8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

18.158.88.249:443

GET /0a510565-7829-410a-b05e-75364a46822a?c2=26233199&c1=affC1629864841aff7d82086d79561a208a478 HTTP/2.0
host: frookshop-winsive.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
accept-encoding: gzip, deflate

HTTP/2.0 200
server: nginx
date: Sat, 13 Jan 2024 05:30:27 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: 0a510565-7829-410a-b05e-75364a46822a-v4=sXUT1-7S19cfDT_m1DPwREy_97X_0B3fR1yrsL8lD8k; Max-Age=86400; Expires=Sun, 14-Jan-2024 05:30:27 GMT; Domain=frookshop-winsive.com; Path=/; Secure; HttpOnly;SameSite=None
set-cookie: cc-v4=eJt702Gt%2F4RV6c%2BM4Shobc5vYi%2BMAK4HM%2FPFSNVKsuPlw8yr%2BEzvtaLIoR6XXja5t1VGrnzukeWafIgkVNk%2FQ0bk59yA0uAfqLb35NszlLYe2uKQBMPj5gDxk75TOkD2m3L9sKcuYDymi7FJ45P3fg%3D%3D; Max-Age=31536000; Expires=Sun, 12-Jan-2025 05:30:27 GMT; Domain=frookshop-winsive.com; Path=/; Secure; HttpOnly;SameSite=None

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

204.79.197.200:443

GET /neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=af6393cb959d474992b88e0eba89f148&localId=w:540EFEE2-46B3-9BC5-3ED2-F59CCE5C5963&deviceId=6896190263018008&anid= HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)

HTTP/2.0 204
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=23C7537F66906E8C286C477A67706FD1; domain=.bing.com; expires=Thu, 06-Feb-2025 05:30:26 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0E13F37EAFB7446399062E787C2253E3 Ref B: LON04EDGE1112 Ref C: 2024-01-13T05:30:26Z
date: Sat, 13 Jan 2024 05:30:26 GMT

204.79.197.200:443

GET /neg/0?action=emptycreative&adUnitId=11730597&publisherId=251978541&rid=af6393cb959d474992b88e0eba89f148&localId=w:540EFEE2-46B3-9BC5-3ED2-F59CCE5C5963&deviceId=6896190263018008&anid= HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)
cookie: MUID=23C7537F66906E8C286C477A67706FD1

HTTP/2.0 204
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MSPTC=zxx_VKOLakLuPQiEMta23Y2ZzxkrMZs4EXOt2CqrWLA; domain=.bing.com; expires=Thu, 06-Feb-2025 05:30:26 GMT; path=/; Partitioned; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2E77624FC9394AB0ACBEAD3798ED7A68 Ref B: LON04EDGE1112 Ref C: 2024-01-13T05:30:26Z
date: Sat, 13 Jan 2024 05:30:26 GMT

204.79.197.200:443

GET /neg/0?action=emptycreativeimpression&adUnitId=11730597&publisherId=251978541&rid=af6393cb959d474992b88e0eba89f148&localId=w:540EFEE2-46B3-9BC5-3ED2-F59CCE5C5963&deviceId=6896190263018008&anid= HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)
cookie: MUID=23C7537F66906E8C286C477A67706FD1; MSPTC=zxx_VKOLakLuPQiEMta23Y2ZzxkrMZs4EXOt2CqrWLA

HTTP/2.0 204
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C5251BCCE9EE4FDD9B3A3AEECF22EA18 Ref B: LON04EDGE1112 Ref C: 2024-01-13T05:30:26Z
date: Sat, 13 Jan 2024 05:30:26 GMT

8.8.8.8:53

8.8.8.8:53

18.158.88.249:443

GET /redirect?target=BASE64aHR0cHM6Ly8xLmV3amZ3Zi5jby8_dXRtX21lZGl1bT1jMmI2YzBkMDhiNWIwN2Y1MzhmODBiYTU4NTc4YTQxMzk0N2U5MTBiJnV0bV9jYW1wYWlnbj1qYW4yNG1haW5lciYxPTI2MjMzMTk5JmNpZD13N2lzMGd2dDRmNzM0dGR1Mm84YW5qNDA&ts=1705123827774&hash=HDqJ9w1WuJEp0kuIdPTRpoGmeu4G3dKDEILvLQoD96A&rm=D HTTP/2.0
host: reletinglablets.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
accept-encoding: gzip, deflate

HTTP/2.0 200
server: nginx
date: Sat, 13 Jan 2024 05:30:31 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

69.175.103.179:443

GET /?utm_medium=c2b6c0d08b5b07f538f80ba58578a413947e910b&utm_campaign=jan24mainer&1=26233199&cid=w7is0gvt4f734tdu2o8anj40 HTTP/2.0
host: 1.ewjfwf.co
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
accept-encoding: gzip, deflate

HTTP/2.0 200
server: nginx
date: Sat, 13 Jan 2024 05:30:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/8.3.1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version
content-encoding: gzip

