7481dcec529259bf6d820d9cd6e42291e7f695a24a5
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/paper-format-3.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 535
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/paper-format-2.svg
200 OK 749 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/paper-format-2.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash a083c6d2627e65df94cb880c24ef6759
297dab295e195479234a254b3cd15c6e4847b3aa
945779130d524a5e22b3ab5823df100bb6334223298bac6ad9a13d7d8398afaf
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/paper-format-2.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 749
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.12.1/css/all.css
200 OK 13 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.12.1/css/all.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT
File type ASCII text, with very long lines (57147)
Hash 2a0e11a7655cf7af50d9152727c134ef
136e6626dc83d228b50416249fe05864ab065e40
9a680b90260b5106d79f4075491ab31daafa7429eff686453c40b58357309649
GET /releases/v5.12.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:12:32 GMT
content-type: text/css
x-amz-id-2: 4QGHflGvhSdj7yCk3AlcEgpJkFz6vCqtYrlZDgt7UojujbIm4zIE9EJiBlG46lPocuhPV97OMX4=
x-amz-request-id: J41QSTKETBKCGPEP
last-modified: Wed, 30 Jun 2021 15:38:16 GMT
etag: W/"2a0e11a7655cf7af50d9152727c134ef"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1418843
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CMmoZG8MdO2W0ZYaTd2zjlfUMRFCemlrfIMKvjBwqCmG4Tl2qSdc1ST12qjcZkml1G5KNnLs3d1ENy2Lqzo1zA0imA0p2OqH71WyquN8PBaVj73e%2BEnUUnyhtaaquUcWNmgKbV35"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d45799ae37063c-CDG
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees1.svg
200 OK 1.1 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees1.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2844), with no line terminators
Hash 75ed2086543169ba605bd80aff1a1d38
fb5a61107daba9ed357e8636754f2e185d9b12aa
9fec9f46419065d7bbddfdf288311349a5802363f3fcf69a031874aba117c521
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/guarantees/guarantees1.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1142
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees2.svg
200 OK 494 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees2.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1240), with no line terminators
Hash 6957fc816ea6be45d123bd16c52f0343
ec1d5d2df4c4213bf8358bd7a4d3545d0bf36e69
598112d6ac5db487481a5f801cd13347b1d7452c17866485b7c8ce83cd2b2b78
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/guarantees/guarantees2.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 494
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees3.svg
200 OK 768 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees3.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1689), with no line terminators
Hash e7d41d9fa0b1c98233917a537b46b44b
ae943e2cb255ba5de88665a574e18a401a94fcd2
87175636d0c3812cd0027fdeec035b6cce578590ae0c269c795048b9fbccecb3
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/guarantees/guarantees3.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 768
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees4.svg
200 OK 1.0 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees4.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2424), with no line terminators
Hash 2c35b25b1a81c93c92270ef2bad3cb5c
973ab7d8562b835e4c914a73f0e7c396a2b33561
7ae334c1a473143df4a69ec5496480c9c7e6abfa37bc03fc442e9232716c27c7
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/guarantees/guarantees4.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1044
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees5.svg
200 OK 527 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/guarantees/guarantees5.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1275), with no line terminators
Hash 46b0fd74f4086358651ce1f6d2b7ef24
d3bc80c1a1051f0cc276b9387675f681d4f5fc4f
ef566c0e9fe279f9a8c9d6fca4063140693be1374c2501bc2c78d17c1f571a86
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/guarantees/guarantees5.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 527
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.12.1/webfonts/fa-brands-400.woff2
200 OK 76 kB URL GET HTTP/3 use.fontawesome.com/releases/v5.12.1/webfonts/fa-brands-400.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 76548, version 330.-16188\012- data
Hash 067595ad77ecc0db9c81c8905a7eef32
