bakehuge.com/can-we-guess-your-nationality-in-a-past-life
31.220.108.5301 Moved Permanently 0 B URL HTTP/1.1 bakehuge.com/can-we-guess-your-nationality-in-a-past-life
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /can-we-guess-your-nationality-in-a-past-life HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-dns-prefetch-control: on
content-type: text/html; charset=UTF-8
x-pingback: http://bakehuge.com/xmlrpc.php
x-redirect-by: WordPress
location: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
x-litespeed-cache: hit
content-length: 0
date: Sun, 04 Dec 2022 13:46:57 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4073
Expires: Sun, 04 Dec 2022 14:54:50 GMT
Date: Sun, 04 Dec 2022 13:46:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3295
Cache-Control: max-age=164355
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:57 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:26:12 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2558
Expires: Sun, 04 Dec 2022 14:29:36 GMT
Date: Sun, 04 Dec 2022 13:46:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 13:20:07 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1611
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: d1tpmz5mM5kcbyhPkedOb6iAftYT7qHZc4v4FgnehQ8WHJ7P9f0XbZ5rpTdYCTOGywp7j4hQSM4=
x-amz-request-id: 04GM60Q5MWRT3ZAC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 12:46:59 GMT
age: 3599
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:46:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
31.220.108.5200 OK 78 kB URL HTTP/1.1 bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27420)
Hash f330625be253ee6c39f8baa1d31b2f13
52ea4e1a0665cb97ce81656b66db5acd85577c67
cfd7545d3bf39708eecb858e1ec74036b54fd5b37c7d4ed71bad5c5fda63cd32
Analyzer Verdict Alert fortinet Phishing
GET /can-we-guess-your-nationality-in-a-past-life/ HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-dns-prefetch-control: on
content-type: text/html; charset=UTF-8
x-pingback: http://bakehuge.com/xmlrpc.php
link: <https://bakehuge.com/wp-json/>; rel="https://api.w.org/", <https://bakehuge.com/wp-json/wp/v2/posts/6037>; rel="alternate"; type="application/json", <https://bakehuge.com/?p=6037>; rel=shortlink
etag: "2275-1670158641;gz"
x-litespeed-cache: hit
content-encoding: gzip
vary: Accept-Encoding
content-length: 77624
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8b0d90269355a48e02878582e2b3694f
59985b3a703a2b950c4e69abdb10825a047d8115
7a01076545d22920d5c684d1474381861b65b0b47a5b6f333c178d405de27f2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3694
Cache-Control: max-age=104618
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:58 GMT
Etag: "638b8c0e-116"
Expires: Mon, 05 Dec 2022 18:50:36 GMT
Last-Modified: Sat, 03 Dec 2022 17:49:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
bakehuge.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 8b0d90269355a48e02878582e2b3694f
59985b3a703a2b950c4e69abdb10825a047d8115
7a01076545d22920d5c684d1474381861b65b0b47a5b6f333c178d405de27f2c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3694
Cache-Control: max-age=104618
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:58 GMT
Etag: "638b8c0e-116"
Expires: Mon, 05 Dec 2022 18:50:36 GMT
Last-Modified: Sat, 03 Dec 2022 17:49:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
bakehuge.com/wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0
bakehuge.com/wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css
bakehuge.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
bakehuge.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d7f90d1d5e179d6087078dd42864aaba
c97c684757333d567e71e26e8a233d3faeaf9af9
9b790b32107f00d4fc0d53d567efd28b481cfd660ff177ccd35680dbe538475a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B790B32107F00D4FC0D53D567EFD28B481CFD660FF177CCD35680DBE538475A"
Last-Modified: Sat, 03 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10486
Expires: Sun, 04 Dec 2022 16:41:44 GMT
Date: Sun, 04 Dec 2022 13:46:58 GMT
Connection: keep-alive
live.demand.supply/up.js
104.16.134.22200 OK 2.4 kB IP 104.16.134.22:0
File type ASCII text, with very long lines (2992)
Hash 1dde1f9668b14fad9f7d00c21dd7b792
f2dee30fe2b931083f91690f822b511feb01285a
9f2a8ff1b900b1c7530af170998d6c343a580700a2f5cc08c119a60dec76a461
GET /up.js HTTP/1.1
Host: live.demand.supply
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:46:58 GMT
content-type: application/javascript; charset=UTF-8
cf-ray: 7744fdc33fecb4f4-OSL
age: 4
cache-control: max-age=1200,must-revalidate,stale-while-revalidate=3600
etag: W/"42ed71e239cf5fa5936b3b6ee3955f83-ssl-df"
set-cookie: demandSupplyTi=1f3d1974-9348-4057-ac9c-0de98ec3b022; demandSupplyTc = null; demandSupplyTcI = null; SameSite=None; Secure; Max-Age=63072000
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: minify
cf-polished: origSize=3910
timing-allow-origin: *
x-nf-request-id: 01GJNAF92DWXVXGFHTM9T78H2Q
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d7f90d1d5e179d6087078dd42864aaba
c97c684757333d567e71e26e8a233d3faeaf9af9
9b790b32107f00d4fc0d53d567efd28b481cfd660ff177ccd35680dbe538475a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B790B32107F00D4FC0D53D567EFD28B481CFD660FF177CCD35680DBE538475A"
Last-Modified: Sat, 03 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10486
Expires: Sun, 04 Dec 2022 16:41:44 GMT
Date: Sun, 04 Dec 2022 13:46:58 GMT
Connection: keep-alive
bakehuge.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
bakehuge.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
bakehuge.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
bakehuge.com/wp-content/themes/fox/js/theme.min.js?ver=4.9.1
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/themes/fox/js/theme.min.js?ver=4.9.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/themes/fox/js/theme.min.js?ver=4.9.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/themes/fox/js/theme.min.js?ver=4.9.1
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 13:11:19 GMT
cache-control: public,max-age=3600
age: 2139
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0
bakehuge.com/wp-content/litespeed/ucss/8fe3a9fe37785cb435b348a1df77b459.css?ver=fa967
31.220.108.5200 OK 9.9 kB URL HTTP/2 bakehuge.com/wp-content/litespeed/ucss/8fe3a9fe37785cb435b348a1df77b459.css?ver=fa967
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (43388), with no line terminators
Hash caf4e21d90a770f932db9c43f78a6a42
d49f52e7c80b42ae55b330af2ba5de8eb72e074c
feac0dcbee2456d99cb356c4998d2f5200a8c6583d640674983f73e96c5d4fbc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/ucss/8fe3a9fe37785cb435b348a1df77b459.css?ver=fa967 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 01 Dec 2022 12:06:00 GMT
etag: "a99a-638898a8-cb49203a09f31a0f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9863
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
alt-svc: h3-34=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-27=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0
31.220.108.5200 OK 680 B URL HTTP/2 bakehuge.com/wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1437)
Hash d575aa916001cc1b92ad5bc6954579cb
361b1adfde364d391df0a2bf8be1fccc38415322
fce5053dcb670d31fcd8de0f5e1f99d365aabd9417aa0f4047855ad9dfdf180f
GET /wp-content/plugins/go-viral/public/js/jquery.inview.min.js?ver=1.8.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sun, 04 Dec 2022 07:29:55 GMT
etag: "59e-638c4c73-20d6c5fe097c65c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 680
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0
bakehuge.com/wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css
31.220.108.5200 OK 7.1 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (30837)
Hash 0ebb760c7d229fd1d2b3a63493306569
58961c039962ea4f5215caa2e0127a8658bcf847
18eecad8f04af6784d466cd2cad0337dea530bef457e6a7b3da473eea589b134
GET /wp-content/plugins/wp-viral-quiz-gr/resources/icons/fa/css/font-awesome.min.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:45 GMT
content-type: text/css; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "7918-6364a276-5cbab95eea37b3c1;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7050
date: Sun, 04 Dec 2022 13:46:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css
31.220.108.5200 OK 1.2 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash b12967dc63146f4b9a9e8086cb55026c
bc21d059090e9b7e2e9da3436c4962be934694b3
cf0d229b5c4561a72990b0871f18f554fc96300ffaed85bd4277d361fae8cd93
GET /wp-content/plugins/wp-viral-quiz-gr/resources/css/skins/modern/style.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: text/css; charset=UTF-8
last-modified: Mon, 14 Nov 2022 09:16:30 GMT
etag: "163f-6372076e-e0a83186a7cd1e0e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1226
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
31.220.108.5200 OK 2.8 kB URL HTTP/2 bakehuge.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (9937), with no line terminators
Hash 4317b1c024df372435f6482deadddeb3
5c8824a17e40a44ea8fc51568b98bdb1e2e7fab5
3798fb16289ba55459fb6d3b2efa915e3c019c5942759abb7bd19a0ef622b85d
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Wed, 02 Nov 2022 08:56:35 GMT
etag: "26d1-636230c3-f36f9402a6233d6a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2817
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
31.220.108.5200 OK 3.7 kB URL HTTP/2 bakehuge.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash dc6411bfa6891b75944f0074c945752d
03c1a8b686c287068c61ab90f58d905496d65085
96abeabc9cc7b4c2b7d46579f2827c67ccd02fbaef0343ae052f71accd381b0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Wed, 02 Nov 2022 08:56:35 GMT
etag: "3016-636230c3-39366756c184edf9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3706
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1a56736cf1f02c2242946ca0170c2c3a
a47ca5cfc4667a1466875542da0de22f64862f86
0fdd7486e01858e490d7c08343c7a861c5fe856fc0debc08df0541ccc89f80b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3160
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:58 GMT
Last-Modified: Sun, 04 Dec 2022 12:54:18 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3289
Cache-Control: max-age=159282
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:58 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 10:01:40 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
104.18.10.207200 OK 5.7 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (23577)
Hash 655b99e394ea3e4888c406c159b01a6d
3047408dad6164f10fc5f928237879d6ccb9f3ef
6029d8e6c15b68644dc0f3e1ff8fabe15d2554db524a6f36648a6bd3960bcd9f
GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakehuge.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:46:58 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 21:08:57
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e6a55b08fe5091f45c9e99ce9e9f98c2
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 15603217
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7744fdc63a0cb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Football.jpg.webp
31.220.108.5200 OK 19 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Football.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 288d8bb08270c1468fd190937df3da6c
d32dda0b1f896b904ae1c76e69e8f07b7d0eb22d
010b8df4f7877ba8ab82a7e68602133ed1a1a75048046463b60335a25d323466
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Football.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:25:36 GMT
etag: "4ba4-6388c770-ae2a9860c95055a5;;;"
accept-ranges: bytes
content-length: 19364
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Cricket.jpg.webp
31.220.108.5200 OK 13 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Cricket.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9aeaf60b9c103614303041660dcef039
0b3660cb7de7bb90681af6f39c2e0038663d32cd
71a4e44e30dff8e1851103d4dc176ea88f8f80a7d6e8a7b0b47206dda96a1c10
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Cricket.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:20:15 GMT
etag: "3304-6388c62f-1b8c464d02cf68b9;;;"
accept-ranges: bytes
content-length: 13060
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
31.220.108.5200 OK 4.0 kB URL HTTP/2 bakehuge.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sat, 12 Nov 2022 12:50:57 GMT
etag: "2bd8-636f96b1-1e6f086ac3fa0879;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css
