ocsp.sectigo.com/
471 B IP
Hash 1c4daad02d76cf9d5fbcb4d0ba098d74
a3e84bfab194b7aea9061b81ae970535a4d0f5f4
673f35dc0724aa5961d52ba2d317b9227b3a6416f68783ead89ff64979925a61
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 14:09:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 24 Sep 2023 21:22:23 GMT
Expires: Sun, 01 Oct 2023 21:22:22 GMT
Etag: "a3e84bfab194b7aea9061b81ae970535a4d0f5f4"
Cache-Control: max-age=370967,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80d453395a8256ca-OSL
302 Found 0 B URL User Request GET HTTP/2 IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /niu/ HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/7.2.34
location: /
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 27 Sep 2023 14:09:34 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.min.js
200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65451)
Hash 220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15851"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 27 Sep 2023 14:09:35 GMT
age: 1021574
x-served-by: cache-lga21965-LGA, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 28125
x-timer: S1695823775.193052,VS0,VE0
vary: Accept-Encoding
content-length: 30638
X-Firefox-Spdy: h2
code.jquery.com/ui/1.12.1/jquery-ui.min.js
200 OK 68 kB URL GET HTTP/2 code.jquery.com/ui/1.12.1/jquery-ui.min.js
IP
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32073)
Hash 0a497d4661df7b82feee14332ce0bdaf
f77d06b0c5dedef1f1db051a44a2b0d7f233ba3a
55accff7b642c2d7a402cbe03c1494c0f14a76bc03dee9d47d219562b6a152a5
GET /ui/1.12.1/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-3dee4"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 27 Sep 2023 14:09:35 GMT
age: 1021577
x-served-by: cache-lga13623-LGA, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 79, 12674
x-timer: S1695823775.230791,VS0,VE0
vary: Accept-Encoding
content-length: 67751
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css
200 OK 948 B URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (1323)
Hash 4affda653d65484bf6983822fa6adb23
225df1e9345d47cf62a552b7e6720be1e759b49b
456ab1a71507ed91abae14c9d08faffb373a7bc711a66e44341b7b8b7bb72ab4
GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:09:35 GMT
content-type: text/css; charset=utf-8
content-length: 948
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-f62"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 11038137
expires: Mon, 16 Sep 2024 14:09:35 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uUBN%2FgR6ubfKlIEiu%2BczBtQohHkQZhGi02pTbNAwXoWAiVi6OepM01f0nPS%2FUSLvRU%2F%2FO7K3oJ6c81XXDkaGOZk8qWo0AvxHrTguZPjwEIwYk3PgII4AS6kyHZDMsr%2FfgT2rKTb%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80d4534359d4b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js
200 OK 7.8 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/popper.js@1.16.0/dist/umd/popper.min.js
IP
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (21084)
Hash 84415b7368fd6fc764cbe86039ce0626
62f238e73348c77eb9e865426a7d1b7de23cbb2d
c776195ad46333c6c9a9fe3c74502ffea9a02faf122388ea3567922cc65a3060
GET /npm/popper.js@1.16.0/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.16.0
x-jsd-version-type: version
etag: W/"5309-YvI45zNIx3656GVCan0bfeI8uy0"
content-encoding: br
accept-ranges: bytes
date: Wed, 27 Sep 2023 14:09:35 GMT
age: 10360668
x-served-by: cache-fra-eddf8230104-FRA, cache-bma1675-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7835
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash ff52e45784a45798b40d6d9feb912438
3efa53511758ea8597e7ffe0bbb9e7343a1102b6
280a37a14ea94283ef151c84b79ebd80c3e52cdac8f94208df994a970f592689
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:09:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash ff52e45784a45798b40d6d9feb912438
3efa53511758ea8597e7ffe0bbb9e7343a1102b6
280a37a14ea94283ef151c84b79ebd80c3e52cdac8f94208df994a970f592689
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:09:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js
200 OK 5.7 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (19802), with no line terminators
Hash f2bc0804920974cdb94feca2936b668c
253b288316ee7bb62b0bc755d7834b14b265f18c
af4c6683814aa527caf53bde3d021e6aafe00833b45f2dead043c87ed7864674
GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:09:35 GMT
content-type: application/javascript; charset=utf-8
content-length: 5676
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-4d5a"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 37457