3a175545f961094f3614f208f2166187b642355f
089630244600f33230010f5e04c67419ec642c5228540adb42e3fe92c631e6bf
GET /releases/v5.12.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:34 GMT
content-type: font/woff2
content-length: 76548
x-amz-id-2: vTxh8lJbnFMyHytK1RTUiAf45aPmmqtcieDbbZ9k15y3fa5X7n3RJjo8q3iadu2WSjPji8GO3oo=
x-amz-request-id: FRNBWVBZH6EJXHD7
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:38:37 GMT
etag: "067595ad77ecc0db9c81c8905a7eef32"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 98606
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U5FhxRs6oEXEfpT%2B9Yn%2Fz9fmI4mWCZ7rdnDs2pGWoc35a5ynElB4ogKHKGi3en71pwk5mlzk2buQQxayXwz7T7OWYheOKhR6Wr%2Fx3uDHwofRlBmNxjkkyBEIQQwhP6OH3SYEd%2BBi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d457a07bdf23c4-LHR
alt-svc: h3=":443"; ma=86400
glowriters.com/wp-content/themes/zzero/assets/images/success-illustration.svg
200 OK 9.7 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/success-illustration.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3774198036e91364e3c7b750e47c4ecc
6563d7cefd8e667fa59c660e72b6e22084bfe6ce
dd3c88e2d9c68d0ff0c6433c141470091fa9dd903856e34bcd9fd6ac375e68a2
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/success-illustration.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:34 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9732
date: Wed, 27 Sep 2023 14:12:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/home-seo-title-2.svg
200 OK 239 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/home-seo-title-2.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (486), with no line terminators
Hash 27d033a4c895b8f94495ab43cd74a490
8471cd6f3065e048b424bad7f4790ff3157e9854
6183ca9a98d4630f7fd3966ba3099a7aa1d7458143ca9ff2f1edf2ee8c38d169
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/home-seo-title-2.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:34 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 239
date: Wed, 27 Sep 2023 14:12:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/home-seo-title-1.svg
200 OK 248 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/home-seo-title-1.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (476), with no line terminators
Hash b2458674e7dd6b14caa3906e908a93e0
6ab909221ff124c097357492774e6a53ed61f29e
4bd786205ee2b561624b682e105d074e0b8c4f6c13f31ecc10ccd37bd933d026
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/home-seo-title-1.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:34 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 248
date: Wed, 27 Sep 2023 14:12:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/support.svg
200 OK 264 B URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/support.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (732), with no line terminators
Hash a8729643a038a0722cdf31618289e0a0
8dcd06a9a006e8e47e0e17a16950e3ffdb4a789c
cf2675307c2200ad2cf76a8cfe600a2d720357ef2537d5bcb439da48fe96923c
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/support.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:34 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 264
date: Wed, 27 Sep 2023 14:12:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/js/calc.js
200 OK 9.9 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/js/calc.js
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash 242fa2b937668ae9dfb72e6f362a0ac4
eff3f67c3e2956c15bdf93cfa7aa57d6b8a637b2
4be80d8a311028459bcc9f41a8f63d7e7fe378c5cb06558fea2f139558a838eb
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/js/calc.js HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:34 GMT
content-type: application/javascript
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9897
date: Wed, 27 Sep 2023 14:12:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v14/S6uyw4BMUTPHjx4wXg.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v14/S6uyw4BMUTPHjx4wXg.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 23316, version 1.0\012- data
Hash f1a4a058fbba1e35a406188ae7eddaf8
e5e25503a9a6976e3ac4b1893a767c8a7a72eba0
1670565574aab8aa0a287a4cd8f49cf0d8b0959ebe344f90ca8af696ede9c23b
GET /s/lato/v14/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:24:41 GMT
expires: Sun, 22 Sep 2024 13:24:41 GMT
cache-control: public, max-age=31536000
age: 348473
last-modified: Wed, 11 Oct 2017 18:23:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 22820, version 1.0\012- data
Hash 7fbbfd1610770d594aef639cfefdd0b0
e8e478141c6bea23ed8f1b52b7062eebbafb29f0