31.220.108.5200 OK 270 B URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash b3e9b0f85b1110535793b4c269e3880e
9e4b5ee442a5c941652c25eb3e440b4b7d40aaec
2aa4280faca61f26ebbd6cd1ee57387db3afb3a051fc7701c56b4044db0f6638
GET /wp-content/plugins/wp-viral-quiz-gr/resources/css/fo-style.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:45 GMT
content-type: text/css; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "256-6364a276-7b6e9cadd62e0216;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 270
date: Sun, 04 Dec 2022 13:46:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:200,400,700
142.250.74.74200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:200,400,700
IP 142.250.74.74:0
Hash 92a74ed26676247221990aefe3db70d1
672e7cbb019bffe7e451196eeb59d90b89856a76
04d23b916d93e31ab4d8de5e04217917fdbd49c37e8a667d20ef9e0f7ed974be
GET /css?family=Montserrat:200,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakehuge.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Dec 2022 13:46:58 GMT
date: Sun, 04 Dec 2022 13:46:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d7f90d1d5e179d6087078dd42864aaba
c97c684757333d567e71e26e8a233d3faeaf9af9
9b790b32107f00d4fc0d53d567efd28b481cfd660ff177ccd35680dbe538475a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B790B32107F00D4FC0D53D567EFD28B481CFD660FF177CCD35680DBE538475A"
Last-Modified: Sat, 03 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10485
Expires: Sun, 04 Dec 2022 16:41:44 GMT
Date: Sun, 04 Dec 2022 13:46:59 GMT
Connection: keep-alive
bakehuge.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
31.220.108.5200 OK 36 kB URL HTTP/2 bakehuge.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65266)
Hash eabd3755fb73f0e4ef1ac6e474373dd8
cd92121ebac48f10a27821172202bb1d06267663
37f62084aa872e3b695e87f549c236fda5828bc68036875a771768cd90bf2436
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sat, 12 Nov 2022 12:50:57 GMT
etag: "26935-636f96b1-65982bf7f4f97ed6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36433
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0
31.220.108.5200 OK 1.4 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (3793)
Hash 9cfd9c6262b3a1a3d64a677a8c29b757
d2fcdcd00a5144296b6dd2c20de179bf658da9e3
4876c28839ece3d600633890745bafd9a3dc1fe182a9eff454c5e8921154deb7
GET /wp-content/plugins/wp-viral-quiz-gr/resources/components/store2/dist/store2.min.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "f5a-6364a276-a4279d410a7cb5c1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1424
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
31.220.108.5200 OK 479 B URL HTTP/2 bakehuge.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (1191), with no line terminators
Hash 62b3593ce258f7488f936d31b1ab1b6e
34c14a9bf90463e4456add8d8d039453b8bb8b8e
be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sat, 12 Nov 2022 12:50:57 GMT
etag: "4a7-636f96b1-2b9974e773a799fa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 479
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
31.220.108.5200 OK 392 B URL HTTP/2 bakehuge.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 200d0ec78a54a35bb97450e75bddfe52
25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sat, 12 Nov 2022 12:50:57 GMT
etag: "38a-636f96b1-f0f11a5335165f08;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 392
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0
31.220.108.5200 OK 24 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4357)
Hash 94b64820d5e462eb22e313fbafc97a21
a9912aa403c30bce1f06b977afb4ab41185be282
51cc2db90e6e59254472f5724c1479d3e372737df87e4dcb04dcfc5a59da286f
GET /wp-content/plugins/wp-viral-quiz-gr/resources/components/lodash/dist/lodash.min.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "11c44-6364a276-36e001348be4f87e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 23691
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Soccer-or-football.jpg.webp
31.220.108.5200 OK 13 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Soccer-or-football.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 259cc208792405bf7952466b70c11e29
488bb7c86421c4bc521517bb80a3afda0c9d12bb
5804d018db00b564506b2419da594ca20b5b90b218d1cb5eedd28698a53463eb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Soccer-or-football.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:20:08 GMT
etag: "337a-6388c628-ed7fb82d04cb25b8;;;"
accept-ranges: bytes
content-length: 13178
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0
31.220.108.5200 OK 1.4 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash 26062da018b72c984215b88183af1d23
633342cde60413e83a0bd467b858ef8becd807bb
939b5169a94174c12bcb13ef318425bde87c883b5f15db45b2f379819ba80733
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/social-media.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "1453-6364a276-2c743a39b7cb8f43;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1437
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0
31.220.108.5200 OK 1.4 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash 1bd4071c07ece7d8f89f08e5ba2c417a
f38cd64734f5c4f4672694226e80e80100f49f1a
356bb034f5630dfb96579901d3823dfb5d755042ebdd9167c604a5d05419fccb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/quiz-perso.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "1337-6364a276-22ff84e37dc425c2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1423
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0
31.220.108.5200 OK 4.3 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash 50830fac56f135ae8309b2388df84dd7
dfd5b38a9de5cc0cb950f73e6fb7727da7fdddda
89b65507185335b8aad1ac9c232ea5401ef82513f744c45756bc144a0b01bbe7
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/global.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:48 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "3f26-6364a276-f34f83e99792d352;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4318
date: Sun, 04 Dec 2022 13:46:48 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0
31.220.108.5200 OK 523 B URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash 88b06abc09181dcc35bd7be7ea63c72b
034e692d8e7fda6b56165b83c65edba7e476c9b9
6c7a26ab2ae571280aafa3e0c1f6613d238896c33309f8a7fb9437bb5f30e595
GET /wp-content/plugins/wp-viral-quiz-gr/resources/js/fo/ga-analytics.js?ver=1.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:55 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "798-6364a276-72d45bc5927ef67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 523
date: Sun, 04 Dec 2022 13:46:55 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0
31.220.108.5200 OK 2.0 kB URL HTTP/2 bakehuge.com/wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Hash 716ee16b3a48cc0de1737d51b501459a
fa86843a29d76d8c72b0cdde668f0c44afaaf6c0
b2e5ee89ed7072b35b4ac0cd7b90fca60de8222d9c8e7ff4a87928711f556ee7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/go-viral/public/js/govr-frontend.js?ver=1.8.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sun, 04 Dec 2022 07:29:55 GMT
etag: "2040-638c4c73-4267ff928dc4746d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2016
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css
31.220.108.5200 OK 24 kB URL HTTP/2 bakehuge.com/wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (341)
Hash 42661c0a3a5a6858a50ccc50b5b7217d
5800fac42c41d41649671d339e15b89faa112900
45b2423fb1a3e31bc64198f1617feceee3372f008b95432686a64e9b2187ea8e
GET /wp-content/plugins/wp-viral-quiz-gr/resources/css/bootstrap-wrapper.css HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:45 GMT
content-type: text/css; charset=UTF-8
last-modified: Fri, 04 Nov 2022 05:26:14 GMT
etag: "3768a-6364a276-6dc6e05d742a4d4b;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 23472
date: Sun, 04 Dec 2022 13:46:45 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Basketball.jpg.webp
31.220.108.5200 OK 19 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Basketball.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fe80ffbac2c34e92c8c835b98f68fd80
ea2bc0c9a874aa496db1f7854782b7048ec51b5d
61725a4e74a7b5fa2d9fcc21856911cc536d06257d98188c17279247634addc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Basketball.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:24:54 GMT
etag: "4ae4-6388c746-7e3bcaa144892050;;;"
accept-ranges: bytes
content-length: 19172
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/2-11.jpg.webp
31.220.108.5200 OK 13 kB URL HTTP/2 bakehuge.com/wp-content/uploads/2-11.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0af8082ea7a7cd79c3ade1b21212060e
0a3d069c0e52fa417d9d2fe06b5f861788cf8619
80b41b9b13b702fd6b3794a0feed23052132be35ae0690acdc9a761bdea2324d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2-11.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:39:48 GMT
etag: "329a-6388cac4-f220e4c9a3891056;;;"
accept-ranges: bytes
content-length: 12954
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/1-13.jpg.webp
31.220.108.5200 OK 8.4 kB URL HTTP/2 bakehuge.com/wp-content/uploads/1-13.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ee1dae3add2a96ac9cf891d49bb4ec85
669c6a97865cbb5f0734e74765440c6ec59f6bf0
95e33c23af2a1cbc073d60e5c2995b9271884b44d5352b0d31db2b6c2f8d54b4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/1-13.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:35:08 GMT
etag: "20f4-6388c9ac-b60a117eff5c9436;;;"
accept-ranges: bytes
content-length: 8436
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.70.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.70.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: r11WCt0Q+SyCONsAX74jug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wf1fudljvZvs1bO1DH7LVCfzbe4=
bakehuge.com/wp-content/uploads/3-5.jpg.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/3-5.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4f08bc2e66b8f69b83b785a5e449811b
cd40ee0e05d2d1d73d9f4eb5175a535b253c4eff
6f43d233675650770f23ecea0227bc5fe44ef98214f92ed82274e16938f0f733
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/3-5.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:35:01 GMT
etag: "308e-6388c9a5-aa112ed6b8575e5d;;;"
accept-ranges: bytes
content-length: 12430
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/0-8.jpg.webp
31.220.108.5200 OK 6.8 kB URL HTTP/2 bakehuge.com/wp-content/uploads/0-8.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1763e5170b9b1fa9bac6b10c06aa40f8
b34e256d6cfc79be64f04f3b2f67250b00861463
9ca96c2afce06939d95d2bf5ad66714e21218a820643e7efd783865d5b2b1f67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/0-8.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:39:55 GMT
etag: "1a8c-6388cacb-798b7cb41682348b;;;"
accept-ranges: bytes
content-length: 6796
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-dont-like-to-travel-at-all.jpg.webp
31.220.108.5200 OK 10 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-dont-like-to-travel-at-all.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9072045de1c33aaac36837aa9927b01f
ef75f96703ec24099c5c56734549a5a55a7398f0
8d36fac1fabc3119718eaa9f69f5934957d8e2b7f0dbd6581df400523c56078f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-dont-like-to-travel-at-all.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:00:00 GMT
etag: "2814-6388c170-46572536acb874e7;;;"
accept-ranges: bytes
content-length: 10260
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-only-enjoy-traveling-to-countries-that-are-similar-to-the-one-I-live-in.jpg.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-only-enjoy-traveling-to-countries-that-are-similar-to-the-one-I-live-in.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9f03f6391b0d2170c4e92afcc11dc603
a995cb0c09e6dfa010ca9ae014bdbe40ec5b531c
dfc5ef3478ea8e4ff027a65b46712d5fb0985f67704ce61265afb67768a18131
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-only-enjoy-traveling-to-countries-that-are-similar-to-the-one-I-live-in.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:59:53 GMT
etag: "2da0-6388c169-d011d23240d37779;;;"
accept-ranges: bytes
content-length: 11680
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-love-traveling-to-other-countries.jpg.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-love-traveling-to-other-countries.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5092cad28388fd389f6df182c79b82e7
5c45cfa1384034b11629039d3c70cf7cc7668eec