69.175.103.179:443

GET /favicon.ico HTTP/2.0
host: 1.ewjfwf.co
accept: */*
accept-encoding: gzip, deflate
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko

HTTP/2.0 200
server: nginx
date: Sat, 13 Jan 2024 05:30:32 GMT
content-type: image/x-icon
content-length: 1150
last-modified: Fri, 11 Aug 2023 10:37:02 GMT
etag: "64d60f4e-47e"
expires: Sun, 14 Jan 2024 05:30:32 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes

69.175.103.179:443

GET /proc.php?560e8b6c61e43bceedd0867442bce217f977c2c9 HTTP/2.0
host: 1.ewjfwf.co
accept: text/html, application/xhtml+xml, image/jxr, */*
referer: https://1.ewjfwf.co/?utm_medium=c2b6c0d08b5b07f538f80ba58578a413947e910b&utm_campaign=jan24mainer&1=26233199&cid=w7is0gvt4f734tdu2o8anj40
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
accept-encoding: gzip, deflate

HTTP/2.0 200
server: nginx
date: Sat, 13 Jan 2024 05:30:32 GMT
content-type: text/html; charset=UTF-8
location: https://www.tropbikewall.art/?sl=5706540-e4d07&data1=Track1&data2=Track2&tag=M7323451089792008287&website=909-d3ba45d7&placement=909
vary: Accept-Encoding
x-powered-by: PHP/8.3.1
cache-control: no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version
content-encoding: gzip

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

51.68.82.147:443

GET /?sl=5706540-e4d07&data1=Track1&data2=Track2&tag=M7323451089792008287&website=909-d3ba45d7&placement=909 HTTP/1.1
Accept: text/html, application/xhtml+xml, image/jxr, */*
Referer: https://1.ewjfwf.co/proc.php?560e8b6c61e43bceedd0867442bce217f977c2c9
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.tropbikewall.art
Connection: Keep-Alive

HTTP/1.1 200 OK
Date: Sat, 13 Jan 2024 05:30:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-transform
Accept-CH: Sec-CH-UA-Platform-Version

51.68.82.147:443

GET /?sl=5706540-e4d07&data1=Track1&data2=Track2&tag=M7323451089792008287&website=909-d3ba45d7&placement=909&eyeg=ff2ced77390b605abc623199db73eeda&eyer=0.13640937532870628&eyei=0&eyew=1280&eyeh=602&eyetd=220&eyef=1.ewjfwf.co HTTP/1.1
Accept: text/html, application/xhtml+xml, image/jxr, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.tropbikewall.art
Connection: Keep-Alive

HTTP/1.1 302 Found
Date: Sat, 13 Jan 2024 05:30:33 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://www.tropbikewall.art/?sl=5706540-e4d07&data1=Track1&data2=Track2&tag=M7323451089792008287&website=909-d3ba45d7&placement=909&eyeg=3&eyer=0.13640937532870628&eyei=0&eyew=1280&eyeh=602&eyetd=220&eyef=1.ewjfwf.co

51.68.82.147:443

GET /?sl=5706540-e4d07&data1=Track1&data2=Track2&tag=M7323451089792008287&website=909-d3ba45d7&placement=909&eyeg=3&eyer=0.13640937532870628&eyei=0&eyew=1280&eyeh=602&eyetd=220&eyef=1.ewjfwf.co HTTP/1.1
Accept: text/html, application/xhtml+xml, image/jxr, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.tropbikewall.art
Connection: Keep-Alive

HTTP/1.1 302 Found
Date: Sat, 13 Jan 2024 05:30:33 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-transform
Location: https://admoustache.media-412.com/sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=33000c712148e812d18fd8f7fb4038cb9009b0113-202401-flb*5706540-e4d07*M7323451089792008287*sl_5706540-e4d07*0e36326076450d1069c030e67b4495dade4f8551*909-d3ba45d7*909

8.8.8.8:53

34.141.137.168:443

GET /sl?id=63ef5a2a8dec34873b6049c7&pid=503&sub1=33000c712148e812d18fd8f7fb4038cb9009b0113-202401-flb*5706540-e4d07*M7323451089792008287*sl_5706540-e4d07*0e36326076450d1069c030e67b4495dade4f8551*909-d3ba45d7*909 HTTP/2.0
host: admoustache.media-412.com
accept: text/html, application/xhtml+xml, image/jxr, */*
accept-language: en-US
user-agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
accept-encoding: gzip, deflate

HTTP/2.0 302
server: nginx
date: Sat, 13 Jan 2024 05:30:33 GMT
content-length: 0
location: https://hixastump.com/?cat=2&groupds=157&clientId=168&productId=1907&publisher_id=503&tracking=65a21ff939813200012138bc
x-adjust-use-original-forwarded-for: 1
referer:
referrer-policy: no-referrer
set-cookie: afclick=65a21ff939813200012138bc; expires=Sun, 12 Jan 2025 05:30:33 GMT; secure; SameSite=None
access-control-allow-origin: *