ead13ccfbdea5462c3af37aa6ae04e64ed65a31c33f76e46da5e86ec85c52064
GET /s/lato/v14/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 05:14:32 GMT
expires: Fri, 20 Sep 2024 05:14:32 GMT
cache-control: public, max-age=31536000
age: 550682
last-modified: Wed, 11 Oct 2017 18:24:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh50XSwiPGQ.woff2
200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v14/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 22352, version 1.0\012- data
Hash f2de2c6ec69b0c11f1bc44c5348c2f35
35380c04729ff2041e192756bea3052e7de2c5d0
abde463ef27458713d91e9be883fdd389298ef57411b601cab5f66db609c508d
GET /s/lato/v14/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:50:23 GMT
expires: Sat, 21 Sep 2024 10:50:23 GMT
cache-control: public, max-age=31536000
age: 444131
last-modified: Wed, 11 Oct 2017 18:24:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=
200 OK 10 kB URL GET HTTP/3 embed.tawk.to/_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728=
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 10520, version 1.0\012- data
Hash 054b3b66812d0a4b87ffc6776f0a42f1
683eb11f2439b9edc3290899fb47806166b5182e
f4d4fcb3cdd9f021bca50bedb83de05b77fd23b3c98ad36b103fea8c0744ea71
GET /_s/v4/assets/fonts/tawk-font-icon-2.woff2?55755728= HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://embed.tawk.to/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: font/woff2
content-length: 10520
last-modified: Sat, 22 May 2021 07:25:13 GMT
etag: "054b3b66812d0a4b87ffc6776f0a42f1"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98604
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ae5bd91c0a-OSL
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-4fe9d5dd.js
200 OK 1.6 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-4fe9d5dd.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (906), with no line terminators
Hash 1c5ecf371149feca23bd895ba9dfec4d
6f6213ae4c63d959441572d232f0425467ed05de
fb193c2bcf1a14030cea8d72baa20ab7b1cf88f9e90adb31895279beedf6bf84
GET /_s/v4/app/65040be8d34/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"1c5ecf371149feca23bd895ba9dfec4d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059156
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac7be81c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
glowriters.com/wp-content/uploads/2022/06/cropped-Copy-of-Modern-School-logo-Made-with-PosterMyWall-1-192x192.png
200 OK 15 kB URL GET HTTP/2 glowriters.com/wp-content/uploads/2022/06/cropped-Copy-of-Modern-School-logo-Made-with-PosterMyWall-1-192x192.png
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 15592727423bf40dbb3931e7e934b396
fd961423833d1e01a4ea5cf589dde45b1511f5b6
2a718e2d9ad0656d6a80e1d4cf3723fb3e51c4c4c25ecaf64891f8de6465f2ef
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/06/cropped-Copy-of-Modern-School-logo-Made-with-PosterMyWall-1-192x192.png HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953; TawkConnectionTime=0; twk_idm_key=QUpitkn_TShCY8gzuzb15; PHPSESSID=4c545f3270067dc317b586690eb23ec1; twk_uuid_5e2eefaddaaca76c6fd00f61=%7B%22uuid%22%3A%221.7xY7ZpjrE1lGJPgZXy2k8IhnvmTSE9XitcWjyNHG3U5KATCg42PlasIZhxN8VDTSMzUXxjZyvfaMP7v0JR1G5qGYOapF7Bgn9o5PL1RHhqccKHbEPEsFfGlX%22%2C%22version%22%3A3%2C%22domain%22%3A%22glowriters.com%22%2C%22ts%22%3A1695823956159%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:36 GMT
content-type: image/png
last-modified: Fri, 24 Jun 2022 11:22:35 GMT
accept-ranges: bytes
content-length: 15029
date: Wed, 27 Sep 2023 14:12:36 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
200 OK 41 kB URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (32014)
Hash 7bb7aac0cac89a90304af1c72eb4f50d
729f6f8ca5787d89743b0ed7eb27fd76406bf985
f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Sep 2023 14:12:36 GMT
age: 15246849
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
200 OK 41 kB URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (32014)
Hash 7bb7aac0cac89a90304af1c72eb4f50d
729f6f8ca5787d89743b0ed7eb27fd76406bf985
f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Sep 2023 14:12:36 GMT
age: 15246849
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 41275
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=5e2eefaddaaca76c6fd00f61&widgetId=default&sv=undefined
200 OK 13 kB URL GET HTTP/3 va.tawk.to/v1/widget-settings?propertyId=5e2eefaddaaca76c6fd00f61&widgetId=default&sv=undefined
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (2485), with no line terminators
Hash 75592cbd8942ed472f2c8a25d6d59c45