801e1fd7dca45ff6276887a10458c50715f144f8083cc012f70c3f6b50158b2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-love-traveling-to-other-countries.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:54:52 GMT
etag: "2cca-6388c03c-81e8694d9a1429e4;;;"
accept-ranges: bytes
content-length: 11466
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-prefer-to-travel-inside-the-country-I-live-in.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-prefer-to-travel-inside-the-country-I-live-in.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5797d0ad92f877954ece1b862d354461
223855d446b88277f248b65d83f4d16f3d7f22ef
38617ca30e15962d6a4adbb2028cbebd2d923db41936d190d3edc628ce9f015b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-prefer-to-travel-inside-the-country-I-live-in.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:50:40 GMT
etag: "29a4-6388bf40-86f5d90579741948;;;"
accept-ranges: bytes
content-length: 10660
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Lotus.png.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Lotus.png.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7217dd9f16388953d08fa44b747c97e9
b8f6a43cbeaa757be560a20fcdd728e5e9a4ea42
9aade9fb919a80126ed4bb7512b7dc7bebac121fbaa4866313ab3c4fe448eb37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Lotus.png.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:34:49 GMT
etag: "2ff0-6388bb89-aaf7151e260f9b4;;;"
accept-ranges: bytes
content-length: 12272
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Tulip.jpg.webp
31.220.108.5200 OK 10 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Tulip.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6ade03d144c6b87d01e0233cf4352e0c
fb5c1bf7c8959774c75ccfa93fb297f8c80f1dec
2cc78feef03a43c0de7de75ba2cac47aec64aa5ace03870600e9323a1e06cc16
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Tulip.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:30:21 GMT
etag: "27fe-6388ba7d-6120aa6f237124dc;;;"
accept-ranges: bytes
content-length: 10238
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Plum-blossom.jpg.webp
31.220.108.5200 OK 8.2 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Plum-blossom.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 682ac8fa5ef58f570d8ca4819231106a
82a63dc67a79c045de479442abcf4b75d54be309
dc42eb39c9f7c1bff56999d8d8d5a9bd7d53af18f2e4829c7477521534f420e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Plum-blossom.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:30:30 GMT
etag: "2034-6388ba86-e8ef08abbda0505b;;;"
accept-ranges: bytes
content-length: 8244
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Rose.jpg.webp
31.220.108.5200 OK 14 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Rose.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0975d9be203cca48dd889a2c40034322
65c6fbdad9dd7832f26d35a928444b5133bcdc24
5fca29cff8db74e116cddf36d902d2c2075540a06e9cd7c40e8adaca767c0b82
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Rose.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:30:12 GMT
etag: "34f2-6388ba74-919822a71c2e043;;;"
accept-ranges: bytes
content-length: 13554
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Success-1.jpg.webp
31.220.108.5200 OK 6.3 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Success-1.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ede35ed17231ef12733475b224948e76
1a74c77db5eadce9c0c783f305d203c65c6d1e48
e845e14d1678ba3c94b8ad5e158b10f7d64cd66127623cdc2ef87c86b8ab2dce
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Success-1.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:05:00 GMT
etag: "189a-6388b48c-498c207be610f04f;;;"
accept-ranges: bytes
content-length: 6298
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Money-4.jpg.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Money-4.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b701fe2ee64e83b688e7beef200ba4aa
f6fc9073d4a556f2cd303bc80d43d80e3b4a7809
e9239e2db89cdfed64cd392443836a4febb3d756aee57068dd1c6f8dfbcaa2f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Money-4.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:05:14 GMT
etag: "2cce-6388b49a-d0040e4e90850ee0;;;"
accept-ranges: bytes
content-length: 11470
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Fun.jpeg.webp
31.220.108.5200 OK 14 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Fun.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 211135f5799ede853b69c8898a9d5054
a597f876326c65584eca6283cc71bbaf91bf52c9
b4c844598961adf65959418b14e03f7c95a8e1a78c59499fe3e499affc2756d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Fun.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:05:08 GMT
etag: "3748-6388b494-52518317bcfe18fc;;;"
accept-ranges: bytes
content-length: 14152
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Peace-of-mind.jpg.webp
31.220.108.5200 OK 6.3 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Peace-of-mind.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 413c129664798788383e51c6cf8a3979
71728098030410af584ac8bd70929469b8729038
33ae91e56c10a2ba30733b2f9593e25377e8d8e003cd0ccea8cfa26ddb95119c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Peace-of-mind.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:04:53 GMT
etag: "18a2-6388b485-32888ad554848821;;;"
accept-ranges: bytes
content-length: 6306
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Watching-TV.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Watching-TV.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0406a0ae29682347fffcd35a8c9537b
2b14d8e593e7586956eaf43d59c7026c29b22980
a536a01052dfa53c702da1e6c011f5eaf146bb0ee27721acd3ceb7034e71818c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Watching-TV.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:10:01 GMT
etag: "2a36-6388b5b9-71460d1407958fc3;;;"
accept-ranges: bytes
content-length: 10806
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Cooking.jpg.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Cooking.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0165d7a0ce98cd50de7dec563c0cda51
90a12a542c16c49312e59f686b5dedf9b7444741
e982a30be0b3dcee1585fd4f35e617bdfc2e5e987d822e3826807837c93448f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Cooking.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:09:54 GMT
etag: "2e6c-6388b5b2-aedfa85bba7108eb;;;"
accept-ranges: bytes
content-length: 11884
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Reading.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Reading.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4042b13da2aef84a60b8a7821b7eaf9
c632e9fdb01098c291c4b5d087b7fceaf58d8e81
def0833c5075d84c40a48f0c193f323c842a95590ee965179e23014861b10ab6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Reading.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:07:20 GMT
etag: "2cac-6388b518-ed2d759fc3f4c3dd;;;"
accept-ranges: bytes
content-length: 11436
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/It-doesnt-matter.jpg.webp
31.220.108.5200 OK 6.3 kB URL HTTP/2 bakehuge.com/wp-content/uploads/It-doesnt-matter.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88d82e39b791395fb6b715395d2718e3
1ad908f9c8a8efd159d2a025fca84b66fbb28844
2554717280ecc502c1e4fc7668271bee3481b149af85006d99c05d16a0dbd199
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/It-doesnt-matter.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:19:52 GMT
etag: "18a8-6388c618-fcadff30a175f362;;;"
accept-ranges: bytes
content-length: 6312
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Cold.jpg.webp
31.220.108.5200 OK 14 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Cold.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a1fad53a01040e6093ef1ff874558676
af5a77cb7434bf264d4874b86f822d3ee3c411b7
a985f1915e7b0868909ef3cb20867c605a7270caa1c5bbb321fb2f4f4348c628
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Cold.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:14:57 GMT
etag: "37f2-6388c4f1-aef1d2cdf74f118b;;;"
accept-ranges: bytes
content-length: 14322
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Hot.jpg.webp
31.220.108.5200 OK 4.6 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Hot.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 83d717c4b7446f8cdbf6fa04be958816
1624942a004e7f093e6b8c191bab4fe6b1619d22
bdd99d35a800ba8eb4db538fae9597e60856ef05deb4e5dd5a030140599f83f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Hot.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:14:51 GMT
etag: "1218-6388c4eb-7a4707e4bc7c4c5d;;;"
accept-ranges: bytes
content-length: 4632
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Small-group-of-friends.jpeg.webp
31.220.108.5200 OK 16 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Small-group-of-friends.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 970566f6535685d15e794ae8603d6237
9837686c772194ce6ec79d35588b7869e17f8eeb
ca358309c1727dc2e7009a338321eb6c8fba190bd1464565cf99c20f6b5fe309
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Small-group-of-friends.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:10:17 GMT
etag: "3e06-6388b5c9-7db74c93ce70050a;;;"
accept-ranges: bytes
content-length: 15878
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Large-party.jpg.webp
31.220.108.5200 OK 16 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Large-party.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6e8a2c0f9feb76995f01519a9540c2c0
ebfbb286a8f22a90a9eb35521e06bd243af0c036
8eba5ce1599d034a445b6786c0eac43abd41f687af2683829761d0b1a1ee354a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Large-party.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:10:26 GMT
etag: "3ffa-6388b5d2-ef6ecacd83802251;;;"
accept-ranges: bytes
content-length: 16378
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-prefer-to-be-all-by-myself.jpg.webp
31.220.108.5200 OK 6.3 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-prefer-to-be-all-by-myself.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 05e9970cd803149e189e78666f2412c0
2d39d04f7f9dc3ea1d431ccd25042e8d0027dcfd
94ad1682f53bb7d239ad087f51c5bb7fad25c1a8c645e1afbcc5769ebe1ac7b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-prefer-to-be-all-by-myself.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:10:08 GMT
etag: "1874-6388b5c0-ab27d9b2a14ba322;;;"
accept-ranges: bytes
content-length: 6260
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Standard-sized-house.jpg.webp
31.220.108.5200 OK 16 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Standard-sized-house.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c0d9c00154e0407772252bf7e65068e5
800a3310ad2de771c58d186a2c4fce4c7bfb1a92
b9d39b4b11e770c3105b14eef88299af76e84b86cf58d6487656909685d92173
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Standard-sized-house.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:45:58 GMT
etag: "3d38-6388cc36-4faf406e961e7d75;;;"
accept-ranges: bytes
content-length: 15672
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Mobile-home.jpg.webp
31.220.108.5200 OK 16 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Mobile-home.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 201fd71a56df4dbc27942358726c0778
67ed75de9b5614382d62b7fee78dcf5e0838996a
586e799bc9c194cc1228f75e00945273b37dbf4b68fae2fc362dc92496ab3c57
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Mobile-home.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:45:38 GMT
etag: "3fb2-6388cc22-2f1e4f5491829243;;;"
accept-ranges: bytes
content-length: 16306
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/10-hours-or-more.jpg.webp
31.220.108.5200 OK 10 kB URL HTTP/2 bakehuge.com/wp-content/uploads/10-hours-or-more.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8f3028eaff825e7b4bd1c3c7ce4c5f38
98437de5b8450d3dc51ee0cfcde58f1ec7ca1927
1942a145e30bb04a5dac18c23f0f69c625d69cd1acd4d0b30865ae8bcdc67278
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/10-hours-or-more.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:11:28 GMT
etag: "2848-6388c420-2998bd522fab2fe1;;;"
accept-ranges: bytes
content-length: 10312
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/6-to-7-hours.jpg.webp
31.220.108.5200 OK 12 kB URL HTTP/2 bakehuge.com/wp-content/uploads/6-to-7-hours.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 30abac9b1663a0c8b3933b577e93a6a7
af0a1d2fe42af9e6e6b6529f7e25f8193359c368
5200f223d1a687cf0020f85cd8f7d2102df82488988d8a4a81da0a9817f7a366