expires: Mon, 16 Sep 2024 14:09:35 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFgoub2cKC8hd4idm0%2BMxIYlowbuNNHQXsBfsUZoX4M%2BVTnPLU3sRhsFOpSpIHBZo%2FM97wSLNQY%2F8xhEQIB1Gbi%2F92xRMZWTVXMhV%2Bq2djQVQ1lsVFB0MCpIy4L2TLhAnRlHV4TV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80d453457ccbb524-OSL
alt-svc: h3=":443"; ma=86400
gloessays.com/content/themes/phantom/css/bootstrap/css/bootstrap+social.css?ver=8.0.0
200 OK 26 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/css/bootstrap/css/bootstrap+social.css?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (572), with CRLF line terminators
Hash ea669684ba21209bf6ac7a7a8bd0f138
50a4fede7afd755813e6f7bc2b501eff4edeabd8
d815e5d35f6e388c62f3e542c58dacf22c54dde1e6e839ae280a125172cf4281
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/css/bootstrap/css/bootstrap+social.css?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: text/css
last-modified: Mon, 20 Mar 2023 10:44:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 26033
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/css/theme.css?ver=8.0.0
200 OK 32 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/css/theme.css?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (1304)
Hash 67de76148a33a1d2569d65eeaa5c3fea
8ab63158fce699ce980813a8bc3c7b50101dc37f
fa0e69859ef629b5008f967a1d7ca95ae692ece83acb47e7ba3212f528073214
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/css/theme.css?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: text/css
last-modified: Mon, 20 Mar 2023 10:44:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32312
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/js/plugins/intl.telinput/intlTelInput.min.js?ver=8.0.0
200 OK 9.0 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/js/plugins/intl.telinput/intlTelInput.min.js?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (22480)
Hash 77ee5f318a2bcaeeb083764f41841ffb
460b316a81ccdf9a6aa8728ae555f354e5007728
74ba5fa9f70848dc76df2fbead067eb3e16b50b81e1bb026357787d49f43377f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/js/plugins/intl.telinput/intlTelInput.min.js?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 10:44:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9009
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/js/eventemmiter/eventemitter.js?ver=8.0.0
200 OK 465 B URL GET HTTP/2 gloessays.com/content/themes/phantom/js/eventemmiter/eventemitter.js?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash 29d4a06d942860786b4b27451f0fd63a
90e820c4cad51d44f992f6a9a89ed0c4e35deba6
99bed2689e14fab02b25bd45d17f56a1f25e55e4756b4ad376793a5b0466000f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/js/eventemmiter/eventemitter.js?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 10:44:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 465
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/js/plugins/jquery.form/jquery.form.min.js?ver=8.0.0
200 OK 6.2 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/js/plugins/jquery.form/jquery.form.min.js?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (16246)
Hash 9e3333ab37cbd7849dc647669aa0ca12
6f676b2df2717b03559df71c149ac55b9ddd74ad
d8f8ebd4e96964c63aa9eb0933af2ddafdfdb7e94c2efc70a5af109518c9ae80
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/js/plugins/jquery.form/jquery.form.min.js?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 10:44:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6208
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/js/mustache/mustache.min.js?ver=8.0.0
200 OK 3.1 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/js/mustache/mustache.min.js?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (11185), with no line terminators
Hash 4f64141fa5bc31ccfbf77e130ffaae9a
8fac62308a2671b2089f95745795a21789fe97de
5df085aad89db3cbe871e7a4192222416db2cd4e0e437ec75fb7ca1b18b07c18
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/js/mustache/mustache.min.js?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 10:44:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3111
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/images/square1.jpg
200 OK 8.5 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/images/square1.jpg
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 350x358, components 3\012- data
Hash a558e261fc9ba866fce7c85445743985
04931c05037dd6cce39fe39207ee8aaf7f95fe8b
54d0a463dc1a7211a3639f8f470b938b46a9e4f733b8a7569044ebd3562a63f3