0d28b87d3113d84c40bb125af9d21ef79bcf8c29
81036f1259762f19d7469cf66d0bc3b3f8b6e394d7113c1cc6c8ce07fcbddfc9
GET /v1/widget-settings?propertyId=5e2eefaddaaca76c6fd00f61&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowriters.com/
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-jv3x
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-34-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a819ea1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
glowriters.com/api/get_calculator/?siteId=24&calculatorType=DefaultCalculator&format=json&options[deafault][deadlinesDefault][]=66537&options[deafault][deadlinesDefault][]=66555&options[deafault][deadlinesDefault][]=66547&options[deafault][deadlinesDefault][]=66565&options[deafault][deadlinesDefault][]=66881&options[deafault][academicLevelDefault]=2&options[deafault][paperTypesDefault]=2&options[deafault][pagesDefault]=1
200 OK 12 kB URL GET HTTP/2 glowriters.com/api/get_calculator/?siteId=24&calculatorType=DefaultCalculator&format=json&options[deafault][deadlinesDefault][]=66537&options[deafault][deadlinesDefault][]=66555&options[deafault][deadlinesDefault][]=66547&options[deafault][deadlinesDefault][]=66565&options[deafault][deadlinesDefault][]=66881&options[deafault][academicLevelDefault]=2&options[deafault][paperTypesDefault]=2&options[deafault][pagesDefault]=1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /api/get_calculator/?siteId=24&calculatorType=DefaultCalculator&format=json&options[deafault][deadlinesDefault][]=66537&options[deafault][deadlinesDefault][]=66555&options[deafault][deadlinesDefault][]=66547&options[deafault][deadlinesDefault][]=66565&options[deafault][deadlinesDefault][]=66881&options[deafault][academicLevelDefault]=2&options[deafault][paperTypesDefault]=2&options[deafault][pagesDefault]=1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=88cbd69eb297633929162994cd8f092e; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Authorization, Cache-Control, Content-Type, Access-Control-Allow-Origin
access-control-allow-credentials: true
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS,PATCH
date: Wed, 27 Sep 2023 14:12:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/languages/en.js
200 OK 17 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/languages/en.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with CRLF, LF line terminators
Hash 585ba00b2c167b90c210161454f843b5
89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2
e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0
GET /_s/v4/app/65040be8d34/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:52 GMT
etag: W/"585ba00b2c167b90c210161454f843b5"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457abfbac1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/v1/session/start
200 OK 0 B URL OPTIONS HTTP/3 va.tawk.to/v1/session/start
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://glowriters.com/
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
x-served-by: visitor-application-preemptive-34nk
access-control-allow-origin: https://glowriters.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a85a021c0a-OSL
alt-svc: h3=":443"; ma=86400
va.tawk.to/log-performance/v3
200 OK 5 B URL POST HTTP/3 va.tawk.to/log-performance/v3
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 38a8a3e3b4b6a6e4f295b2e0f899b1f0
474f5fac3d23afbaf16c5a31c98dfcd956e4c186
7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615
POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowriters.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-7wfs
access-control-allow-origin: https://glowriters.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457b23f421c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-vendors.js
200 OK 214 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-vendors.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Size 214 kB (214003 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/65040be8d34/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"c7d717342f2392436e14ee5e894cff01"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a6db6c568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
glowriters.com/api/get_calculator/?siteId=24&calculatorType=ShortCalculator&format=json&options[deafault][deadlinesDefault][]=66537&options[deafault][deadlinesDefault][]=66555&options[deafault][deadlinesDefault][]=66547&options[deafault][deadlinesDefault][]=66565&options[deafault][deadlinesDefault][]=66881&options[deafault][academicLevelDefault]=2&options[deafault][paperTypesDefault]=2&options[deafault][pagesDefault]=1