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/6-to-7-hours.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:09:44 GMT
etag: "2fe6-6388c3b8-e5d4e6dd3614eca7;;;"
accept-ranges: bytes
content-length: 12262
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/8-to-9-hours.jpg.webp
31.220.108.5200 OK 13 kB URL HTTP/2 bakehuge.com/wp-content/uploads/8-to-9-hours.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d38761393df8d618a300feb4d4960d0d
bb2fa8f6b3dd954832de803128af907e872a46f9
1e519f786c306a66038f439645b5fc8b82565b5519b439dc840823fa4401d01d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/8-to-9-hours.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:05:28 GMT
etag: "3462-6388c2b8-415e898c62b10df0;;;"
accept-ranges: bytes
content-length: 13410
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/5-hours-or-less-I-dont-work.jpeg.webp
31.220.108.5200 OK 9.4 kB URL HTTP/2 bakehuge.com/wp-content/uploads/5-hours-or-less-I-dont-work.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dd339a62b1679de88ed825859e874000
e92cd0c93deb19bfb222e234b2200fb6c2adb595
d05b24f78dbdcb58c7087799d7c614d6c21a133f02fd7345769410c901ae6cff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/5-hours-or-less-I-dont-work.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:04:47 GMT
etag: "248a-6388c28f-ba90f63401685a24;;;"
accept-ranges: bytes
content-length: 9354
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Doctor.jpg.webp
31.220.108.5200 OK 7.7 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Doctor.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7522469309098e02615d5d4a6bf804ab
23757173fe4483d62bdb11fc3a7b568d84d07edd
1fc153494c2cd74c927ab7eae3f4443bd4c6ca26596509dd000699006becee1f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Doctor.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:45:13 GMT
etag: "1e2c-6388bdf9-a75697baf75ca866;;;"
accept-ranges: bytes
content-length: 7724
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Politician.png.webp
31.220.108.5200 OK 13 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Politician.png.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c3591efc2b7292fc42239653101850c7
00300f01d5bd7749115593a57096a8fccb194929
729e34ae1c06ca8e068a5a03a7eeebe091cda0e122cccd3dee0f1713ba49057d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Politician.png.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:44:56 GMT
etag: "31de-6388bde8-127dec772b931286;;;"
accept-ranges: bytes
content-length: 12766
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Lawyer.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Lawyer.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac10d85f24a004378fc221fbcf76678c
47fbd8dcdfbacb464ad7d69bb6f6124dde559c26
21c5e339edee2b2a29da5400e67a3f4db5ceed502d9ec0352b76389d9af455d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Lawyer.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:45:05 GMT
etag: "2ada-6388bdf1-ab47e20c82502f43;;;"
accept-ranges: bytes
content-length: 10970
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-do-not-enjoy-crowded-areas.jpg.webp
31.220.108.5200 OK 16 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-do-not-enjoy-crowded-areas.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6fea4509a0038e8217290d355a0bfed1
2231c4a15dbe7c123ed5903076d50bdb2c984a78
5e6d089e1f82f97ae4e5b22cf2298f5046caf6c312574743c261e6916ed6d595
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-do-not-enjoy-crowded-areas.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:50:21 GMT
etag: "3c96-6388cd3d-f1eccb82e499d26;;;"
accept-ranges: bytes
content-length: 15510
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-am-indifferent-to-crowded-areas.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-am-indifferent-to-crowded-areas.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cd1a89e56a01080f6cd256a88265d174
10ccffee8d65b301ca95d13b61af25d3d79b330d
7175676212c2bb206a050c60923909a3fbcd2863618138369b1cb7afc8498b9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-am-indifferent-to-crowded-areas.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:50:14 GMT
etag: "2972-6388cd36-96dda8b251b0a879;;;"
accept-ranges: bytes
content-length: 10610
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-dont-get-involved-unless-I-have-to.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-dont-get-involved-unless-I-have-to.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aef91cf28debf24d5404db2e1a4ac3fb
bf62e11ea1ef2a9ddeb928b4ab66350bfa9a1d4f
fc2ae35ab914f65052bd9ca490af9ec02e3ccbd009d33aa272a9ffac9c9fba93
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-dont-get-involved-unless-I-have-to.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:26:05 GMT
etag: "2ba4-6388b97d-b2cf77828e03e47b;;;"
accept-ranges: bytes
content-length: 11172
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Yes-1.png.webp
31.220.108.5200 OK 13 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Yes-1.png.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c3591efc2b7292fc42239653101850c7
00300f01d5bd7749115593a57096a8fccb194929
729e34ae1c06ca8e068a5a03a7eeebe091cda0e122cccd3dee0f1713ba49057d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Yes-1.png.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:26:14 GMT
etag: "31de-6388b986-3dc2e8add152b04a;;;"
accept-ranges: bytes
content-length: 12766
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/No-21.jpg.webp
31.220.108.5200 OK 5.0 kB URL HTTP/2 bakehuge.com/wp-content/uploads/No-21.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 01fe374afae41e16552defe0e9ea8d19
ea7c2b768ffff4e4580020d3aae223f4492d1745
f55fbe58bd48c66611817f056aa5a3ee794b632bbde10af71af5ad0151eafdd4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/No-21.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:15:46 GMT
etag: "13ae-6388b712-fc9562831ad3abf1;;;"
accept-ranges: bytes
content-length: 5038
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-sometimes-get-involved-in-politics.jpg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-sometimes-get-involved-in-politics.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cd1a89e56a01080f6cd256a88265d174
10ccffee8d65b301ca95d13b61af25d3d79b330d
7175676212c2bb206a050c60923909a3fbcd2863618138369b1cb7afc8498b9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-sometimes-get-involved-in-politics.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:25:58 GMT
etag: "2972-6388b976-e9207ad77b44bd41;;;"
accept-ranges: bytes
content-length: 10610
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Pork.jpg.webp
31.220.108.5200 OK 14 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Pork.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0f4cd932cf01a56fbc3958ebd122df1e
e6b1ed49adec6ec5d7dc357c8d4a24771f7b146f
187787d2358b3a07131f1e9eae6ecce0d138910a6c2ed6de463154f4b72a7cf2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Pork.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:30:53 GMT
etag: "3748-6388c8ad-cdbab7d422d499f8;;;"
accept-ranges: bytes
content-length: 14152
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Red-meat.jpg.webp
31.220.108.5200 OK 14 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Red-meat.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7eca204cae614eb2ba4e9b580deaf02a
1bfa77b5cfd66a66be08ca0e27b082ffd4096ddd
ee47b486b235b1932e48b0765a78b2079cba812391193731916f58e518b257a6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Red-meat.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:30:01 GMT
etag: "34c8-6388c879-f5610433f9af954c;;;"
accept-ranges: bytes
content-length: 13512
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Fish-Chips.jpeg.webp
31.220.108.5200 OK 11 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Fish-Chips.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d272471be170fbf222ea66d4761cab3f
317b27b8d7fcb5f4eccb2b78c3665372079ff7ac
c713479be26bf4ad8c1c888f43aba1a39d20a8e9c512ca34520f3be499802914
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Fish-Chips.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:30:08 GMT
etag: "2c56-6388c880-87620be81c58e042;;;"
accept-ranges: bytes
content-length: 11350
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Out-of-the-options-below-which-is-the-most-important-to-you.jpeg.webp
31.220.108.5200 OK 31 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Out-of-the-options-below-which-is-the-most-important-to-you.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x1067, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a7c600bb5b477531ea0984c25d6ca2d8
df716533c44f9b208ea0bfc537496e438817ac25
6cd628120b9bd52c8440729a526510dde92ad1bc69ce40321fb727fe09536f73
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Out-of-the-options-below-which-is-the-most-important-to-you.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:06:56 GMT
etag: "7a92-6388b500-b84827b6e49aeef;;;"
accept-ranges: bytes
content-length: 31378
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Riding-a-bike.jpg.webp
31.220.108.5200 OK 17 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Riding-a-bike.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 41ff05c89f5df2f4280accfc0e30c710
2acf57f8625bf9fac30897a78cb09f4c7f2f199e
c558636cb64bbe673cb280c4f2d4f02618459f32ff419bcc2c4e653dc2b41547
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Riding-a-bike.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:07:13 GMT
etag: "4316-6388b511-657dfd5eaf8dd0c5;;;"
accept-ranges: bytes
content-length: 17174
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Family-gathering.jpg.webp
31.220.108.5200 OK 16 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Family-gathering.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash feca1d57afa7f98ff3f6437dbdd77436
c13d5b5a54c73b14c1b4955bda68945f0a3bacad
33e97fb3a6ec4954ff7f0ea7bc19fb1351311076bd56210b148aa032a04e225f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Family-gathering.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:15:36 GMT
etag: "403c-6388b708-9d1156d2eec3d1dc;;;"
accept-ranges: bytes
content-length: 16444
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Apartment.jpg.webp
31.220.108.5200 OK 29 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Apartment.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d6b224bdbe4beed1512d0bb2fb88d8be
d75e84444db73480c8864e24f5c4e844c28f0d55
9726687ec5e88adea452e086e1f820c6de1153ed0ad60314f04560a13ef03f8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Apartment.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:46:05 GMT
etag: "72be-6388cc3d-4c1a4d82ca831dfa;;;"
accept-ranges: bytes
content-length: 29374
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Mansion.jpg.webp
31.220.108.5200 OK 9.5 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Mansion.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 836e3e7a46ea4f59c9c666caaf0a9add
190b91e386c97c5173b1fbf0ca08d23d77c667dc
8a7c66dfb602a8e18c226580431151ea16c07ff0e7e860500d29fcc34307bc3d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Mansion.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:45:32 GMT
etag: "2502-6388cc1c-ce0a2eba9e5b6179;;;"
accept-ranges: bytes
content-length: 9474
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Farmer.jpg.webp
31.220.108.5200 OK 19 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Farmer.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3b1fd7b62a12332f3f5299215c8e741e
c103a8fd183eafc8e7cef8454db4dd6549ff7800
5c58399283a1d650e21553ddd292641b32bd083d93f3c2227f422bd6fde803ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Farmer.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:45:20 GMT
etag: "4a12-6388be00-70eba24d81eda880;;;"
accept-ranges: bytes
content-length: 18962
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Crowded-areas-frighten-me.jpg.webp
31.220.108.5200 OK 18 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Crowded-areas-frighten-me.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a01d22ea61484dab6d2771f346b2f5e7
fa7baf8eb56a791c6774904dd9de34d2edd58b5c
27b9c56f349880c66b0a4d418005354b37393e692f75324d1f545419db7393f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Crowded-areas-frighten-me.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:50:07 GMT
etag: "473c-6388cd2f-c41893753e203597;;;"
accept-ranges: bytes
content-length: 18236