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/images/square1.jpg HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: image/jpeg
last-modified: Mon, 20 Mar 2023 10:44:03 GMT
accept-ranges: bytes
content-length: 8506
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/js/theme.js?ver=8.0.0
200 OK 0 B URL GET HTTP/2 gloessays.com/content/themes/phantom/js/theme.js?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/js/theme.js?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 10:44:04 GMT
accept-ranges: bytes
content-length: 0
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
gloessays.com/content/themes/phantom/js/proxim/core.js?ver=8.0.0
200 OK 2.5 kB URL GET HTTP/2 gloessays.com/content/themes/phantom/js/proxim/core.js?ver=8.0.0
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash 95f1270a05ad328e91d628e0970d609e
d046a4b79b630c2d0317ac528002f3834a0e10d8
ffd09e1a4bd0c7a0f5d02568fc5e6d223692c59d305fdf644ca73b43e2764bfc
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /content/themes/phantom/js/proxim/core.js?ver=8.0.0 HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: application/javascript
last-modified: Mon, 20 Mar 2023 10:44:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2515
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:09:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:09:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:09:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 23:22:53 GMT
expires: Wed, 25 Sep 2024 23:22:53 GMT
cache-control: public, max-age=31536000
age: 53203
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
gloessays.com/uploads/logo-white.svg
200 OK 59 kB URL GET HTTP/2 gloessays.com/uploads/logo-white.svg
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (58184)
Hash d42dbb39967113eab396b32c07412edb
e232fa3fe534ba84ac54907f26bd124fee2da553
cd65e57ee0ccf017984be92c3d0a589f4d04d2dd4b254b014e2609af2a2307c6
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /uploads/logo-white.svg HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 14:09:35 GMT
content-type: image/svg+xml
last-modified: Tue, 16 Jun 2020 11:21:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 58755
date: Wed, 27 Sep 2023 14:09:35 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2
200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 20:47:17 GMT
expires: Fri, 20 Sep 2024 20:47:17 GMT
cache-control: public, max-age=31536000
age: 494539
last-modified: Tue, 02 May 2023 15:12:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 11:05:47 GMT
expires: Wed, 25 Sep 2024 11:05:47 GMT
cache-control: public, max-age=31536000
age: 97429
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.12.1/webfonts/fa-regular-400.woff2
200 OK 14 kB URL GET HTTP/3 use.fontawesome.com/releases/v5.12.1/webfonts/fa-regular-400.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 13600, version 330.-16188\012- data
Hash 4165c2688309cbfb1b877caf8f75afb5
37b761c26708037d19664cebea70416852487087
093f782260d70f914e7e591eba1502d3e992e9f7a69a17d1df6c32bcddd6f06a
GET /releases/v5.12.1/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:09:36 GMT
content-type: font/woff2
content-length: 13600
x-amz-id-2: BxUYzb+sJE+/uQ8AOgKYFCr9HAEzsYLDc1+NDGv8XY0ztsJXG6Qy59ff7rncI+D3zLQ1eO6oqPw=
x-amz-request-id: J4Q4JXC9SYJ6FJ6D
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:38:37 GMT
etag: "4165c2688309cbfb1b877caf8f75afb5"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 90201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WFcy9ht1Wy4zvLZcTbkJ%2FICLTVNPVAiDxv3wv4m5KPAXOk5wp25CeUPeS0Qvjlou0yKjORhpS%2Fmn7RFSmsIdy%2FldJgrYn0nYXmWNNqpGxiUNbK5cyKWzfhDv3Fx%2FtTqlMGNNXH3t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d45348dccc459a-LHR
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
471 B IP
Hash b8902f031110680f998035e374a958e9
767e9ea86658a88e719c016c6ccbe8ef246b33d3
ed12c8b2a987840c4a1676bbb40a6577017544b3bacab0f24ab0d60033a31b3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 14:09:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.12.1/webfonts/fa-solid-900.woff2
200 OK 76 kB URL GET HTTP/3 use.fontawesome.com/releases/v5.12.1/webfonts/fa-solid-900.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 76120, version 330.-16188\012- data
Hash 55eb2a60e8181f0e68b558c991973bf0
af776f52d579da211590e0691d554b88a69dfe61
2c3097237d60f42e800ebe4009c9af144bb19e5581e1c0501c7b259eee7e210c
GET /releases/v5.12.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 27 Sep 2023 14:09:36 GMT
content-type: font/woff2
content-length: 76120