200 OK 12 kB URL GET HTTP/2 glowriters.com/api/get_calculator/?siteId=24&calculatorType=ShortCalculator&format=json&options[deafault][deadlinesDefault][]=66537&options[deafault][deadlinesDefault][]=66555&options[deafault][deadlinesDefault][]=66547&options[deafault][deadlinesDefault][]=66565&options[deafault][deadlinesDefault][]=66881&options[deafault][academicLevelDefault]=2&options[deafault][paperTypesDefault]=2&options[deafault][pagesDefault]=1
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /api/get_calculator/?siteId=24&calculatorType=ShortCalculator&format=json&options[deafault][deadlinesDefault][]=66537&options[deafault][deadlinesDefault][]=66555&options[deafault][deadlinesDefault][]=66547&options[deafault][deadlinesDefault][]=66565&options[deafault][deadlinesDefault][]=66881&options[deafault][academicLevelDefault]=2&options[deafault][paperTypesDefault]=2&options[deafault][pagesDefault]=1 HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=4c545f3270067dc317b586690eb23ec1; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Authorization, Cache-Control, Content-Type, Access-Control-Allow-Origin
access-control-allow-credentials: true
access-control-allow-methods: GET,PUT,POST,DELETE,OPTIONS,PATCH
date: Wed, 27 Sep 2023 14:12:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-runtime.js
200 OK 2.3 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-runtime.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2349), with no line terminators
Hash e4cd1ad0cc3bd80cf457e37fe7f0ed0b
9965c319b60d6c4825180dd4d1337a5e45f3a034
0c97c2d7a8c44ec537d3fc482e81386a5bfe8d1a4730ff45cd9ce011811e2196
GET /_s/v4/app/65040be8d34/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"950ed0d9394df6df8ab8e30ac9b0cdcc"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a6e9a61c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
vsa56.tawk.to/s/?k=65143853a2bc5fe2b6c6c1b5&cver=0&pop=false&asver=11336&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZTJlZWZhZGRhYWNhNzZjNmZkMDBmNjEiLCJ2aWQiOiI1ZTJlZWZhZGRhYWNhNzZjNmZkMDBmNjEta1BXREd2eXljc3cwU1lsNnVVWnpmIiwic2lkIjoiNjUxNDM4NTNhMmJjNWZlMmI2YzZjMWI1IiwiaWF0IjoxNjk1ODIzOTU1LCJleHAiOjE2OTU4MjU3NTUsImp0aSI6Ing5V056aUkwd1Bab2xLYnFBdzVCNSJ9.kveUCrGYglza8FUyF6wZRy8fuFhLe3yjI6mzeoAZYn3cEG3524viaH6GeZ9ZeaJfXWMQzNWmyaaAEeot2qRI9w&EIO=3&transport=websocket&__t=OhM_0ZE
101 Switching Protocols 0 B URL GET HTTP/1.1 vsa56.tawk.to/s/?k=65143853a2bc5fe2b6c6c1b5&cver=0&pop=false&asver=11336&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZTJlZWZhZGRhYWNhNzZjNmZkMDBmNjEiLCJ2aWQiOiI1ZTJlZWZhZGRhYWNhNzZjNmZkMDBmNjEta1BXREd2eXljc3cwU1lsNnVVWnpmIiwic2lkIjoiNjUxNDM4NTNhMmJjNWZlMmI2YzZjMWI1IiwiaWF0IjoxNjk1ODIzOTU1LCJleHAiOjE2OTU4MjU3NTUsImp0aSI6Ing5V056aUkwd1Bab2xLYnFBdzVCNSJ9.kveUCrGYglza8FUyF6wZRy8fuFhLe3yjI6mzeoAZYn3cEG3524viaH6GeZ9ZeaJfXWMQzNWmyaaAEeot2qRI9w&EIO=3&transport=websocket&__t=OhM_0ZE
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=65143853a2bc5fe2b6c6c1b5&cver=0&pop=false&asver=11336&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZTJlZWZhZGRhYWNhNzZjNmZkMDBmNjEiLCJ2aWQiOiI1ZTJlZWZhZGRhYWNhNzZjNmZkMDBmNjEta1BXREd2eXljc3cwU1lsNnVVWnpmIiwic2lkIjoiNjUxNDM4NTNhMmJjNWZlMmI2YzZjMWI1IiwiaWF0IjoxNjk1ODIzOTU1LCJleHAiOjE2OTU4MjU3NTUsImp0aSI6Ing5V056aUkwd1Bab2xLYnFBdzVCNSJ9.kveUCrGYglza8FUyF6wZRy8fuFhLe3yjI6mzeoAZYn3cEG3524viaH6GeZ9ZeaJfXWMQzNWmyaaAEeot2qRI9w&EIO=3&transport=websocket&__t=OhM_0ZE HTTP/1.1
Host: vsa56.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://glowriters.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cxnmLNF7qN+xt082X5S31g==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 27 Sep 2023 14:12:36 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: ZtOdE8ii1pMS3mequEskSZGoy6s=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 80d457ad49570b41-OSL
alt-svc: h3=":443"; ma=86400
200 OK 91 kB URL User Request GET HTTP/2 IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
swift-performance: MISS
content-type: text/html; charset=UTF-8
link: <https://glowriters.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 14:12:32 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
glowriters.com/wp-content/themes/zzero/assets/images/paper-format-4.svg
200 OK 1.6 kB URL GET HTTP/2 glowriters.com/wp-content/themes/zzero/assets/images/paper-format-4.svg
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1672), with no line terminators
Hash 905e4c58265a76cf9dd5087037251892