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/I-enjoy-crowded-areas.jpeg.webp
31.220.108.5200 OK 28 kB URL HTTP/2 bakehuge.com/wp-content/uploads/I-enjoy-crowded-areas.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4d0393774e279f8c885767c8a10a244d
f1abe9e120865ea0bf28167e7cd91e48dae73ebd
2fa4bf4a8d58289317a407d5bcc0990f370102b75274cec99a8676cf47136710
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/I-enjoy-crowded-areas.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:46:43 GMT
etag: "6d10-6388cc63-83f723b7fa758947;;;"
accept-ranges: bytes
content-length: 27920
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Lentils-and-vegetables.jpg.webp
31.220.108.5200 OK 24 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Lentils-and-vegetables.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5ca60cb998bddfbd9063b3d0000427a8
c322c19e1e637757ddf0a549b73319f0a6bd3a98
121df8ed66a588768e6252f2da1c3fab8fcc24c5a51fce3d8f0c280727fe28c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Lentils-and-vegetables.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:30:15 GMT
etag: "5fb8-6388c887-23768a873a32a71c;;;"
accept-ranges: bytes
content-length: 24504
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Choose-your-favorite-flower-or-plant-from-the-options-below..jpg.webp
31.220.108.5200 OK 62 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Choose-your-favorite-flower-or-plant-from-the-options-below..jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f70f90013cfb11209b06618bdbfe7824
d9cd359f05b326287f489b7f46fd693c3d067433
09fca332cfc0677b82c50822327b1edc9cae9dc2451aaae354ceb099250b534f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Choose-your-favorite-flower-or-plant-from-the-options-below..jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:40:08 GMT
etag: "f3c2-6388bcc8-480c34831c24039b;;;"
accept-ranges: bytes
content-length: 62402
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Seasonal.jpg.webp
31.220.108.5200 OK 34 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Seasonal.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2df8df66513cc424ecbd84a73e27c03c
b55233f855094dcf83a4bed5561258ae6f4d6ad8
66a072a047b6f3e1125b3dba18ef48c6ae8716d68b9db667ed60f80090d635b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Seasonal.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:20:00 GMT
etag: "8562-6388c620-987b89128ff45adc;;;"
accept-ranges: bytes
content-length: 34146
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/In-a-typical-work-day-how-many-hours-do-you-work.jpeg.webp
31.220.108.5200 OK 24 kB URL HTTP/2 bakehuge.com/wp-content/uploads/In-a-typical-work-day-how-many-hours-do-you-work.jpeg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1520x884, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a311902ab2683533a70f129bfe79e915
65c8d2a5c6768c0de55bfbf9c71f2e725a05784e
0c6dbcb0be3ef830f8dc56f85d1506a22ae994db261135346b4366af2dbc60f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/In-a-typical-work-day-how-many-hours-do-you-work.jpeg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:11:44 GMT
etag: "5c42-6388c430-f955a228f188d52a;;;"
accept-ranges: bytes
content-length: 23618
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0
31.220.108.5200 OK 428 kB URL HTTP/2 bakehuge.com/wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65350)
Size 428 kB (428515 bytes)
Hash d7148f8cdb8808c0e911ea9f9553eed3
547bc4cfff3fb0cb72aa2c8e435b1bbe1c9ed925
f622c64b6a7540cab75d2e5da697307af8a43f3b370fba4ad69f5cc149d017d2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/go-viral/public/js/fontawesome.min.js?ver=1.8.0 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Sun, 04 Dec 2022 07:29:55 GMT
etag: "123dba-638c4c73-b9e6a37bcb4aebf6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 428515
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Which-of-these-meals-sounds-the-most-appealing-to-you.jpg.webp
31.220.108.5200 OK 62 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Which-of-these-meals-sounds-the-most-appealing-to-you.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x1066, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e1f9cce2355534c6b2d11e076f8191d2
29f289ed685a06b2f5fcde3b371082a4880c7d24
adf94b20b0eb144f3f0d05db7dee5ba7e904b2f43fe8623685214bd7e3573edf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Which-of-these-meals-sounds-the-most-appealing-to-you.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:30:35 GMT
etag: "f35e-6388c89b-be4f696181b7850e;;;"
accept-ranges: bytes
content-length: 62302
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Do-you-enjoy-traveling-to-other-countries-or-do-you-prefer-to-stay-close-to-where-you-live.jpg.webp
31.220.108.5200 OK 103 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Do-you-enjoy-traveling-to-other-countries-or-do-you-prefer-to-stay-close-to-where-you-live.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x1066, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 103 kB (102946 bytes)
Hash 0c15a223fc03d65565ca7fa6fbb38f97
7f580bf129c02e6be9d633affe978dd502364268
e180122433e08fa56921ce8f2b76d3e83c4b910495f6c3336cd48ba1862f609e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Do-you-enjoy-traveling-to-other-countries-or-do-you-prefer-to-stay-close-to-where-you-live.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:05:10 GMT
etag: "19222-6388c2a6-ea002db285d9a87d;;;"
accept-ranges: bytes
content-length: 102946
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Pick-an-activity-from-the-list-below-which-sounds-the-most-appealing-to-you.jpg.webp
31.220.108.5200 OK 131 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Pick-an-activity-from-the-list-below-which-sounds-the-most-appealing-to-you.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x1140, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 131 kB (131060 bytes)
Hash 7383d46fa9be1ca1c1841765a8036c11
b60d7a30a6de1c0db14e3a16e9c3445f88a98a4a
051011f0697b1d89b201ce551438afe5b34706dd9db906a08a1744a227b70b33
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Pick-an-activity-from-the-list-below-which-sounds-the-most-appealing-to-you.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:15:12 GMT
etag: "1fff4-6388b6f0-6bb7504318301e45;;;"
accept-ranges: bytes
content-length: 131060
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Do-you-prefer-hanging-out-with-a-small-group-of-friends-a-family-gathering-or-a-large-party-of-acquaintances.jpg.webp
31.220.108.5200 OK 122 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Do-you-prefer-hanging-out-with-a-small-group-of-friends-a-family-gathering-or-a-large-party-of-acquaintances.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1640x1093, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 122 kB (122516 bytes)
Hash 4750153d50f2f831e7f93ce3a8a91659
c5c92a81eac9d5e035cbd36533749541346494c4
47ab2bdef93b099c07133b9f675f917c94461d055cb2d19e8b9ca57e904b01a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Do-you-prefer-hanging-out-with-a-small-group-of-friends-a-family-gathering-or-a-large-party-of-acquaintances.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:24:48 GMT
etag: "1de94-6388b930-e1d81b298338847b;;;"
accept-ranges: bytes
content-length: 122516
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/What-type-of-home-sounds-the-most-appealing-to-you.jpg.webp
31.220.108.5200 OK 146 kB URL HTTP/2 bakehuge.com/wp-content/uploads/What-type-of-home-sounds-the-most-appealing-to-you.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1244x824, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 146 kB (145490 bytes)
Hash 8e7b907c2deda48c6a36b1e467431620
9ca8b7957cf61415e55301479427594ddb99b06d
2a51aa6be146f5dcd35919ccf7fe0a4a38f68345da9e76ac71fa4758cf18b7d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/What-type-of-home-sounds-the-most-appealing-to-you.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:46:28 GMT
etag: "23852-6388cc54-7a6055aa31f43ba9;;;"
accept-ranges: bytes
content-length: 145490
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Do-you-consider-yourself-someone-who-enjoys-being-involved-in-politics.jpg.webp
31.220.108.5200 OK 100 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Do-you-consider-yourself-someone-who-enjoys-being-involved-in-politics.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1160x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 45547ff115db653b25494cce89d9c5f3
d2ec960cd73fbfdc9a54f2bb5f76bb82bfc2f69f
5c7f95841b3cef8ffdea55f9377ee57983f2ec319a56e63ce9b49bdba2964158
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Do-you-consider-yourself-someone-who-enjoys-being-involved-in-politics.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:29:53 GMT
etag: "1852e-6388ba61-bbd025a38428c69f;;;"
accept-ranges: bytes
content-length: 99630
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Can-We-Guess-Your-Nationality-In-A-Past-Life.jpg.webp
31.220.108.5200 OK 119 kB URL HTTP/2 bakehuge.com/wp-content/uploads/Can-We-Guess-Your-Nationality-In-A-Past-Life.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x630, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 119 kB (119022 bytes)
Hash ee5c6a10deda42bbacd29c0f1bfbabd6
f91cf3d192262dc534462df5c7c4928b29b9efdd
d2f7ff5783cee0a80f3cbe1a8f82ec567e3082ec1c1b5baa75ac2325d0c31f4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Can-We-Guess-Your-Nationality-In-A-Past-Life.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 13:35:30 GMT
etag: "1d0ee-6388ada2-3fd9b4072c19f649;;;"
accept-ranges: bytes
content-length: 119022
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/If-you-had-to-pick-one-what-type-of-career-sounds-the-most-appealing-to-you.jpg.webp
31.220.108.5200 OK 133 kB URL HTTP/2 bakehuge.com/wp-content/uploads/If-you-had-to-pick-one-what-type-of-career-sounds-the-most-appealing-to-you.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1567x1111, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 133 kB (133002 bytes)
Hash b932a8bebda3c3f4f471d99c84c241d8
70e7f6fcac00bc70b09f88bfb957e11059a0b24f
2bb7535855e8c395b87eae7b2818d4d34548790d69e095e49f017f368e6f64c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/If-you-had-to-pick-one-what-type-of-career-sounds-the-most-appealing-to-you.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 14:50:16 GMT
etag: "2078a-6388bf28-f628156caf63b278;;;"
accept-ranges: bytes
content-length: 133002
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/How-do-you-feel-about-living-in-a-crowded-area.jpg.webp
31.220.108.5200 OK 311 kB URL HTTP/2 bakehuge.com/wp-content/uploads/How-do-you-feel-about-living-in-a-crowded-area.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x1001, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 311 kB (311386 bytes)
Hash a8ea4d2e62136b3b54ff19c722d9c861
d7fb4b2e6dddc3d2aa0a253501e67220471d8b32
25729f270409aa8b7b810bbf7dd0f618ebc06deadc692d1f06b68600cc1f7227
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/How-do-you-feel-about-living-in-a-crowded-area.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:50:50 GMT
etag: "4c05a-6388cd5a-838990da089e2ea3;;;"
accept-ranges: bytes
content-length: 311386
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/plugins/litespeed-cache/guest.vary.php
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/litespeed-cache/guest.vary.php
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
POST /wp-content/plugins/litespeed-cache/guest.vary.php HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
Origin: http://bakehuge.com
Connection: keep-alive
Content-Length: 0
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:46:59 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/litespeed-cache/guest.vary.php
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 564 B IP 216.58.211.3:0
Hash de4d08f611c395482c5a1f622cf7bd16
521b26071a7fb9dac14d819a05a0c26aa36a6a40
36f9f4b02ceff24c269580b5d3ed5982740ea7d55c995bc470715f89ed693570
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:46:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.35200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bakehuge.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 199008
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bakehuge.com/wp-content/plugins/litespeed-cache/assets/js/css_async.min.js
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-content/plugins/litespeed-cache/assets/js/css_async.min.js