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

185.32.28.133:443

GET /?cat=2&groupds=157&clientId=168&productId=1907&publisher_id=503&tracking=65a21ff939813200012138bc HTTP/1.1
Accept: text/html, application/xhtml+xml, image/jxr, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Host: hixastump.com

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 13 Jan 2024 05:30:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Set-Cookie: redirect_user_data=%7B%22country%22%3A%22GB%22%2C%22city%22%3Anull%2C%22isp%22%3A%22ines+group%22%2C%22netspeed%22%3A%22%22%7D; expires=Sat, 13-Jan-2024 05:40:29 GMT; Max-Age=600
Set-Cookie: _tracker_ikangoo=a%3A5%3A%7Bs%3A4%3A%22_key%22%3Bs%3A7%3A%22IKPANEL%22%3Bs%3A6%3A%22_subid%22%3Bs%3A16%3A%225002171511655875%22%3Bs%3A8%3A%22_country%22%3Bs%3A2%3A%22GB%22%3Bs%3A4%3A%22_isp%22%3Bs%3A10%3A%22ines+group%22%3Bs%3A5%3A%22_time%22%3Bi%3A1705123829%3B%7D; expires=Sat, 13-Jan-2024 05:32:29 GMT; Max-Age=120
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff

185.32.28.133:443

GET /assets/js/backlink_back_button.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://hixastump.com/?cat=2&groupds=157&clientId=168&productId=1907&publisher_id=503&tracking=65a21ff939813200012138bc
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: hixastump.com
Connection: Keep-Alive
Cookie: redirect_user_data=%7B%22country%22%3A%22GB%22%2C%22city%22%3Anull%2C%22isp%22%3A%22ines+group%22%2C%22netspeed%22%3A%22%22%7D; _tracker_ikangoo=a%3A5%3A%7Bs%3A4%3A%22_key%22%3Bs%3A7%3A%22IKPANEL%22%3Bs%3A6%3A%22_subid%22%3Bs%3A16%3A%225002171511655875%22%3Bs%3A8%3A%22_country%22%3Bs%3A2%3A%22GB%22%3Bs%3A4%3A%22_isp%22%3Bs%3A10%3A%22ines+group%22%3Bs%3A5%3A%22_time%22%3Bi%3A1705123829%3B%7D

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 13 Jan 2024 05:30:29 GMT
Content-Type: application/javascript
Content-Length: 632
Last-Modified: Mon, 28 Nov 2022 14:36:49 GMT
Connection: keep-alive
ETag: "6384c781-278"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Accept-Ranges: bytes

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

204.79.197.200:443

GET /th?id=OADD2.10239340418587_1WAY0EU9WVN81W6N5&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 706074
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9ABBD7CB9D324B348745A7458D06A3FD Ref B: LON04EDGE1008 Ref C: 2024-01-13T05:31:20Z
date: Sat, 13 Jan 2024 05:31:20 GMT

204.79.197.200:443

GET /th?id=OADD2.10239340418601_1XRLHD1YRS9ZZSDWX&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 453802
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 280B6F73512A409BACAA874D15265854 Ref B: LON04EDGE1008 Ref C: 2024-01-13T05:31:20Z
date: Sat, 13 Jan 2024 05:31:20 GMT

204.79.197.200:443

GET /th?id=OADD2.10239340418543_1PQIQEA9PYCCTOZ9T&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 748526
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BE4BF2B909D24BBDB845783F80F13D62 Ref B: LON04EDGE1008 Ref C: 2024-01-13T05:31:22Z
date: Sat, 13 Jan 2024 05:31:22 GMT

204.79.197.200:443

GET /th?id=OADD2.10239340418602_13EDNGC3ZL2WGZFXN&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 407830
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CF6A5049BE324EDBA443AA6A1CC712AC Ref B: LON04EDGE1008 Ref C: 2024-01-13T05:31:22Z
date: Sat, 13 Jan 2024 05:31:22 GMT

204.79.197.200:443

GET /th?id=OADD2.10239340418588_1PJ4HLSB51V9JOSDD&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 780589
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 22C6135396D544C8BF45074FF35B7748 Ref B: LON04EDGE1008 Ref C: 2024-01-13T05:31:22Z
date: Sat, 13 Jan 2024 05:31:22 GMT

204.79.197.200:443

GET /th?id=OADD2.10239340418544_1U65HGUXV07UFEU5B&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/2.0
host: tse1.mm.bing.net
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041

HTTP/2.0 200
cache-control: public, max-age=2592000
content-length: 800536
content-type: image/jpeg
x-cache: TCP_HIT
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C5CD2DE4E79C49AFB984AF377699BAE0 Ref B: LON04EDGE1008 Ref C: 2024-01-13T05:31:27Z
date: Sat, 13 Jan 2024 05:31:27 GMT

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53