8f3561cb38e7df8c884c6bbf25cc60542ed842c4
1f9c658e379ddbfe46cc7bdf556a85e17e01340a2b73425784e3f6d4e5515879
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/zzero/assets/images/paper-format-4.svg HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/wp-content/themes/zzero/style.css?ver=6.3.1
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:12:33 GMT
content-type: image/svg+xml
last-modified: Tue, 07 Jul 2020 05:47:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 633
date: Wed, 27 Sep 2023 14:12:33 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-app.js
200 OK 151 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-app.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c
GET /_s/v4/app/65040be8d34/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a6e9a81c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/v1/session/start
200 OK 994 B URL POST HTTP/3 va.tawk.to/v1/session/start
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1078), with no line terminators
Hash e9badec9ad0c761bcdc742dd94877d3e
4d1d06eebd1eeeffc1cff2b0d2c32542fe57d1fd
b739f35fe8fb3f3ce02db7164f748fde0148fddfc344523d202780fb85a54c4a
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowriters.com/
Content-Type: application/json; charset=utf-8
Content-Length: 174
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-4fz8
access-control-allow-origin: https://glowriters.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a95a5b1c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-696bc286.js
200 OK 18 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-696bc286.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (17930), with no line terminators
Hash b6c6ad75eaaacd8a246d888f41b7257b
68c19fa79fb9e6ff54890f8c71c799487cb1fe87
2295689566dda4317f8b85878c0bc7f8225ed4b7030b721919fd97dd7ff24455
GET /_s/v4/app/65040be8d34/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"b6c6ad75eaaacd8a246d888f41b7257b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac3bc71c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/css/message-preview.css
200 OK 38 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/css/message-preview.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (38227), with no line terminators
Hash e19649315a1ba9a5b420e751ee053b6e
5c6f3f3034efb83d3fd20f1aeb2b04a22b826512
98f3004edce9989eb1410055c57772a2be9c7810ab5811261fff0487cd4645b4
GET /_s/v4/app/65040be8d34/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38360
access-control-allow-origin: *
etag: W/"03fb642386334234f457befc22111bea"
last-modified: Fri, 15 Sep 2023 07:48:50 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ae3cfb1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-main.js
200 OK 121 B URL GET HTTP/2 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-main.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 3b41342f7e3be590563e8e3b5ff770c7
c9ca54d23ea78b320f080b76e22bb6b4e704d55f
ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43
GET /_s/v4/app/65040be8d34/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a6db69568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-2d0b9454.js
200 OK 535 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-2d0b9454.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (557), with no line terminators
Hash 3f4a6312d60391bda06462d7321ffcdc
9f09295297840a36d2ac95344b39b0af1a729f82
28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1
GET /_s/v4/app/65040be8d34/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"c506281367048d4a134c9affbc68c8c6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac7be91c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg
200 OK 22 kB URL GET HTTP/3 embed.tawk.to/_s/v4/assets/images/attention-grabbers/168-r-br.svg
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (22356), with no line terminators
Hash f66e029841759471d2ec78b86760dca7
d9db67738984efee3dd63cb144759ac0521c7dda
5108ef00c54e1f6ce859852834135447457cf19ee19aa7b0fb55b64b425cb526
GET /_s/v4/assets/images/attention-grabbers/168-r-br.svg HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: image/svg+xml
last-modified: Sat, 22 May 2021 07:25:19 GMT
etag: W/"f66e029841759471d2ec78b86760dca7"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: MISS
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 2336606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ae4d051c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
glowriters.com/
200 OK 91 kB IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-merge-assets: true