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/litespeed-cache/assets/js/css_async.min.js HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:47:00 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-content/plugins/litespeed-cache/assets/js/css_async.min.js
bakehuge.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:47:00 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
bakehuge.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
31.220.108.5302 Found 683 B URL HTTP/1.1 bakehuge.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:47:00 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Sun, 04 Dec 2022 16:26:16 GMT
Date: Sun, 04 Dec 2022 13:47:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Sun, 04 Dec 2022 16:26:16 GMT
Date: Sun, 04 Dec 2022 13:47:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Sun, 04 Dec 2022 16:26:16 GMT
Date: Sun, 04 Dec 2022 13:47:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Sun, 04 Dec 2022 16:26:16 GMT
Date: Sun, 04 Dec 2022 13:47:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vNP2rQwmWTntetjJyjonO8N_YOBqvQuZUm42BWX7c1GoX7jASOIpCg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:49:42 GMT
age: 57438
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14dcca2a9c4792d835ee709bcd947402
1d702df3a64258628f4124eafd580695f2d350af
da01dcd8fef7c50bdb6f7a8a6a4955694092f479df3dba72f7fa69d7280d07b2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d571e0e-b14e-436b-8156-2e49aad75d4f.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16143
x-amzn-requestid: dc86fad4-4e53-42c9-9b0a-5e4d2cfcd087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGyLGqmoAMFnaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a7-0ea324b31e8c6578098b8ab9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KHd4ajJWl-8TDH5HGbkuJXI4NL6I83IwSUBKzfq85cxpyRH_LGl6OA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 05:55:20 GMT
age: 28300
etag: "1d702df3a64258628f4124eafd580695f2d350af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: z5uqgjB-Bsl0U55a8aFi37cpJ65Vnbjm6bJ2GnMpaO7RXsMZsOCbPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:44:01 GMT
age: 57779
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 027480c06cd67621f373c6765dafee4d
9f80bb7ca6f699d88eaec2248dec508c589fe994
f69a0d6bd6e79d8fa7f2f15df11237c0a8b04d45af3cd5870eeef86d18f553bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3af2e495-85ff-410f-8418-e683c7f84bcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7728
x-amzn-requestid: 9f37e7a6-1f00-4a81-9b14-962fd0b6cdf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMEJxoAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-4a4cce217327b44525ea1e98;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ztC4S0WeA3ft_9JafrL6fInXo4jwkb0cTWUx4Z8L2uz3EWQS-d6F5A==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 22:08:25 GMT
age: 56315
etag: "9f80bb7ca6f699d88eaec2248dec508c589fe994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:42:39 GMT
age: 57861
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2636f91bb8fa4d9bb7bef114c248a9ae
8637105f41058bc0d2b259d462b560881928adb6
3d93fd8fcf1af31d00ccbd453142dbea5f2b91d7f58373095943ed40a31ed1f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61cc2744-b517-4404-bfa2-25fadadfa3f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10431
x-amzn-requestid: f79ab5e7-8c1b-4827-a531-aaa19c1d80aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsCGEwxIAMF34g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc073-6358d2950955884c470c0a89;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQ7xh995cd1UVi3z42EVZGjQjHLLvtAP5BBC-xLEEGr4mEiXS6fC-w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 21:47:06 GMT
age: 57594
etag: "8637105f41058bc0d2b259d462b560881928adb6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
23.38.201.81200 OK 5.3 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 23.38.201.81:0
File type ASCII text, with very long lines (16574), with no line terminators
Hash 5cdda5ed80a4ee13f700ae502f7cd4ec
0e6aa932abf3c56561a686aa3e8d069aaa3ca228
d54fc3e1792330cc768902f861f0a79ecffbfd23b8db14f354e8fcefd1c831c1
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "fe80c55f1e1387116ff9765261ed192c:1669645506.686439"
Last-Modified: Mon, 28 Nov 2022 14:22:05 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sun, 04 Dec 2022 14:07:00 GMT
Date: Sun, 04 Dec 2022 13:47:00 GMT
Content-Length: 5269
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bakehuge.com/favicon.ico
31.220.108.5302 Found 683 B IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 6371befc85069a96b0cb3c52e754a55a
de3def799f60ce2a16721687937ffb2a3f9bd3ae
db6f3663ecb5b124f3c02ce15691739fe69888b7ed6112f03062489470517f77
GET /favicon.ico HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/can-we-guess-your-nationality-in-a-past-life/
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 683
date: Sun, 04 Dec 2022 13:47:00 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://bakehuge.com/favicon.ico
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.130200 OK 28 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (40252)
Hash 0e7a2461e70ed42f6cc7c720cfced4ad
7ad5148cf59cc9107b6427d53186c42ac39cb3b3
3c7e2c5a4b8e95b6e7f120c93edde5068f09e47f98f9f247f5974e1d6f2d1df6
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27506
date: Sun, 04 Dec 2022 13:47:00 GMT
expires: Sun, 04 Dec 2022 13:47:00 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1411 / 979 of 1000 / last-modified: 1670022376"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2dabd839729e9b0fb2558253d850126b
64f617aa0afb52168ef3519a4cf9829ac61ee007
1a47e4d0efdac6fbec990e3e168bfdfe615ff8953158773e8b1940d4d91eee18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.outbrain.com/cachedClickId?marketerId=006e6546e78a1ce97ce390b94179d6731a
64.202.112.255200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=006e6546e78a1ce97ce390b94179d6731a
IP 64.202.112.255:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=006e6546e78a1ce97ce390b94179d6731a HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:00 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 0edd78455d40f137bc5a5054b33c1268
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=006e6546e78a1ce97ce390b94179d6731a&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&optOut=false&bust=08755348501299216&referrer=
64.202.112.255200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=006e6546e78a1ce97ce390b94179d6731a&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&optOut=false&bust=08755348501299216&referrer=
IP 64.202.112.255:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=006e6546e78a1ce97ce390b94179d6731a&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&optOut=false&bust=08755348501299216&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:00 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: dfdedd8eb50b6452765fefcf92a009d9
content-encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash f54a71942ab5d7fdc54672cf84aa76db
e03db706ad371c93ddd3cc4a3e4c329777bb5f4b
87453ee6a206085c9b82594123a30bf59f7354733d19f21e388dea70768198c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=bakehuge.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=bakehuge.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bakehuge.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 04 Dec 2022 13:47:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=bakehuge.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=bakehuge.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=bakehuge.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 04 Dec 2022 13:47:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/sdk.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 04 Dec 2022 13:47:01 GMT
Connection: keep-alive
Content-Length: 0
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 663979bbd831a40bec8611cfac8d77af
aa43c96676a33100f244e6772e37adc2b6f89b76
60c21027da288e857f546b531dd226d81206bfa85a35985b0e1587a68dec4d5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f54a71942ab5d7fdc54672cf84aa76db
e03db706ad371c93ddd3cc4a3e4c329777bb5f4b
87453ee6a206085c9b82594123a30bf59f7354733d19f21e388dea70768198c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 913
Cache-Control: max-age=105823
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 19:10:44 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
216.58.207.193200 OK 2.7 kB URL HTTP/2 1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sun, 04 Dec 2022 13:47:01 GMT
expires: Mon, 04 Dec 2023 13:47:01 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash aefca156e451567c6dc3b3e26046bde4
1f5a1b79f47f9ccc81c494b364305898e55d4067
f18f8a83ca05f376d5f88c35d378a6f7fa3c15a76b4184675a7d3626c12b60d7
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9badb9a616bb424caca372cffc005318
etag: "8595ae7aa770f95c37382c6cbf02ab54"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 04 Dec 2022 13:59:30 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: rvyhVuRRVnxtw7PiYEa95A==
x-fb-debug: +z2yEpq0CI8xKpkqUL6tCNFloD0lX63wWaSZGj1VRXxmdgYzpWPMKOUY9AItH9rvWdi4+WZxoHJ5HCfqPnLv0w==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Sun, 04 Dec 2022 13:47:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd0b48347644ddc60fb16b04140cfcb7
ef8d6c8e3c979e98c82655290150aa14fe5d44d1
f3d27c16653ed979a7cce2dc6239a48a86c7dab2fc34949b540802e50b05275a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 913
Cache-Control: max-age=105823
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Etag: "638b9ba3-1d7"
Expires: Mon, 05 Dec 2022 19:10:44 GMT
Last-Modified: Sat, 03 Dec 2022 18:55:31 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0d1416e7c639fd6e191effd9d38d6fa6
591f3014256e363afd5f67329c3a7eee41700606
b65ca783afb80e63e3dd0439259e0561746515e061be06d7df581da2dae6ac50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1475
Cache-Control: max-age=113541
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Etag: "638bb797-117"
Expires: Mon, 05 Dec 2022 21:19:22 GMT
Last-Modified: Sat, 03 Dec 2022 20:54:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
connect.facebook.net/en_US/sdk.js?hash=14a35762fda73971b4b8823f44c141d6
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=14a35762fda73971b4b8823f44c141d6
IP 31.13.72.12:0
File type ASCII text, with very long lines (13245)
Hash 25939f055676f0c7974e14eb90336151
0dda4bf86ab45d51f247cd7158cc0fb6ff1e1d03
7d423fb94cbcded77d208041128d303051ce251851d2a1b67cb34b71a539469a
GET /en_US/sdk.js?hash=14a35762fda73971b4b8823f44c141d6 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://bakehuge.com
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1bbdd154559986124a459011613d8ac1
etag: "41ee229b5010ddf8579c9da74defdf4d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 04 Dec 2023 11:19:59 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: JZOfBVZ28MeXThTrkDNhUQ==
x-fb-debug: /NjMA3khr0fotMigpJ4L/gEMffPCR85ydQYlpnValD0+S1ijN2hNA8SA50rxEnph5zp0dfklcvN0otBSAby9bg==
priority: u=3,i
content-length: 86914
x-fb-trip-id: 1904183273
date: Sun, 04 Dec 2022 13:47:01 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0d1416e7c639fd6e191effd9d38d6fa6
591f3014256e363afd5f67329c3a7eee41700606
b65ca783afb80e63e3dd0439259e0561746515e061be06d7df581da2dae6ac50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1475
Cache-Control: max-age=113541
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Etag: "638bb797-117"
Expires: Mon, 05 Dec 2022 21:19:22 GMT
Last-Modified: Sat, 03 Dec 2022 20:54:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=UA-244863259-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-244863259-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 4d509c6189ed0acfb7b11f74607f1e66
9b343a7b9bf9aec64a141e9fe7823a0ba946eb7d
6cb5265b71bd1893b97ba24732dea3480191547771808252c3a7ddbaafe17223
GET /gtag/js?id=UA-244863259-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Dec 2022 13:47:01 GMT
expires: Sun, 04 Dec 2022 13:47:01 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Dec 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43637
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c4319f54a5675ee9acda96c58f97ac6
210ea86db1836d430b321d59b4bd1b016c914f22
cb20ad3ec895ed3a2ae9b1a90dda6b7cc174d8851f3a15ba054a435746cbdc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
waust.at/s.js
104.26.4.7200 OK 3.5 kB IP 104.26.4.7:0