x-amz-id-2: slW5kXnrdDtKgXvidtW2ZfSQk/qZJw9t4iUG/BA9JRU0SIphIe5A5y59rlZAmUeH4ObprlXapx3324TXwNEFYS+CT+0xPUyakB+8wakK4Zk=
x-amz-request-id: J4QEHGM7DRQM1GA9
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:38:38 GMT
etag: "55eb2a60e8181f0e68b558c991973bf0"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 90201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c1TtndmqnT0SlZe632DPqsOSRZS6bAvMhuZLQvy7WgkP5AVw8Bfvpvctjj%2Bp17eIQexijQR3Nz3dBR51rxHVmRHt5AlopDwCaF982I53KTVG9hWjY1wPC7PLOLw5bo2KBqVGFfqG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80d45348dcd0459a-LHR
alt-svc: h3=":443"; ma=86400
gloessays.com/uploads/cropped-favicon-1-180x180.png
200 OK 21 kB URL GET HTTP/2 gloessays.com/uploads/cropped-favicon-1-180x180.png
IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash b912517ce2ec18f9c8d745adb232a984
a6dc9789c834b556b68d844f60b7dfccbfe9b4bf
90214e871b76adccd72fa1df425e43be8b3df0aaed01005334fb84f01fde43d0
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /uploads/cropped-favicon-1-180x180.png HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Wed, 04 Oct 2023 14:09:36 GMT
content-type: image/png
last-modified: Tue, 16 Jun 2020 11:22:17 GMT
accept-ranges: bytes
content-length: 21175
date: Wed, 27 Sep 2023 14:09:36 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,300i,400,600,600i,400i,700,700i,900&display=swap
200 OK 5.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Lato:300,300i,400,600,600i,400i,700,700i,900&display=swap
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type ASCII text, with very long lines (5508), with no line terminators
Hash 8d3d08e597bd3bebbadb445c6223807f
6586dbac0b0d7ed18d9e68c291b61b4c86fb1f3d
8351ef6099cf3a7ce26a62a7e41d99dd8f793120ef89bae28e50277f45080fca
GET /css?family=Lato:300,300i,400,600,600i,400i,700,700i,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 14:09:35 GMT
date: Wed, 27 Sep 2023 14:09:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.12.1/css/all.css
200 OK 57 kB URL GET HTTP/2 use.fontawesome.com/releases/v5.12.1/css/all.css
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT
File type ASCII text, with very long lines (57147)
Hash 2a0e11a7655cf7af50d9152727c134ef
136e6626dc83d228b50416249fe05864ab065e40
9a680b90260b5106d79f4075491ab31daafa7429eff686453c40b58357309649
GET /releases/v5.12.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:09:35 GMT
content-type: text/css
x-amz-id-2: KZ8uWXXOv7spNOqfKHPKeIuqIfYQkrW4CiDqZOk7PQ6/DyT/06uwAzTxmUMIVs/k3BL6QkIzO50=
x-amz-request-id: FTGPCXS18J7C4ZMA
last-modified: Wed, 30 Jun 2021 15:38:16 GMT
etag: W/"2a0e11a7655cf7af50d9152727c134ef"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2221059
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ErkKwT9T6U1xfQipImUSO0EbknWT9fb1B4Pjy3Y2Wsw8sx7naBARlbm3r8cWm4OsE%2Fa91X3bvAKokishvnqXF324i%2BWSD6%2FgI6wRL61UZwgL%2B0iQwqO1tasJUSFwVo67%2FTIy3q5f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d453436fb17798-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
200 OK 60 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (59729)
Hash 61f338f870fcd0ff46362ef109d28533
b3c116c65e6f053aaab45e5619a78ec00271a50f
5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548
GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gloessays.com
DNT: 1
Connection: keep-alive
Referer: https://gloessays.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 27 Sep 2023 14:09:35 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 01/04/2023 07:40:19
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1075
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 0cdb286a38cc8159a7154b5d47efbba1
cdn-cache: HIT
cf-cache-status: HIT
age: 413625
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80d45342ba0756ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
200 OK 9.6 kB URL User Request GET HTTP/2 IP
Certificate IssuerSectigo Limited
Subjectgloessays.com
Fingerprint42:15:C3:B7:86:02:85:12:C9:0B:F0:79:60:10:80:FE:4D:17:8D:53
ValidityWed, 03 May 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10959), with no line terminators
Hash f835c1baa74d5db9e89bcbe54140157b
d6f65ceca78c769813b9e894218894778a114a34
a6d66691e00f38e26d25e25837cc7daf54216974d1e6e9bfa7fa4d8e4d695760
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: gloessays.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=f1fc9ae9f527a0b5b1c0613782f81320; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 14:09:34 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
162.0.215.7
104.18.10.207