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
swift-performance: MISS
content-type: text/html; charset=UTF-8
link: <https://glowriters.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 14:12:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
embed.tawk.to/5e2eefaddaaca76c6fd00f61/default
200 OK 2.1 kB URL GET HTTP/2 embed.tawk.to/5e2eefaddaaca76c6fd00f61/default
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2308), with no line terminators
Hash c046642f8421050dd921ea58946cf1ee
6e5bede6487334d4de7865cbde31bc29da448346
86e2ba775b57784b3eccbb4e9aa6f974045bfcedb604bea010c27a99d76a25fe
GET /5e2eefaddaaca76c6fd00f61/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:12:34 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-65040be8d34"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a2e8a0568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-vendor.js
200 OK 83 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-vendor.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/65040be8d34/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"ce3014b09c6dfbd6f92bc585fd840580"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a6db6a568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-2d0b383d.js
200 OK 689 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-2d0b383d.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (715), with no line terminators
Hash 8489b26d8834814d4c645e094bfb1c7f
6b3eba11e5a67137295b00f316698a3e12da1d66
0e3b1c1a3da2e19c8918864752042eaa06885730a0bdd7cd60ee519cfc531412
GET /_s/v4/app/65040be8d34/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"a6432972b93f7d0476635e7ac224d718"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac4bce1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-2c78ba82.js
200 OK 7.8 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-2c78ba82.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (8431), with no line terminators
Hash d53376d702ce42cdf0312ce6e84165ed
544c5e8c34a39661b1bcc1c73f8644e7b1b9a4c5
da592161b7b1fadd658f1a0ca407f52285cd08fc6fd1b48dd8d84fbab6d532ba
GET /_s/v4/app/65040be8d34/js/twk-chunk-2c78ba82.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"298b9a84c80ec4290468c5363a5874cc"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac3bc41c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-07cad36d.js
200 OK 95 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-07cad36d.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 296002b98d5ff229143022fe32e18c63
87af23118ad0656fc79c55f9681daff3d9ae5efc
68bcbbae7c57a53b0f7ae2173d3a237a5e1c4d7cf2d93ca168a48579602a8226
GET /_s/v4/app/65040be8d34/js/twk-chunk-07cad36d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"296002b98d5ff229143022fe32e18c63"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059156
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac7bed1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/log-performance/v3
200 OK 0 B URL OPTIONS HTTP/3 va.tawk.to/log-performance/v3
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://glowriters.com/
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
x-served-by: visitor-application-preemptive-4q8z
access-control-allow-origin: https://glowriters.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457b13ec01c12-OSL
alt-svc: h3=":443"; ma=86400
glowriters.com/page/2/
0 B IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /page/2/ HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-48f46bef.js
200 OK 20 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-48f46bef.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (19830), with no line terminators
Hash 93a39d638484db9e64d39fd27cd99a61
53e752cb5b417717e07995ac4b09aa0012c84ff7
79dd531c5f91a1f17b61df5699793c86398596d4cc59ab2ea755055447fff10c
GET /_s/v4/app/65040be8d34/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"93a39d638484db9e64d39fd27cd99a61"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac6be21c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-f1596d96.js
200 OK 11 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-f1596d96.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (10994), with no line terminators
Hash 57604156dedbf84066e419530249f57d
2186c84e8384de6c01c965d035fc1635253a1f27
73b34b5bf4923d49928661fca4b4b3ce11b919c677a75e5c3212499c5c6d461c
GET /_s/v4/app/65040be8d34/js/twk-chunk-f1596d96.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"57604156dedbf84066e419530249f57d"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 1059149