File type ASCII text, with very long lines (8560), with no line terminators
Hash 08283f674ed2a3a87b0ca0b64950ef28
1d6018c4a9104d337726cfe9f67b43ff37acc0cb
442e1c2e9e1692d86c6c4df3c68167fbddb4ec4ec7fa90258fd683f5a5f3578d
GET /s.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:01 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 01 Dec 2022 21:21:12 GMT
etag: W/"63891ac8-2170"
expires: Mon, 05 Dec 2022 13:16:11 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 1850
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c9UEnNpPovdUObR33Hw%2F%2Fnu6aHTUvnSynIMy%2BYMT637lG1pR7blRtZS7GY2Lb98832v8EmqeV%2F5Onl2bUFEgEGVl%2BbbJ76K8rZ%2FnNxl2cAjmzS%2B3AUhuxOUg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7744fdd868d3b50f-OSL
alt-svc: h2=":443"; ma=60
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 04 Dec 2022 12:41:08 GMT
expires: Sun, 04 Dec 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 3953
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=006e6546e78a1ce97ce390b94179d6731a&apiObjVersion=1.1&obtpVersion=2.0.5&name=Content-view&dl=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&optOut=false&bust=08459815205250254&referrer=
64.202.112.255200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=006e6546e78a1ce97ce390b94179d6731a&apiObjVersion=1.1&obtpVersion=2.0.5&name=Content-view&dl=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&optOut=false&bust=08459815205250254&referrer=
IP 64.202.112.255:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=006e6546e78a1ce97ce390b94179d6731a&apiObjVersion=1.1&obtpVersion=2.0.5&name=Content-view&dl=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&optOut=false&bust=08459815205250254&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:01 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: ca7f200e53c9af810d6a36d5b997c388
content-encoding: gzip
s.w.org/images/core/emoji/14.0.0/svg/1f61f.svg
192.0.77.48200 OK 876 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f61f.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (876), with no line terminators
Hash a114d57f38f4921991a16893f9525421
925c26ff91dca1f6b09dd5e37c42e34dff3177cc
a11eeae26f41f7608002bfa82f7c33e678ecf44c7cf0da098ccb7bbb09ba1afe
GET /images/core/emoji/14.0.0/svg/1f61f.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:47:02 GMT
content-type: image/svg+xml
content-length: 876
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f308.svg
192.0.77.48200 OK 733 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f308.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (733), with no line terminators
Hash baa392758f065fa770e3a9063f91d33a
d2577d6f3d08e0881c683ce0e31c5385e21dec7a
555858f907bda45e059201a8a3d8910876ef8d830b9b82cfc0ca9aa55c7b029a
GET /images/core/emoji/14.0.0/svg/1f308.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 13:47:02 GMT
content-type: image/svg+xml
content-length: 733
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP 216.58.211.3:0
Hash c6bf40655d94cd2e68ab7f21f7b4aa7d
ad511cda42cedee44307a34071efe2a5f7b94804
19ef25b64194e2377f4623d7cb52cb3c79b3aaa5beded8576aca044514068c5d
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash cf8fa41ef602ae70ffca585b472e5a48
ee82688bae8ec454aefccccd51259d5efb26915c
f4b30ab9f60cbb23f30a89cd2161530019d664541ee595021b3031d91ff7289d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cf8fa41ef602ae70ffca585b472e5a48
ee82688bae8ec454aefccccd51259d5efb26915c
f4b30ab9f60cbb23f30a89cd2161530019d664541ee595021b3031d91ff7289d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
142.250.74.1200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/amp4ads-v0.mjs
IP 142.250.74.1:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 190bcb4c44fd9e0e93baa80c9b2535b8
97bda56ddc8d6a00d19e1747d63325051f3fd144
b7677f820f06329e357561f570729fe4110af4ac5fb741b97567e20a0f533301
GET /rtv/012211060024000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61592
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:54 GMT
expires: Tue, 28 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 502688
etag: "a2fca7132416d151"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
142.250.74.1200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-analytics-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (65534)
Hash c88b4e73b12307e42222d337bdd646a2
621233bf4e777b2d44b1bc143187111aca2fe718
ef6935537cd5a603b79bc98d4274b70ee5608955792523fc58e818c8ddbb7b48
GET /rtv/012211060024000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28809
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:54 GMT
expires: Tue, 28 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 502688
etag: "dd6615029de85e23"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash cf8fa41ef602ae70ffca585b472e5a48
ee82688bae8ec454aefccccd51259d5efb26915c
f4b30ab9f60cbb23f30a89cd2161530019d664541ee595021b3031d91ff7289d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cf8fa41ef602ae70ffca585b472e5a48
ee82688bae8ec454aefccccd51259d5efb26915c
f4b30ab9f60cbb23f30a89cd2161530019d664541ee595021b3031d91ff7289d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 1.3 kB IP 216.58.211.3:0
File type gzip compressed data, max compression\012- data
Hash cadcafd1f01cf32fe3ccf3d9e2d24f4d
be01948887dbbdf93edea900a9b11081994b3e51
f06d87a1c8da57cba645b4094d86e45bd663b6aa73dff1af1032b756ebbbcbee
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
142.250.74.1200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-ad-exit-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (14697)
Hash ae1a9f090984c448deb0629cc2304ee3
e601825ccec746695f370ed68fa33325152e0d9f
6a947bfcdeea64faa6c795caea11ee09dbe00f5d4003b7b9d47e4945c05ac1e4
GET /rtv/012211060024000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5218
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:54 GMT
expires: Tue, 28 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 502688
etag: "abd4378f71571d78"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
142.250.74.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-form-0.1.mjs
IP 142.250.74.1:0
File type Unicode text, UTF-8 text, with very long lines (41057)
Hash 2f873064835eed23708bde2a16830216
7559437b82b9b761e02549d8d51f9e3571e5ed2c
0f5d00ac674cc34652997f2e0dd7fb6eb1a5b22010989c35a81cd7a388c84fdd
GET /rtv/012211060024000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12946
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:54 GMT
expires: Tue, 28 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 502688
etag: "0bacd3f1ce38a7db"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 13dc85b9faf49e6a9bf32608b0fcf56d
2ded5a6b67364d3f7875ce1598683ac2c97937d0
7924016b948a369b3a0bcb336f32dd8f10b14893ba1d9437c4fc171190eb5899
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
142.250.74.35200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://bakehuge.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 20:35:00 GMT
expires: Thu, 30 Nov 2023 20:35:00 GMT
cache-control: public, max-age=31536000
age: 321122
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
142.250.74.1200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012211060024000/v0/amp-fit-text-0.1.mjs
IP 142.250.74.1:0
File type ASCII text, with very long lines (5046)
Hash 669c8592ef8f63e7404e45dd6ca56b71
3f6753966361bb86594193009c9097612c361064
d174ae2c0722ab8d4bf736f0200dc5b15d288f9500a706bb161b64f5a3b74f01
GET /rtv/012211060024000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1913
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:08:54 GMT
expires: Tue, 28 Nov 2023 18:08:54 GMT
cache-control: public, max-age=31536000
age: 502688
etag: "403438c4d550ee88"
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash cf8fa41ef602ae70ffca585b472e5a48
ee82688bae8ec454aefccccd51259d5efb26915c
f4b30ab9f60cbb23f30a89cd2161530019d664541ee595021b3031d91ff7289d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
whos.amung.us/pingjs/?k=5jrzwp3sdb&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&c=s&x=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&y=&a=0&d=2.285&v=27&r=2726
172.67.8.141200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=5jrzwp3sdb&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&c=s&x=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&y=&a=0&d=2.285&v=27&r=2726
IP 172.67.8.141:0
File type ASCII text, with no line terminators
Hash ebcf4f04ff2f4491611f36822f0aa2a7
9d3d142388a8458a145f1d098d71650173b3dad8
2b77935c3563e4de72af8a6c966635469584ad480730232a96c0f580e3f888ce
GET /pingjs/?k=5jrzwp3sdb&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&c=s&x=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&y=&a=0&d=2.285&v=27&r=2726 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:02 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7744fddb28d6b527-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1a9653386f48fc75aa2b65fcd80cc4d3
d63054c827e37e6a716b8772218ce172a8e3048c
707844ff7e5c9a7c695394339bb9b3d7df68e121bb5d651e624802a1b9cc692c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "707844FF7E5C9A7C695394339BB9B3D7DF68E121BB5D651E624802A1B9CC692C"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3245
Expires: Sun, 04 Dec 2022 14:41:07 GMT
Date: Sun, 04 Dec 2022 13:47:02 GMT
Connection: keep-alive
hal9000.redintelligence.net/zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D
178.63.52.121200 OK 4.1 kB URL HTTP/1.1 hal9000.redintelligence.net/zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D
IP 178.63.52.121:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1642), with CRLF line terminators
Hash e0576fd40f4e447cb011852cfaf22953
fe577e98eaf29ab2d7871505792a677e2024a314
026defd8f804c4250e7c68d5033a25b8891d65acb786223259fbe644a45d03e1
GET /zone/iy8ik46abdx9?subid=&gdpr=-1&gdpr_consent=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D HTTP/1.1
Host: hal9000.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:02 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4062
Connection: close
Content-Type: text/html; charset=UTF-8
t.dtscout.com/i/?l=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&j=
141.101.120.10200 OK 1.1 kB URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&j=
IP 141.101.120.10:0
File type ASCII text, with very long lines (2077)
Hash 8f3b7ce819fee038c67df64eff9d16cf
f22fd63b265b57fb92ded90cf309ab395aa73614
e2233ad8a16a2668fbdf8e145ffb0963d4ff9e48ddce559b9d885a22b4a29f47
GET /i/?l=http%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:47:02 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Sun, 04-Dec-2022 15:10:22 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sun, 04-Dec-2022 17:47:02 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1670161622; Domain=dtscout.com; Expires=Tue, 14-Mar-2023 13:47:02 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.477
expires: Sun, 04 Dec 2022 13:47:01 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=95s60STmNMg9tHaUv4sgWZV70v9X%2BpRZoVuhT7%2FQln3bAGoNcczoSzFbi2i%2FV9V%2FQ485tLdpiuZsobi%2BGe7xDMYgoIh5qdt81r7lmJZHL0pMbDLooTXgBQuYPhMeKYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7744fdd9ff9515f4-ARN
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash a4b2661f9faaf638f68d08191f11b9eb
93a120c099c114d90fd533168343641c6768e3fa
65fd78249b3277256ee56b23d213f0816412daa4c2028d2447a90bbc861af5ba
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:02 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 11:33:42 GMT
Expires: Sun, 11 Dec 2022 11:33:41 GMT
Etag: "93a120c099c114d90fd533168343641c6768e3fa"
Cache-Control: max-age=596198,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7744fddd5fb1b4ee-OSL
hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
136.243.149.243302 Found 0 B URL HTTP/1.1 hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0 HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Sun, 04 Dec 2022 13:47:02 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sun, 04 Dec 2022 13:47:02 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=6d0e36addbaf545e; expires=Sat, 04-Mar-2023 13:47:02 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
Location: request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
136.243.149.243200 OK 513 B URL HTTP/1.1 hal900030.redintelligence.net/request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash ff2cef1aec69e1f3edbec45776b81e5b
ba8c9ae314fbad9e76b0fa79b0d5aa71553c6d63
4045261b5f2dd91bfd1e02754ce0d61fb22e029e38cf48af6e08bc6cc9a3447d