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ac3bcb1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/css/min-widget.css
200 OK 25 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/css/min-widget.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24751), with no line terminators
Hash d4f9ad34fae3ba64cbc48057dc47e968
f8d0d55dc6e9b5d53f74b0b8bfc5e2edbdb0618d
2b5b9f68ace12b789b1371204754547021dcbf3e9df630e7e22b49ee56e05b8c
GET /_s/v4/app/65040be8d34/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24831
access-control-allow-origin: *
etag: W/"5742a34aaab2a5983c7c11cdeef1c0ee"
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1059157
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ad2c4e1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
glowriters.com/wp-content/uploads/2022/06/cropped-Copy-of-Modern-School-logo-Made-with-PosterMyWall-1-32x32.png
200 OK 1.2 kB URL GET HTTP/2 glowriters.com/wp-content/uploads/2022/06/cropped-Copy-of-Modern-School-logo-Made-with-PosterMyWall-1-32x32.png
IP
Certificate IssuerSectigo Limited
Subjectglowriters.com
Fingerprint4E:F9:98:CB:C2:C1:AA:AF:AE:1A:CC:91:E4:90:EA:A2:CE:67:A9:B7
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash c5fcdd2c96d4b19c3273aeb666fbfc8b
5f2bf2e91d293863d470f2895969fcf14fc83f60
7d562836509bd785cb477b6a1310a37f7fb239f2922c8d5580679dfc82747ce6
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/06/cropped-Copy-of-Modern-School-logo-Made-with-PosterMyWall-1-32x32.png HTTP/1.1
Host: glowriters.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Cookie: _ga_94YRZRHY2Q=GS1.1.1695823953.1.1.1695823953.0.0.0; _ga=GA1.1.179139019.1695823953; TawkConnectionTime=0; twk_idm_key=QUpitkn_TShCY8gzuzb15; PHPSESSID=4c545f3270067dc317b586690eb23ec1; twk_uuid_5e2eefaddaaca76c6fd00f61=%7B%22uuid%22%3A%221.7xY7ZpjrE1lGJPgZXy2k8IhnvmTSE9XitcWjyNHG3U5KATCg42PlasIZhxN8VDTSMzUXxjZyvfaMP7v0JR1G5qGYOapF7Bgn9o5PL1RHhqccKHbEPEsFfGlX%22%2C%22version%22%3A3%2C%22domain%22%3A%22glowriters.com%22%2C%22ts%22%3A1695823956159%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:12:36 GMT
content-type: image/png
last-modified: Fri, 24 Jun 2022 11:22:36 GMT
accept-ranges: bytes
content-length: 1205
date: Wed, 27 Sep 2023 14:12:36 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/65040be8d34/css/bubble-widget.css
200 OK 14 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/css/bubble-widget.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (13521), with no line terminators
Hash 950518e32fd92957181f766f08d3cf98
9fe20c86b818d3576e9d70e6ed091964cb8b7427
2f56f47d64037d5aa3a96b50c840580e5549fee6f9fafff8af3d1821d189fa5c
GET /_s/v4/app/65040be8d34/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Fri, 15 Sep 2023 07:48:50 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1059150
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ae0cd91c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/css/max-widget.css
200 OK 75 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/65040be8d34/css/max-widget.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash de53778cd479844f5fbb1b4fdeb04cb0
6043e67848d97947594855e55bc955dfcec5cc48
0184fbee1d098b9d08dd83c0a45b9a053ccee598adf89615c3931c06dca09c39
GET /_s/v4/app/65040be8d34/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:12:36 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=74869
access-control-allow-origin: *
etag: W/"e403409940fa900260225b2e7b303010"
last-modified: Fri, 15 Sep 2023 07:48:50 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 591644
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457ae4cfe1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-common.js
200 OK 211 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/65040be8d34/js/twk-chunk-common.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Size 211 kB (210929 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_s/v4/app/65040be8d34/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowriters.com
DNT: 1
Connection: keep-alive
Referer: https://glowriters.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:12:35 GMT
content-type: application/javascript
last-modified: Fri, 15 Sep 2023 07:48:51 GMT
etag: W/"cc2f5caa9ea6bd869eabebe15472439c"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 98606
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 80d457a6db6d568e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
162.0.215.7
104.22.25.131