GET /request.php?zone=iy8ik46abdx9&nw=20&renderingType=javascript&namespace=ba480031f9&subid=&uid=bc4255eb556d93c6&screenSize=1280x1024&screenSizeAvail=1280x1002&clientSize=300x250&scrollPos=0x0&extData[]=&envData=&gdpr=-1&gdpr_consent=&ud=&redirectClick=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fdbm%2Fclk%3Fsa%3DL%26ai%3DCztbz1aSMY5ahIaqS78EP0Nu58AXJuaKcabyvzc7VD_AuEAEgyryglwFgw4SAgJgYyAEJqQJEv7Qal6yxPqgDAaoE5QFP0J33I7vX2BUnBuX-zIuIXsZSWb74UMKsWehp90fA20dvNOSYNnsL1fBpuYkdzmlZjQtKbyp2jAYQCNjr3iiDmSUEA-6en9lAPCQYW7iSmUovFRAHEwwz6J4tW22n2Ruyy_L50WXiBG_GKuOd69eYZqEpD45G7Q9eWmx3DYBbZQ8lBaD8jGDjoOCFm_sNPbCsr6cW81szjGR00zm05NurFlmWKpbWP4tRtfZf_Z8Ntpoj2lG2Dq3D1WuyYg-aq6odCabbUzWMl16J-w8t2PFl0gaOC8nIMTTW1LMly9VlG03-Cu1kwATBvZT88wPgBAOQBgGgBk2AB6yt9Z8DqAeOzhuoB5PYG6gH7paxAqgH_p6xAqgHpKOxAqgH1ckbqAemvhuoB5oGqAfz0RuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIEQiA4YAQEAEYHTICqgI6AoBAgAoDmAsByAsBgAwBsBOcos0O0BMA2BMD2BQB0BUB-BYBgBcB%26ae%3D1%26num%3D1%26cid%3DCAQSSwDq26N9Cj5OmslFBBP5txufP5Rs9tFurLrCS-9v6zVFjPEQFzJpfdGvt-7DEpwnx2K4M7vV-U4-jZSus0-pmx-jmBzLtylvp8fOthgBIBM%26sig%3DAOD64_0C5UIGnuzfvN_7tznil74Zmbh8aA%26client%3Dca-pub-6321275352514463%26dbm_c%3DAKAmf-BNg86ItUad12CdcGRmLZBB6g7jMewQJKCbu8g-ibib5_0TfMQcOHQWruL3qXyrkBt2GWMtbt8S6TZomP3gil9bh87QlVXjHQxfgRhcOTKMXpSb2gpSDPe5e2l7uhI0GgGdC8piKn0bb8BpFbJA5k-qiTWBA7DES0H0WmBauuuxUaTRTso%26cry%3D1%26dbm_d%3DAKAmf-BaWI_RektG6ZwguOQx8E6cEThrolIy0J_stwnQRv653k5vhQlpnHQ6_feYSeVjIqj8LZe40ELN2NV58CQHf3cHDbk3Ac_yv1yX54rrA4gK22dCZUbRvayoTEoyfHslBOBmitdX5dniOkwB1hl7barpdPT6eiqHo3lkAdDSJLAmXmFunVSkE7lNb418qVPzCC-VfDh2xZfBjU-1M8jVhwRoy3f3A3_cw_mN8Dug8LBq_Z1uL0xIlWLLgCtUdhkFkhDFhXucRZpKjMpsQMfxSQinRPu7c6eM6N8-_qVozceGubNOJNwey71EMKS2ya18vNdIMV2JtVLFhpVWXBcxUXKaFfXr1S86CC9j6vYarG0GTYG4sOONnovjs2dmXo_ozQ79zkrpAtj5BLzemxD5eXTjqWqdvNDqBxHS6Mhhh0DX8Sr_IxARdLFgnLRJpXqWjaa2J8Bpb_91ROEfhJv_XsWN2RUpLeT1tD5CiXqLBTtEU_P3B6xRTMHY0mGbZdRzUDyuqSh0iqr5e_3bg_4-uy-xHIItkA%26adurl%3D&documentReferer=http%3A%2F%2Fbakehuge.com%2F&ancestorOrigins=null&random=5657598024551&isIframe=1&container=&adPos=0x0&adPosCheck=1x1&adtagId=0&uidRedirect=1 HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com/
Connection: keep-alive
Cookie: 8lcfmzhxc8d6_uid=6d0e36addbaf545e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:02 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sun, 04 Dec 2022 13:47:02 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8lcfmzhxc8d6_uid=6d0e36addbaf545e; expires=Sat, 04-Mar-2023 13:47:02 GMT; Max-Age=7776000; path=/; domain=.redintelligence.net; secure; SameSite=None
X-NEORY-SubId: 45949100065682904438320012163030
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 513
Connection: close
Content-Type: application/x-javascript; charset=utf-8
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&cu=https%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&cu=https%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&cu=https%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=bakehuge.com&_ss=5aw1e6ywdn&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=11yj&_cb=_dtspv.c
141.101.120.10200 OK 1.3 kB URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=bakehuge.com&_ss=5aw1e6ywdn&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=11yj&_cb=_dtspv.c
IP 141.101.120.10:0
File type ASCII text, with no line terminators
Hash 0b3c681ec40b28bd47ce7ffaa42d1573
e1fc4a059ede0eb81e9991185db44e8d70c0a963
5845551e58782a0caab3e0aa021fb6be2a0fe3b41e2a144b8338956e2b1e8fa6
GET /pv/?_a=v&_h=bakehuge.com&_ss=5aw1e6ywdn&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=11yj&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Cookie: m=1; oa=1; df=1670161622
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:47:02 GMT
content-type: application/javascript
x-t: 0.17
x-c: 0
expires: Sun, 04 Dec 2022 13:47:01 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HuKS7ifCzGtEsdTlgalrgrCWGIG%2Flq8%2B%2BiaFeAw%2Bu4x%2B4smJLiv25VWqdy80kYeohLicRc16h9egOfr62jC%2FBOBWBQewc%2BrpXRwRzp7lXK9Q%2Bl1aPergaWrhQS9iL%2Fs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7744fddc794615f4-ARN
content-encoding: br
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&cu=https%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&cu=https%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge&cu=https%3A%2F%2Fbakehuge.com%2Fcan-we-guess-your-nationality-in-a-past-life%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
hal900030.redintelligence.net/request_content.php?s=45949100065682904438320012163030&a=cc99e770
136.243.149.243200 OK 1.5 kB URL HTTP/1.1 hal900030.redintelligence.net/request_content.php?s=45949100065682904438320012163030&a=cc99e770
IP 136.243.149.243:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 54957cb1914f83ed545f5b0675711a9e
e3c9b5032e2619a391726fe3f9b3a7140b854871
6b5848cea528cb4fe6638c9eae7f50e60f381ea379f2bb68e0b8ec482a957796
GET /request_content.php?s=45949100065682904438320012163030&a=cc99e770 HTTP/1.1
Host: hal900030.redintelligence.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1918f2c5fb9bb1167fcac96e3fd46336.safeframe.googlesyndication.com/
Cookie: 8lcfmzhxc8d6_uid=6d0e36addbaf545e
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 13:47:03 GMT
Server: Apache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Sun, 04 Dec 2022 13:47:03 +0100
Pragma: no-cache
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1500
Connection: close
Content-Type: text/html; charset=utf-8
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg&t=Can%20We%20Guess%20Your%20Nationality%20In%20A%20Past%20Life%3F%20-%20Bakehuge HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!5jrzwp3sdb&dn=TC&cc=1&r=
67.202.105.34200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!5jrzwp3sdb&dn=TC&cc=1&r=
IP 67.202.105.34:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!5jrzwp3sdb&dn=TC&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Mon, 05 Dec 2022 13:47:03 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Sun, 04 Dec 2022 13:47:02 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
104.18.36.173200 OK 6.7 kB IP 104.18.36.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647)
Hash 1c19de1014ecbb64bf79594584b7e243
e2ab949e99c448f107245a0a39c10e0b30130e9f
5c80cda6336fe83e049aea16c899b4983fa70744beccddd14d75ee0c178c5c77
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:47:02 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 80459
expires: Wed, 07 Dec 2022 13:47:02 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7744fdddaf7ab4f4-OSL
X-Firefox-Spdy: h2
cdn.contentspread.net/24i/content/soberfb/EN/S-300x250.gif
85.114.131.233200 OK 71 kB URL HTTP/1.1 cdn.contentspread.net/24i/content/soberfb/EN/S-300x250.gif
IP 85.114.131.233:0
ASN #24961 myLoc managed IT AG
File type GIF image data, version 89a, 300 x 250\012- data
Hash d6ba1ff0393a5eb5224cf2416db7ba0b
c73aed3c96fd54b634cf2f38358fb59f99484ae0
fb805ea8e0e2123c713b4613ec92e55d7c11db579417ab8bdbd070d5c18e5104
GET /24i/content/soberfb/EN/S-300x250.gif HTTP/1.1
Host: cdn.contentspread.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hal900030.redintelligence.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 13:47:03 GMT
Content-Type: image/gif
Content-Length: 71110
Last-Modified: Mon, 23 Jul 2018 15:20:14 GMT
Connection: close
ETag: "5b55f22e-115c6"
Accept-Ranges: bytes
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0&img=https%3A%2F%2Fbakehuge.com%2Fwp-content%2Fuploads%2FCan-We-Guess-Your-Nationality-In-A-Past-Life.jpg HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0
67.202.105.31204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0
IP 67.202.105.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!5jrzwp3sdb&lm=0&ts=1670161620384&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sun, 04 Dec 2022 13:47:03 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
0.gravatar.com/avatar/68e951e8a2496ff8213901b4b8cd0770?s=80&d=wavatar&r=g
192.0.73.2200 OK 4.0 kB URL HTTP/1.1 0.gravatar.com/avatar/68e951e8a2496ff8213901b4b8cd0770?s=80&d=wavatar&r=g
IP 192.0.73.2:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash bbb3a6fb7f36ea6c04a00cd5b7b49c04
32b49b89ee28e1e7cec85b6ba3c4413b38bce2ab
bd9960cd1c2dfc5288dd542c06b8de2a0a984a1dbc071f3392597c32564845f2
GET /avatar/68e951e8a2496ff8213901b4b8cd0770?s=80&d=wavatar&r=g HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bakehuge.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Dec 2022 13:47:04 GMT
Content-Type: image/png
Content-Length: 3951
Connection: keep-alive
Last-Modified: Wed, 14 Sep 2022 13:36:19 GMT
Link: <https://www.gravatar.com/avatar/68e951e8a2496ff8213901b4b8cd0770?s=80&d=wavatar&r=g>; rel="canonical"
Content-Disposition: inline; filename="68e951e8a2496ff8213901b4b8cd0770.png"
Access-Control-Allow-Origin: *
Expires: Sun, 04 Dec 2022 13:52:04 GMT
Cache-Control: max-age=300
X-nc: HIT arn 4
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7c9e0bb25e8c28e8b10038806b0a7190
9fa6097aeb8eacde8ba7c9ab80a7a7d2405ae2bc
f4864000960be2f888ed7d2467f74130231fed6f56ad48ff15861f5769e95a58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 10e6e15302256ef8c19d96b7667c81da
8769f6eaf496de0d64e457e88d7c19945d1773d7
f094a350833142a956351be7446dcbf5480a128d24bddc2c09319a7b109d153f
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 04 Dec 2022 13:47:04 GMT
date: Sun, 04 Dec 2022 13:47:04 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-F4LBqlU3rX-XpaSsNdfVwg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/Which-is-your-favorite-sport-from-the-options-below.jpg.webp
31.220.108.5200 OK 0 B URL HTTP/2 bakehuge.com/wp-content/uploads/Which-is-your-favorite-sport-from-the-options-below.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/Which-is-your-favorite-sport-from-the-options-below.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:25:13 GMT
etag: "f31c-6388c759-6a9aacd0143351d8;;;"
accept-ranges: bytes
content-length: 62236
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/uploads/How-many-languages-do-you-speak.jpg.webp
31.220.108.5200 OK 0 B URL HTTP/2 bakehuge.com/wp-content/uploads/How-many-languages-do-you-speak.jpg.webp
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/How-many-languages-do-you-speak.jpg.webp HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: image/webp
last-modified: Thu, 01 Dec 2022 15:40:17 GMT
etag: "1581c-6388cae1-39dae56cab3c676c;;;"
accept-ranges: bytes
content-length: 88092
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
bakehuge.com/wp-content/themes/fox/js/theme.min.js?ver=4.9.1
31.220.108.5200 OK 0 B URL HTTP/2 bakehuge.com/wp-content/themes/fox/js/theme.min.js?ver=4.9.1
IP 31.220.108.5:0
ASN #47583 Hostinger International Limited
GET /wp-content/themes/fox/js/theme.min.js?ver=4.9.1 HTTP/1.1
Host: bakehuge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://bakehuge.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31557600
expires: Mon, 04 Dec 2023 19:46:58 GMT
content-type: application/x-javascript; charset=UTF-8
last-modified: Thu, 01 Dec 2022 12:17:28 GMT
etag: "344f5-63889b58-4895056ff652e083;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 54945
date: Sun, 04 Dec 2022 13:46:58 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 0 B IP 216.58.211.3:0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 13:47:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jsc.mgid.com/b/a/bakehuge.com.1386420.js
104.19.133.78200 OK 0 B URL HTTP/2 jsc.mgid.com/b/a/bakehuge.com.1386420.js
IP 104.19.133.78:0
GET /b/a/bakehuge.com.1386420.js HTTP/1.1
Host: jsc.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://bakehuge.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 13:47:01 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2342
etag: W/"aa2ca08b08a6ca1605eea89a84e88145"
last-modified: Wed, 23 Nov 2022 12:06:22 GMT
x-amz-id-2: 3veiuCzWIF/8KVSrymuq01SoKXDi1W2++PhFQQqyjSrGTRvVyEJOasgp/ZjVST8hpJ9+XXyPEYk=
x-amz-request-id: D2YTS4C71DR7J6VN
x-amz-version-id: vNh_mTZqpszuUYnUZotqPFYdjIIpj5ho
cf-cache-status: HIT
age: 3077
expires: Sun, 04 Dec 2022 16:47:01 GMT
cache-control: public, max-age=10800
set-cookie: __cf_bm=qK4F3Y6o8evUzHijCKYWkfYLasZCJK8dPOb6b6MBajo-1670161621-0-ASjOQwZH7+3MtYjX8yp3M4OdvMt+1K9tD9TBsEYJFqAa+FofnVt0LefolG7Qm3EboeaaFmhU3kqWk2kpTX7Cw7Y=; path=/; expires=Sun, 04-Dec-22 14:17:01 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7744fdd6bc5db511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2